Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
File: XZOOJrKYSy-hYarAewS9uFCq3RY.mft (raw, json)
Hash identifier: Pb5b8z9XR5fU3rvWE2zW1R/Ol1fos/ZCspnqLz/10P4=
Subject key identifier: 6E:3D:19:E5:4C:76:AD:07:1E:68:8A:2D:15:6F:14:3B:09:1E:D1:E5
Authority key identifier: 5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16
Certificate issuer: /CN=5d938e26b2984b2fa161aac07b04bdb850aadd16
Certificate serial: 019CAA589130542E149BCCD514060D3AF75B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
Manifest number: 0C2B
Signing time: Sun 01 Mar 2026 17:00:56 +0000
Manifest this update: Sun 01 Mar 2026 17:00:56 +0000
Manifest next update: Mon 02 Mar 2026 17:00:56 +0000
Files and hashes: 1: XZOOJrKYSy-hYarAewS9uFCq3RY.crl (hash: 14KDAk5E5NUSqylD6f/MVdzAYPbjWUfd7+LOxg/QwWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:91:30:54:2e:14:9b:cc:d5:14:06:0d:3a:f7:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d938e26b2984b2fa161aac07b04bdb850aadd16
Validity
Not Before: Mar 1 17:00:56 2026 GMT
Not After : Mar 2 17:00:56 2026 GMT
Subject: CN=6e3d19e54c76ad071e688a2d156f143b091ed1e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:14:a3:2d:1a:bb:0d:ab:d0:1c:cb:4c:51:7f:
1c:0c:47:c5:00:a8:b2:54:6e:9d:9e:51:cb:5e:8c:
f0:70:ec:f5:ea:7c:00:3a:b9:68:ad:c7:9e:0a:a7:
e5:ea:68:58:49:34:dd:ca:68:ef:3a:52:2d:9c:d6:
35:7b:8b:6c:f0:ec:38:cd:01:43:26:83:aa:a6:9e:
20:16:70:e7:45:65:77:e1:61:d7:1d:77:8f:c1:b2:
9c:be:77:2c:96:ed:8a:93:f1:66:45:c3:55:27:9d:
f7:1e:47:00:07:c4:a6:07:fd:cd:d3:78:63:bb:f3:
ae:d6:cd:e2:ff:6b:9c:25:24:8b:f2:9e:35:ab:85:
b6:c3:91:fb:e0:39:f1:96:a8:d2:93:20:f5:51:e2:
81:82:02:7c:4f:64:9f:1a:34:b2:b1:48:0c:2c:ba:
68:cf:ac:83:cf:d7:33:c7:88:54:5f:a3:ab:fb:9e:
c0:79:80:55:e4:4f:06:fd:01:e9:ff:03:43:83:76:
57:9f:f3:77:00:d0:66:d5:00:d1:cc:90:8b:bc:a1:
54:c6:b9:4f:b0:aa:08:5a:1e:e8:e0:e4:ab:e5:82:
08:b3:bb:21:ee:c1:d2:cf:aa:bd:a7:77:76:14:76:
fc:7d:78:0d:ef:79:6d:85:76:ca:37:61:d4:f4:8d:
a2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3D:19:E5:4C:76:AD:07:1E:68:8A:2D:15:6F:14:3B:09:1E:D1:E5
X509v3 Authority Key Identifier:
keyid:5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:57:d2:35:b2:cf:4b:1f:6d:87:d8:45:47:59:bf:72:50:d4:
9c:05:35:2b:fa:3f:7e:9f:dc:6b:ae:17:15:18:3f:91:b8:f4:
b2:04:61:6d:2c:0a:af:cb:e7:20:22:fc:d5:3b:e9:62:15:18:
