Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
File: XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft (raw, json)
Hash identifier: AbUran+wrupvUzoCATjgcOEBGg3GfzW7V3Seof2aUSQ=
Subject key identifier: 7D:02:E9:FA:C2:A2:8F:E9:BB:2C:82:34:9B:06:7C:BB:7B:0C:E7:03
Authority key identifier: 5C:DF:30:1A:C0:15:26:D0:8C:DE:C2:42:CC:5A:14:01:41:FB:15:3D
Certificate issuer: /CN=5cdf301ac01526d08cdec242cc5a140141fb153d
Certificate serial: 019D28845454139D3C6502986995CA881452
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XN8wGsAVJtCM3sJCzFoUAUH7FT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
Manifest number: 04AB
Signing time: Thu 26 Mar 2026 05:00:54 +0000
Manifest this update: Thu 26 Mar 2026 05:00:54 +0000
Manifest next update: Fri 27 Mar 2026 05:00:54 +0000
Files and hashes: 1: XN8wGsAVJtCM3sJCzFoUAUH7FT0.crl (hash: B+fPBoWWoNgrBuwqhtOBrQ6KM7uCGY7YHlPqzKXS2Js=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XN8wGsAVJtCM3sJCzFoUAUH7FT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:54:54:13:9d:3c:65:02:98:69:95:ca:88:14:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cdf301ac01526d08cdec242cc5a140141fb153d
Validity
Not Before: Mar 26 05:00:54 2026 GMT
Not After : Mar 27 05:00:54 2026 GMT
Subject: CN=7d02e9fac2a28fe9bb2c82349b067cbb7b0ce703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:0f:a3:5d:2a:34:de:04:dc:1a:2c:57:e8:
b5:9f:b6:3c:8e:61:09:b1:43:7d:1f:14:8f:76:4e:
39:10:3d:90:64:5c:fe:1a:19:f0:38:0e:82:c2:82:
e7:aa:5d:f1:4c:1c:12:51:3c:8f:71:e4:5f:ad:1f:
0a:be:bf:a0:d7:18:9c:a6:9d:d7:61:b4:b5:17:13:
f3:3c:56:3d:6b:17:a7:3c:4a:0a:8a:2d:77:37:08:
13:dd:9e:1a:4e:aa:0a:42:2c:67:92:88:19:25:63:
03:41:82:42:b3:4b:71:57:96:75:a8:30:a7:31:02:
cf:5a:cf:23:46:96:ea:69:fe:ca:22:3f:07:df:18:
5f:1b:af:63:89:ec:00:0d:17:fd:b7:40:eb:80:90:
cd:f4:ca:42:1c:9c:9e:0d:b4:63:33:de:82:82:17:
df:e0:21:c8:19:12:b1:8c:a5:59:fd:18:27:35:f7:
60:ca:e2:1e:f9:b9:55:36:88:1d:b2:21:d8:4f:b6:
e8:6b:eb:f3:29:90:32:e1:9a:88:9f:5e:51:bc:7b:
3c:25:18:43:23:c7:3c:ee:34:18:81:a5:05:2f:db:
38:99:26:a1:53:c2:c1:fa:29:87:31:4a:bd:9b:66:
17:d7:af:e1:77:09:77:fb:2e:be:fe:ea:08:35:7d:
85:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:02:E9:FA:C2:A2:8F:E9:BB:2C:82:34:9B:06:7C:BB:7B:0C:E7:03
X509v3 Authority Key Identifier:
keyid:5C:DF:30:1A:C0:15:26:D0:8C:DE:C2:42:CC:5A:14:01:41:FB:15:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XN8wGsAVJtCM3sJCzFoUAUH7FT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/c24cbe-3375-44c3-ba63-c964220bae80/1/XN8wGsAVJtCM3sJCzFoUAUH7FT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:f7:4b:aa:dd:c8:e9:ea:72:e1:c7:0c:f2:52:2d:48:33:9b:
4b:71:36:f1:2a:75:bc:4e:fb:7e:e1:d6:04:9e:78:aa:90:f5:
57:fd:3f:3d:7d:ec:3d:a2:a5:77:32:9d:3a:55:f4:da:27:7a:
20:ab:db:ec:8a:2a:ec:06:6c:4a:22:fc:2f:4e:fc:3b:f9:02:
c4:be:c3:55:8e:59:a2:4b:65:0c:f7:f5:bb:d2:3e:45:a0:43:
cd:e5:1a:1d:a0:21:81:2f:fe:1e:45:a7:5d:db:d8:ec:e2:3a:
8c:5c:b8:ec:56:d8:58:19:df:f8:03:72:a1:10:e1:5b:a9:89:
b3:66:23:c0:87:ed:d7:b4:41:83:48:fe:05:fc:6e:cb:9a:35:
a4:6d:a3:85:78:c6:17:c4:0e:f9:ac:e4:e8:e4:cb:5b:5b:e6:
f1:60:56:80:3e:9b:36:b7:cd:26:f0:5d:34:17:09:b5:e0:19:
0e:b0:40:20:b7:fe:37:48:a0:1a:1a:b9:61:a2:e6:c3:48:d8:
75:9d:c9:d1:ab:b1:c1:02:48:1a:40:1b:f0:21:de:9b:bf:78:
0d:c6:d6:d3:37:34:18:e4:c9:18:43:db:06:25:6d:9d:b5:85:
d8:9a:72:86:2b:97:f2:42:21:c5:c4:36:04:96:15:7e:51:42:
cc:e3:1b:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohFRUE508ZQKYaZXKiBRSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZGYzMDFhYzAxNTI2ZDA4Y2RlYzI0MmNjNWExNDAxNDFm
YjE1M2QwHhcNMjYwMzI2MDUwMDU0WhcNMjYwMzI3MDUwMDU0WjAzMTEwLwYDVQQD
Eyg3ZDAyZTlmYWMyYTI4ZmU5YmIyYzgyMzQ5YjA2N2NiYjdiMGNlNzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuakPo10qNN4E3BosV+i1n7Y8jmEJ
sUN9HxSPdk45ED2QZFz+GhnwOA6CwoLnql3xTBwSUTyPceRfrR8Kvr+g1xicpp3X
YbS1FxPzPFY9axenPEoKii13NwgT3Z4aTqoKQixnkogZJWMDQYJCs0txV5Z1qDCn
MQLPWs8jRpbqaf7KIj8H3xhfG69jiewADRf9t0DrgJDN9MpCHJyeDbRjM96Cghff
4CHIGRKxjKVZ/RgnNfdgyuIe+blVNogdsiHYT7boa+vzKZAy4ZqIn15RvHs8JRhD
I8c87jQYgaUFL9s4mSahU8LB+imHMUq9m2YX16/hdwl3+y6+/uoINX2FSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH0C6frCoo/puyyCNJsGfLt7DOcDMB8GA1UdIwQY
MBaAFFzfMBrAFSbQjN7CQsxaFAFB+xU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE44d0dzQVZKdENNM3NKQ3pGb1VBVUg3RlQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9jMjRjYmUtMzM3NS00NGMzLWJhNjMt
Yzk2NDIyMGJhZTgwLzEvWE44d0dzQVZKdENNM3NKQ3pGb1VBVUg3RlQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9jMjRjYmUtMzM3NS00NGMzLWJhNjMtYzk2NDIyMGJhZTgw
LzEvWE44d0dzQVZKdENNM3NKQ3pGb1VBVUg3RlQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbfdLqt3I
6epy4ccM8lItSDObS3E28Sp1vE77fuHWBJ54qpD1V/0/PX3sPaKldzKdOlX02id6
IKvb7Ioq7AZsSiL8L078O/kCxL7DVY5ZoktlDPf1u9I+RaBDzeUaHaAhgS/+HkWn
XdvY7OI6jFy47FbYWBnf+ANyoRDhW6mJs2YjwIft17RBg0j+Bfxuy5o1pG2jhXjG
F8QO+azk6OTLW1vm8WBWgD6bNrfNJvBdNBcJteAZDrBAILf+N0igGhq5YaLmw0jY
dZ3J0auxwQJIGkAb8CHem794DcbW0zc0GOTJGEPbBiVtnbWF2JpyhiuX8kIhxcQ2
BJYVflFCzOMbUQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:30 2026 by rpki-client