Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: wXiu7qANEgend7tH/8BxZcSflF2M1Bq7wpu+SuvkzKU=
Subject key identifier: F8:20:50:0A:B2:EE:9E:B8:5E:6B:8C:12:CA:24:BD:78:2A:24:9A:B4
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 019CAE350AB09AB7146C33F50E9E26C0793A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 13B2
Signing time: Mon 02 Mar 2026 11:00:37 +0000
Manifest this update: Mon 02 Mar 2026 11:00:37 +0000
Manifest next update: Tue 03 Mar 2026 11:00:37 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: rgbzDeydjNof1KxGp6ajLAKgsdBU+Ckw6gsjvzkc8ME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:0a:b0:9a:b7:14:6c:33:f5:0e:9e:26:c0:79:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Mar 2 11:00:37 2026 GMT
Not After : Mar 3 11:00:37 2026 GMT
Subject: CN=f820500ab2ee9eb85e6b8c12ca24bd782a249ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c8:c8:2c:48:d5:9b:64:18:a7:ff:cf:3d:d3:
9a:2c:18:b3:55:be:f2:f6:20:3f:91:15:7e:37:76:
ea:f3:bd:d8:c1:7f:96:84:00:cb:24:d3:a5:69:3b:
ef:e0:8c:6f:75:2d:0c:a0:64:c7:c5:d9:7a:2b:ae:
c1:71:e0:b5:6e:ee:0d:43:38:67:15:1d:76:f8:f8:
bc:69:af:46:77:36:68:3d:c3:ba:31:3c:18:0a:56:
44:eb:81:b3:81:31:14:dc:42:7b:97:ff:2d:ab:73:
86:59:1b:84:23:d3:5a:54:41:c3:39:d6:9d:ec:fd:
ec:b3:aa:0e:0f:da:13:01:78:ba:9a:b1:08:1c:30:
3f:ed:3c:d2:c4:03:37:16:62:03:4f:0b:6d:15:7b:
93:c8:d0:33:77:88:f5:b5:0f:2f:3e:8e:c3:b2:b3:
85:e9:6f:04:d4:0f:4f:9e:11:41:b4:7d:59:38:c9:
8a:1f:e0:d7:c2:5a:cc:5b:fb:d5:fb:02:5d:88:50:
a2:14:ca:ce:9d:6e:30:4d:1c:19:93:04:ad:34:ea:
8f:23:0c:dc:57:90:67:60:06:c8:7a:aa:03:0a:d9:
eb:8a:5c:69:de:c6:73:71:3b:15:d4:78:8c:7b:25:
8d:f4:25:3a:df:01:10:c2:02:ab:42:c0:9d:46:20:
d6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:20:50:0A:B2:EE:9E:B8:5E:6B:8C:12:CA:24:BD:78:2A:24:9A:B4
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:c9:9c:1a:be:f1:ce:87:32:25:b7:bd:ba:14:f6:a5:7d:61:
18:98:d7:50:50:9b:4f:b1:8e:65:74:07:80:db:c2:4d:5d:7d:
0e:ec:be:7c:33:66:32:b1:c8:ab:d0:f5:7e:17:df:bf:a2:4d:
df:f4:c1:b2:58:6c:bf:f2:ad:88:05:f0:fe:70:fa:d0:8c:fb:
a9:4f:c5:79:f6:e9:c2:d9:ea:99:9d:dd:10:43:66:45:58:2c:
43:cd:03:3c:5a:f0:9c:fd:38:50:4b:15:00:66:71:a9:70:6f:
eb:87:49:0d:5c:38:2c:3c:80:13:f9:ce:4a:6f:3a:3c:da:8f:
0f:b3:36:0e:f8:1c:90:c8:76:a8:7a:3b:36:d1:f7:ff:76:41:
b1:d2:49:e8:b2:2d:b6:b7:86:85:c1:c4:89:a3:22:31:b3:51:
4c:b8:31:af:7f:3d:bb:5b:23:4a:53:7d:e6:74:12:56:62:a5:
78:75:7f:f3:eb:3f:63:ce:29:10:57:69:33:ce:79:95:d2:d3:
7c:9b:d0:d2:e8:99:2b:b2:2f:51:26:fc:58:4c:70:01:9f:c7:
91:ce:8c:21:8d:ba:f5:e5:dd:69:3f:a2:b6:af:ed:34:69:58:
08:34:be:f5:19:ff:fa:99:86:0f:85:7d:aa:d8:49:ff:10:7c:
4c:a1:e7:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyuNQqwmrcUbDP1Dp4mwHk6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYmEyNjMyMTRhMTE3MDU1MTk4MGVlOTE3MTlmOGQ4OGM2
MjZiNWUwHhcNMjYwMzAyMTEwMDM3WhcNMjYwMzAzMTEwMDM3WjAzMTEwLwYDVQQD
EyhmODIwNTAwYWIyZWU5ZWI4NWU2YjhjMTJjYTI0YmQ3ODJhMjQ5YWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4MjILEjVm2QYp//PPdOaLBizVb7y
9iA/kRV+N3bq873YwX+WhADLJNOlaTvv4IxvdS0MoGTHxdl6K67BceC1bu4NQzhn
FR12+Pi8aa9GdzZoPcO6MTwYClZE64GzgTEU3EJ7l/8tq3OGWRuEI9NaVEHDOdad
7P3ss6oOD9oTAXi6mrEIHDA/7TzSxAM3FmIDTwttFXuTyNAzd4j1tQ8vPo7DsrOF
6W8E1A9PnhFBtH1ZOMmKH+DXwlrMW/vV+wJdiFCiFMrOnW4wTRwZkwStNOqPIwzc
V5BnYAbIeqoDCtnrilxp3sZzcTsV1HiMeyWN9CU63wEQwgKrQsCdRiDWYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPggUAqy7p64XmuMEsokvXgqJJq0MB8GA1UdIwQY
MBaAFF26JjIUoRcFUZgO6RcZ+NiMYmteMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2It
MTM1YTkzOTgyOTMxLzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80ZTQxNGYtMGE3Ni00ZmU5LThiN2ItMTM1YTkzOTgyOTMx
LzEvWGJvbU1oU2hGd1ZSbUE3cEZ4bjQySXhpYTE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASMmcGr7x
zocyJbe9uhT2pX1hGJjXUFCbT7GOZXQHgNvCTV19Duy+fDNmMrHIq9D1fhffv6JN
3/TBslhsv/KtiAXw/nD60Iz7qU/FefbpwtnqmZ3dEENmRVgsQ80DPFrwnP04UEsV
AGZxqXBv64dJDVw4LDyAE/nOSm86PNqPD7M2DvgckMh2qHo7NtH3/3ZBsdJJ6LIt
treGhcHEiaMiMbNRTLgxr389u1sjSlN95nQSVmKleHV/8+s/Y84pEFdpM855ldLT
fJvQ0uiZK7IvUSb8WExwAZ/Hkc6MIY269eXdaT+itq/tNGlYCDS+9Rn/+pmGD4V9
qthJ/xB8TKHnBg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 20:56:37 2026 by rpki-client