01:a9:63:ab:46:d7:98:5e:79:df:16:c2:45:70:bb:cd:87:90:
c2:9a:2a:9a:4f:8d:17:42:a4:65:a9:66:b7:4c:01:5d:89:da:
55:94:32:18:73:d3:cd:77:e6:3c:e7:0c:56:89:95:be:cf:a5:
c5:21:5f:32:46:f1:24:58:8d:17:26:6a:c3:b1:5c:2a:5b:8c:
d4:7a:26:ed:e4:97:fd:70:02:2c:1f:28:2a:b1:73:a6:3c:a5:
92:d9:88:64:46:15:63:fa:f7:c8:f1:e5:56:fc:31:a7:37:72:
25:02:c9:4f:a3:85:a8:84:6c:f5:c7:46:64:79:63:53:ed:9f:
be:21:82:f9:a1:81:5d:fc:8c:44:f2:c5:7b:36:fe:ef:0e:b3:
55:0f:e8:c0:52:53:cc:06:5f:2d:ff:72:ea:3c:7d:98:bd:b9:
7c:05:44:c9:b4:f8:e6:2d:b6:ea:39:cd:8d:4a:10:4f:53:35:
6f:3f:b4:32:47:95:19:fa:bf:06:7f:0f:67:75:68:3f:d7:71:
11:2a:0b:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWJEwVC4Um8zVFAYNOvdbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkOTM4ZTI2YjI5ODRiMmZhMTYxYWFjMDdiMDRiZGI4NTBh
YWRkMTYwHhcNMjYwMzAxMTcwMDU2WhcNMjYwMzAyMTcwMDU2WjAzMTEwLwYDVQQD
Eyg2ZTNkMTllNTRjNzZhZDA3MWU2ODhhMmQxNTZmMTQzYjA5MWVkMWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3BSjLRq7DavQHMtMUX8cDEfFAKiy
VG6dnlHLXozwcOz16nwAOrlorceeCqfl6mhYSTTdymjvOlItnNY1e4ts8Ow4zQFD
JoOqpp4gFnDnRWV34WHXHXePwbKcvncslu2Kk/FmRcNVJ533HkcAB8SmB/3N03hj
u/Ou1s3i/2ucJSSL8p41q4W2w5H74DnxlqjSkyD1UeKBggJ8T2SfGjSysUgMLLpo
z6yDz9czx4hUX6Or+57AeYBV5E8G/QHp/wNDg3ZXn/N3ANBm1QDRzJCLvKFUxrlP
sKoIWh7o4OSr5YIIs7sh7sHSz6q9p3d2FHb8fXgN73lthXbKN2HU9I2ilwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG49GeVMdq0HHmiKLRVvFDsJHtHlMB8GA1UdIwQY
MBaAFF2TjiaymEsvoWGqwHsEvbhQqt0WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFpPT0pyS1lTeS1oWWFyQWV3Uzl1RkNxM1JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xYmU5ZjEtNWM0OC00NDI3LWEyYjEt
NmVjN2RiZTI3YmIzLzEvWFpPT0pyS1lTeS1oWWFyQWV3Uzl1RkNxM1JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8xYmU5ZjEtNWM0OC00NDI3LWEyYjEtNmVjN2RiZTI3YmIz
LzEvWFpPT0pyS1lTeS1oWWFyQWV3Uzl1RkNxM1JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKlfSNbLP
Sx9th9hFR1m/clDUnAU1K/o/fp/ca64XFRg/kbj0sgRhbSwKr8vnICL81TvpYhUY
Aaljq0bXmF553xbCRXC7zYeQwpoqmk+NF0KkZalmt0wBXYnaVZQyGHPTzXfmPOcM
VomVvs+lxSFfMkbxJFiNFyZqw7FcKluM1Hom7eSX/XACLB8oKrFzpjylktmIZEYV
Y/r3yPHlVvwxpzdyJQLJT6OFqIRs9cdGZHljU+2fviGC+aGBXfyMRPLFezb+7w6z
VQ/owFJTzAZfLf9y6jx9mL25fAVEybT45i226jnNjUoQT1M1bz+0MkeVGfq/Bn8P
Z3VoP9dxESoLLw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:59:39 2026 by rpki-client