Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: NMoydLPl9n8+f3n8hIzQMemkxqJX6Dv0JPmGGKGH3dQ=
Subject key identifier: 23:5A:8C:EA:3D:F7:C8:9A:AA:48:26:DF:B2:D8:A9:FD:24:E0:16:A8
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 019CAA21A8A051D03144831DA81B1510C5CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 1860
Signing time: Sun 01 Mar 2026 16:00:58 +0000
Manifest this update: Sun 01 Mar 2026 16:00:58 +0000
Manifest next update: Mon 02 Mar 2026 16:00:58 +0000
Files and hashes: 1: AtV2hA3YXGqznUtgR3uB6bOY8lI.roa (hash: E9jIH1WdWmHG5Hqaca5c+6ilzJbhu15ZC+JxJ/GcG+0=)
2: EoMrU16bqHoGy2xh9XxsU9osNps.roa (hash: /uTZPWaskDiwuTtmaYcl1U/fLPuv+/ZTx4jUSu0Cxmo=)
3: WQ55TI7O_Y3_x9hkYSvF2UvokSE.roa (hash: TZOmAdpezSY7WR8DK0sxR8J5sP9pIOwu7JtZmeFi+dA=)
4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: 2jLURShHS6qWju8ZnloWxvdX6xCeSQID28HMGy2S55o=)
5: ZjJCoFoY4vkCAYGodEJRPnkGA1E.roa (hash: IBH/AgeMMVSuYzKj8XBPFVbLx3ITGxDTcTWy5mB/4kk=)
6: cBiAa5mhSgA43crHBox7ENCMzz0.roa (hash: o+Wpg4wmE93CRBVaPQJ3jYatCSCBt6U/zsJRrbAFVqU=)
7: hgl809tjaX7Gbv4DItgm3ScJV_4.roa (hash: 1spmr6hLWhe0MEAFi9Vr2mFMBf7qQUqSQroJeyohJqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:a8:a0:51:d0:31:44:83:1d:a8:1b:15:10:c5:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Mar 1 16:00:58 2026 GMT
Not After : Mar 2 16:00:58 2026 GMT
Subject: CN=235a8cea3df7c89aaa4826dfb2d8a9fd24e016a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fc:d2:bb:34:0b:d4:fc:26:80:99:41:89:90:
9d:94:a0:55:f5:5f:22:6a:65:6a:eb:1f:bc:d4:49:
54:a6:78:3c:6a:84:1e:fe:27:32:c8:75:6c:56:50:
9d:cd:96:31:ef:21:35:4f:b5:de:f7:58:20:4c:b2:
9e:92:47:ef:64:1a:92:ac:6a:64:15:d3:b5:ac:87:
d9:1e:4c:82:dd:a8:50:38:d7:8c:37:de:26:bb:b2:
97:8e:e1:56:ac:3a:ac:4b:49:a3:67:87:dd:a4:e1:
16:04:fc:db:47:a9:a9:45:64:8a:04:9a:2a:0c:78:
73:48:6f:15:a9:35:46:6c:ce:97:ba:df:30:9b:69:
69:45:2f:d6:87:76:f0:a3:ef:f7:8c:f0:3c:1d:c0:
b0:f7:fe:6c:19:52:54:f4:75:35:50:09:7d:ed:b8:
7a:40:4d:3e:0f:fb:22:d1:34:93:ac:71:5f:e4:ac:
58:1c:de:20:30:85:40:c0:18:5a:2f:06:6e:89:e7:
c7:60:20:3a:f1:19:cb:62:da:ed:56:76:1c:84:66:
99:2e:38:8d:0f:6d:ed:87:1e:9d:14:c6:e9:d3:50:
6b:fd:90:55:d0:09:a9:d8:6a:88:35:05:45:52:25:
dc:d5:b2:91:c7:0e:a2:ce:21:7d:4a:5f:e7:a3:db:
6b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5A:8C:EA:3D:F7:C8:9A:AA:48:26:DF:B2:D8:A9:FD:24:E0:16:A8
