Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: mpXWuAWeLNmFs8ndat6NIoiPjY0oUsJn/Qn5ztOA8fE=
Subject key identifier: 5A:6D:E5:6A:F3:AB:B0:D6:BA:43:95:CF:C4:A0:88:8A:BF:01:D8:42
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019D9962777B047AFD42B1A69FB2994F914A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 1854
Signing time: Fri 17 Apr 2026 03:01:00 +0000
Manifest this update: Fri 17 Apr 2026 03:01:00 +0000
Manifest next update: Sat 18 Apr 2026 03:01:00 +0000
Files and hashes: 1: KhLnM9UHZFCOQul_YnhOlrlNWQg.roa (hash: F9XQk4xPu6hZHYNZKH9uTFT9zpakfltc+2j9WkGLNVk=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: NE6xtFTNaYX4JE+RK+Zf5gg7r9Q3ZsktLlbMLwTZpmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:77:7b:04:7a:fd:42:b1:a6:9f:b2:99:4f:91:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Apr 17 03:01:00 2026 GMT
Not After : Apr 18 03:01:00 2026 GMT
Subject: CN=5a6de56af3abb0d6ba4395cfc4a0888abf01d842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9a:e1:d3:56:df:53:c5:14:6b:cb:11:67:ef:
11:60:28:1b:10:c2:b3:ba:32:2e:23:4c:ef:db:32:
53:c5:5e:c4:c0:1a:67:bf:dd:5a:5a:8e:4b:26:38:
68:07:fa:5b:38:65:66:e4:ac:6c:98:9c:78:bd:68:
77:62:89:92:a2:44:6d:c3:12:4b:7c:f1:40:d7:70:
dd:94:62:dc:12:22:cf:4d:c5:44:58:4d:9a:f5:2f:
99:da:49:91:d8:c0:10:85:0f:f2:8a:75:52:28:96:
a2:a2:ed:3b:10:a8:28:1d:6a:99:18:10:92:a2:0c:
d1:54:8e:c4:3a:40:9c:65:5b:50:2b:ed:1b:34:b9:
8f:d5:9d:37:fb:9b:b8:5d:d8:43:34:2d:8c:d3:49:
3e:c6:f5:15:b1:d2:ad:45:69:2e:f1:5b:a5:33:4c:
fb:61:eb:bc:eb:b2:13:25:b8:c3:63:3a:bb:06:6a:
05:98:cf:4a:11:aa:c9:9d:00:ca:49:84:ee:55:c7:
3d:94:a6:69:ec:09:43:2b:48:62:2b:09:18:65:c7:
96:c0:1a:2e:61:c2:9e:5b:15:16:63:bd:19:19:0c:
1f:00:f6:bd:8f:3f:6a:39:e3:fa:b2:b6:58:2d:61:
5e:4d:6f:4f:0e:a4:26:ff:88:98:6d:d1:ae:c3:ed:
71:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:6D:E5:6A:F3:AB:B0:D6:BA:43:95:CF:C4:A0:88:8A:BF:01:D8:42
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:2d:2e:ad:f0:5b:55:be:da:b0:be:9a:62:0d:5c:eb:a1:f4:
8b:23:a6:96:8f:08:f1:17:ef:11:9e:31:12:42:ee:c7:79:e9:
04:f9:22:7b:97:72:ff:fa:3e:c4:ae:22:32:27:bd:eb:ae:1c:
ae:3f:11:49:47:4c:4c:22:c8:e1:50:0e:82:02:d6:49:9e:05:
70:ab:a1:b3:51:73:1c:b3:93:d3:ce:a4:90:c7:e5:1a:47:65:
d9:df:d7:1f:0d:10:f4:ac:b6:60:a4:5d:bd:8c:76:7b:69:0f:
61:ad:29:07:e0:bb:34:75:82:9e:d4:0d:6e:c6:e7:6f:ee:11:
a0:d9:f4:b9:ee:c1:b1:1f:7d:b9:cd:23:39:d0:98:f4:d3:7f:
40:98:d2:80:09:7c:b3:dc:3e:6a:56:aa:ee:9c:45:14:da:ec:
5e:f7:71:16:42:7b:ba:c7:fe:f3:32:47:73:bf:3d:10:2b:bc:
bf:f2:e7:e3:ce:4d:ba:3f:3a:6c:76:19:da:0f:81:6c:b0:bc:
f8:d7:25:77:f6:a0:08:23:ea:0c:f5:d5:f3:7f:05:f3:bc:c4:
b2:5d:ca:3e:0b:c1:9c:ed:9a:a5:d2:03:64:95:eb:1a:bd:8c:
e4:fa:d1:41:5c:70:fe:0f:bc:e3:05:13:ab:01:d9:35:8f:9a:
fc:4b:67:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYnd7BHr9QrGmn7KZT5FKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2Y3YjNmZDg3Y2U5YmNlOTlmOTAwYjY0MTk5ZDYwNmJm
MTYwNjkwHhcNMjYwNDE3MDMwMTAwWhcNMjYwNDE4MDMwMTAwWjAzMTEwLwYDVQQD
Eyg1YTZkZTU2YWYzYWJiMGQ2YmE0Mzk1Y2ZjNGEwODg4YWJmMDFkODQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA65rh01bfU8UUa8sRZ+8RYCgbEMKz
ujIuI0zv2zJTxV7EwBpnv91aWo5LJjhoB/pbOGVm5KxsmJx4vWh3YomSokRtwxJL
fPFA13DdlGLcEiLPTcVEWE2a9S+Z2kmR2MAQhQ/yinVSKJaiou07EKgoHWqZGBCS
ogzRVI7EOkCcZVtQK+0bNLmP1Z03+5u4XdhDNC2M00k+xvUVsdKtRWku8VulM0z7
Yeu867ITJbjDYzq7BmoFmM9KEarJnQDKSYTuVcc9lKZp7AlDK0hiKwkYZceWwBou
YcKeWxUWY70ZGQwfAPa9jz9qOeP6srZYLWFeTW9PDqQm/4iYbdGuw+1xXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpt5Wrzq7DWukOVz8SgiIq/AdhCMB8GA1UdIwQY
MBaAFFzPez/YfOm86Z+QC2QZnWBr8WBpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgt
OGNmOWU2ZjhhYjQ1LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgtOGNmOWU2ZjhhYjQ1
LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABS0urfBb
Vb7asL6aYg1c66H0iyOmlo8I8RfvEZ4xEkLux3npBPkie5dy//o+xK4iMie9664c
rj8RSUdMTCLI4VAOggLWSZ4FcKuhs1FzHLOT086kkMflGkdl2d/XHw0Q9Ky2YKRd
vYx2e2kPYa0pB+C7NHWCntQNbsbnb+4RoNn0ue7BsR99uc0jOdCY9NN/QJjSgAl8
s9w+alaq7pxFFNrsXvdxFkJ7usf+8zJHc789ECu8v/Ln485Nuj86bHYZ2g+BbLC8
+Ncld/agCCPqDPXV838F87zEsl3KPgvBnO2apdIDZJXrGr2M5PrRQVxw/g+84wUT
qwHZNY+a/EtndQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:27:40 2026 by rpki-client