Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: R613c+b3/GTC+qK/K4R0OnPMyDjG8jekDpJJVIm4e8s=
Subject key identifier: 5A:BC:0C:F9:E5:17:4B:A4:CB:8E:16:52:C6:AF:FD:C6:9A:85:4F:8F
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 019D27045AA81C40115AF5A2B37BE138A0C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 0BA3
Signing time: Wed 25 Mar 2026 22:01:29 +0000
Manifest this update: Wed 25 Mar 2026 22:01:29 +0000
Manifest next update: Thu 26 Mar 2026 22:01:29 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: vXku7o5dFb6DawKSRK7p7eGc+TOPXev1kPVq0YuGuHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:5a:a8:1c:40:11:5a:f5:a2:b3:7b:e1:38:a0:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Mar 25 22:01:29 2026 GMT
Not After : Mar 26 22:01:29 2026 GMT
Subject: CN=5abc0cf9e5174ba4cb8e1652c6affdc69a854f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:45:ac:92:89:32:97:f1:9e:fc:4f:38:96:85:
15:0d:08:34:f6:30:ec:ff:98:3e:aa:e2:df:58:18:
de:0d:71:92:68:28:56:e0:44:6a:af:73:9e:6a:23:
c0:69:f9:a4:72:4e:eb:9c:b4:77:b4:1d:e6:8f:91:
0d:bc:b0:f7:97:8e:80:26:95:bb:af:22:ec:90:81:
ab:4e:af:f2:3f:d6:02:7d:bc:be:96:44:28:ce:d6:
08:c1:5d:38:e9:ca:42:76:6a:c9:f8:cd:6f:1d:5a:
4d:00:81:41:ee:98:dc:9b:1d:0b:fd:16:a6:a6:18:
6a:04:ba:78:b6:cc:10:e1:05:fc:5d:20:c3:4d:2c:
cf:ed:77:0b:c0:8a:0f:1f:af:f8:1f:83:0d:58:31:
83:84:b0:82:e0:ac:91:45:42:fd:a8:f8:b3:8d:87:
c1:b3:74:e7:7b:7d:05:f4:7a:36:ca:94:2c:f5:42:
2e:37:1e:6e:2f:3a:6c:08:38:e1:3e:19:4e:d4:ec:
20:21:a5:e8:4a:c3:74:e2:19:a6:72:eb:20:49:99:
09:d6:3d:d2:f7:fc:ea:c7:df:31:e4:e4:75:a5:56:
18:25:53:a1:4b:4d:e5:54:3a:ef:5f:de:e2:25:32:
07:7a:d1:65:43:f9:1f:fd:12:13:a2:fc:42:36:75:
a9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BC:0C:F9:E5:17:4B:A4:CB:8E:16:52:C6:AF:FD:C6:9A:85:4F:8F
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:f0:e6:32:f4:8d:cc:d1:50:37:25:b8:05:b7:35:5b:63:a6:
9d:a5:7e:bd:5a:32:54:eb:97:11:74:01:c1:27:99:7e:9a:0b:
87:11:e1:93:84:e9:a6:60:1b:2a:52:c3:54:76:75:d3:0c:18:
b2:b0:3c:f1:bf:ea:62:c3:c3:6a:27:17:53:9b:30:12:06:18:
00:58:5c:77:fd:31:75:33:86:51:2b:09:58:c3:01:1c:fa:eb:
f5:13:62:43:ae:b9:d3:5b:52:54:9c:15:9e:78:fa:8b:91:59:
e4:7b:58:39:62:38:1b:01:64:9d:0f:4b:b7:d5:ba:87:28:8a:
83:2f:90:e8:25:12:7c:d9:9d:34:31:d4:89:2c:2b:8e:2d:77:
64:49:18:3b:d8:1b:40:14:b9:be:60:84:45:e9:e2:59:39:02:
2a:66:56:b1:e0:89:85:a0:99:1d:0d:c9:e1:65:15:ab:d9:ab:
b2:fb:e1:2f:25:f5:34:59:b4:4b:f7:2f:54:e5:a4:95:c7:96:
13:03:17:8a:51:6f:77:fc:88:66:46:c6:68:4b:a9:e5:5e:6b:
23:89:3b:99:22:e1:5f:0a:83:d5:2c:ee:6b:aa:3f:75:f4:a2:
fc:5f:0d:9f:0f:1c:68:19:0d:35:1d:f5:3a:f4:2b:8f:38:8b:
1b:3c:14:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBFqoHEARWvWis3vhOKDHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNzU4ODVjZjk3OGQyZWY2NjEzNzYyMTQ1MzBiOWVkNjhj
NWI0NTgwHhcNMjYwMzI1MjIwMTI5WhcNMjYwMzI2MjIwMTI5WjAzMTEwLwYDVQQD
Eyg1YWJjMGNmOWU1MTc0YmE0Y2I4ZTE2NTJjNmFmZmRjNjlhODU0ZjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7kWskokyl/Ge/E84loUVDQg09jDs
/5g+quLfWBjeDXGSaChW4ERqr3OeaiPAafmkck7rnLR3tB3mj5ENvLD3l46AJpW7
ryLskIGrTq/yP9YCfby+lkQoztYIwV046cpCdmrJ+M1vHVpNAIFB7pjcmx0L/Ram
phhqBLp4tswQ4QX8XSDDTSzP7XcLwIoPH6/4H4MNWDGDhLCC4KyRRUL9qPizjYfB
s3Tne30F9Ho2ypQs9UIuNx5uLzpsCDjhPhlO1OwgIaXoSsN04hmmcusgSZkJ1j3S
9/zqx98x5OR1pVYYJVOhS03lVDrvX97iJTIHetFlQ/kf/RITovxCNnWpMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFq8DPnlF0uky44WUsav/caahU+PMB8GA1UdIwQY
MBaAFJF1iFz5eNLvZhN2IUUwue1oxbRYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9jNDg1ZDktMjczNi00OWIxLTlhNDQt
MWI5NTgxOWNmYzljLzEva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9jNDg1ZDktMjczNi00OWIxLTlhNDQtMWI5NTgxOWNmYzlj
LzEva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAvDmMvSN
zNFQNyW4Bbc1W2OmnaV+vVoyVOuXEXQBwSeZfpoLhxHhk4TppmAbKlLDVHZ10wwY
srA88b/qYsPDaicXU5swEgYYAFhcd/0xdTOGUSsJWMMBHPrr9RNiQ66501tSVJwV
nnj6i5FZ5HtYOWI4GwFknQ9Lt9W6hyiKgy+Q6CUSfNmdNDHUiSwrji13ZEkYO9gb
QBS5vmCEReniWTkCKmZWseCJhaCZHQ3J4WUVq9mrsvvhLyX1NFm0S/cvVOWklceW
EwMXilFvd/yIZkbGaEup5V5rI4k7mSLhXwqD1Szua6o/dfSi/F8Nnw8caBkNNR31
OvQrjziLGzwUWg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:59:47 2026 by rpki-client