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:97:3d:e6:df:59:56:55:9a:cf:17:52:41:e0:08:7e:16:e9:
6f:b6:93:e7:3c:1d:d8:31:68:2b:8a:ff:90:cb:bf:88:92:03:
88:75:56:98:f9:91:d5:b1:d2:12:96:07:2c:95:8e:77:dc:a5:
5e:91:50:1e:fb:67:0e:fc:fb:10:27:89:0e:b8:f4:4a:e1:a5:
ae:ec:66:c9:18:9f:2e:e6:fa:a2:0d:7d:39:25:61:89:83:e6:
56:10:3a:e4:3a:8c:7b:c9:d3:a6:73:ae:cd:81:6f:9f:d4:f8:
26:62:94:ee:40:fa:f1:4d:17:e1:1c:47:98:a1:0e:0f:6d:54:
ce:5a:16:01:9c:85:ce:94:55:50:9e:a6:81:21:56:54:4a:01:
cc:00:63:74:1f:09:4a:47:5b:fe:d8:72:46:88:c7:f2:74:c3:
a0:e7:34:3c:c1:be:3f:59:e9:62:e4:dc:cc:2a:19:5c:c9:7c:
23:29:9b:1c:68:c7:53:a4:07:54:a3:e3:9a:1e:90:db:54:4d:
af:73:a5:7a:ad:62:96:77:90:67:e7:62:72:7d:36:84:e1:8f:
3a:03:ab:87:b3:1e:3b:e9:bb:bf:76:8a:ca:87:e1:9c:53:5e:
d8:01:38:2b:85:22:10:91:3b:35:b4:94:11:a3:b8:2f:6d:c3:
95:d4:8a:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqIaigUdAxRIMdqBsVEMXOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOGQwN2I0NWY3ZDgzMTI0YzlmOGMwZmFjMDNiZWMwMjQ2
OGIzN2UwHhcNMjYwMzAxMTYwMDU4WhcNMjYwMzAyMTYwMDU4WjAzMTEwLwYDVQQD
EygyMzVhOGNlYTNkZjdjODlhYWE0ODI2ZGZiMmQ4YTlmZDI0ZTAxNmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/zSuzQL1PwmgJlBiZCdlKBV9V8i
amVq6x+81ElUpng8aoQe/icyyHVsVlCdzZYx7yE1T7Xe91ggTLKekkfvZBqSrGpk
FdO1rIfZHkyC3ahQONeMN94mu7KXjuFWrDqsS0mjZ4fdpOEWBPzbR6mpRWSKBJoq
DHhzSG8VqTVGbM6Xut8wm2lpRS/Wh3bwo+/3jPA8HcCw9/5sGVJU9HU1UAl97bh6
QE0+D/si0TSTrHFf5KxYHN4gMIVAwBhaLwZuiefHYCA68RnLYtrtVnYchGaZLjiN
D23thx6dFMbp01Br/ZBV0Amp2GqINQVFUiXc1bKRxw6iziF9Sl/no9trFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCNajOo998iaqkgm37LYqf0k4BaoMB8GA1UdIwQY
MBaAFF6NB7RffYMSTJ+MD6wDvsAkaLN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQt
NmM4ZmQ4NGJiNWY1LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9hMTY4ZTktZDA3MC00NGUwLTk0YTQtNmM4ZmQ4NGJiNWY1
LzEvWG8wSHRGOTlneEpNbjR3UHJBTy13Q1JvczM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABZc95t9Z
VlWazxdSQeAIfhbpb7aT5zwd2DFoK4r/kMu/iJIDiHVWmPmR1bHSEpYHLJWOd9yl
XpFQHvtnDvz7ECeJDrj0SuGlruxmyRifLub6og19OSVhiYPmVhA65DqMe8nTpnOu
zYFvn9T4JmKU7kD68U0X4RxHmKEOD21UzloWAZyFzpRVUJ6mgSFWVEoBzABjdB8J
Skdb/thyRojH8nTDoOc0PMG+P1npYuTczCoZXMl8IymbHGjHU6QHVKPjmh6Q21RN
r3Oleq1ilneQZ+dicn02hOGPOgOrh7MeO+m7v3aKyofhnFNe2AE4K4UiEJE7NbSU
EaO4L23DldSKGg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:51:54 2026 by rpki-client