
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json)
Hash identifier: p9d74pwQ7twbMW/8ZiYPspvpbIiCfrSltnRJFnAirBc=
Subject key identifier: 2D:21:E3:E9:D3:78:CE:1C:C9:6B:65:6E:6E:3C:7B:94:8A:BA:E8:DF
Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Certificate serial: 019CADC81F82D99DA143459387DF6E559696
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
Manifest number: 1857
Signing time: Mon 02 Mar 2026 09:01:39 +0000
Manifest this update: Mon 02 Mar 2026 09:01:39 +0000
Manifest next update: Tue 03 Mar 2026 09:01:39 +0000
Files and hashes: 1: EhB5W-KfEwT0NkOmIwksEobFf8s.roa (hash: EFH6duVwDra37mgW3ZdzFLq6hzVDIYr0D81IscrZcCw=)
2: Vcrxz5upkyAccEnWWkm1jKbiHCU.roa (hash: DF9acpeNSt3QcU3RLTkyAoSPyBTgnqf4yVUPlH/IEUw=)
3: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: 9Snzaf+MWon1fdmehxt7KGJPF3+UuFjaUtEnaKS+lJE=)
4: d61QkjArffvt5fKMvIXWF8nIPcE.roa (hash: n77B2cSkql2uFL2mgGTUwbPJJQCN8pumVVKiMumdlmQ=)
5: vEmqZz7TyOIZcMFGWq5sr0qWa9c.roa (hash: rxEx9pdbLlzRrifCSn69fPPljhSEaN1XwXY/F5cFM9M=)
6: x9IxkDkzEkDokkzWh7NpXLA6pSU.roa (hash: HHdD49yqs88lPuXMSPj56CT2/FilbQVuZopBY9/6oH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:1f:82:d9:9d:a1:43:45:93:87:df:6e:55:96:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Validity
Not Before: Mar 2 09:01:39 2026 GMT
Not After : Mar 3 09:01:39 2026 GMT
Subject: CN=2d21e3e9d378ce1cc96b656e6e3c7b948abae8df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a0:3f:54:35:c9:7c:04:cf:5b:b1:e9:ad:e2:
25:4c:f5:ed:ff:4a:16:37:1c:77:90:38:56:44:14:
d0:47:1b:11:98:26:aa:48:76:99:9d:6b:ed:5f:53:
a1:69:05:11:b1:e5:6f:61:95:0d:c1:e9:27:e0:ce:
96:20:38:ed:1d:f1:1e:35:26:28:ae:fa:e1:2d:54:
43:e6:6a:f2:39:96:05:58:1e:d1:86:1c:7a:4e:76:
2e:e3:94:32:29:57:cd:49:cf:f0:c4:06:a2:e6:68:
11:ee:8a:30:27:44:10:9f:74:49:ab:73:90:ec:94:
f6:84:d4:d3:d6:53:43:02:40:b4:7e:49:6a:80:5d:
a5:12:31:8f:2d:73:04:a5:f9:7b:64:78:80:8b:6d:
07:32:f2:04:d1:f0:2a:cb:16:bd:82:fb:1c:74:d8:
32:80:1e:b1:7b:ff:44:8e:ef:e2:43:3a:2c:c6:14:
5e:03:1c:a4:5d:00:e5:1d:56:66:31:d3:3b:d4:49:
3f:01:84:a6:41:0f:7f:e8:71:e9:dd:ae:ae:a5:a4:
a7:0d:38:df:f9:ca:4a:f7:ac:25:1b:ca:a8:06:f4:
8a:16:d1:e0:f6:b5:9f:93:a2:09:13:ce:ff:b9:c7:
3f:6b:f8:d9:55:bc:27:4f:2b:ea:d4:64:cc:57:0b:
15:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:21:E3:E9:D3:78:CE:1C:C9:6B:65:6E:6E:3C:7B:94:8A:BA:E8:DF
X509v3 Authority Key Identifier:
keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d4:4e:10:9d:b6:09:b0:53:0a:3b:4e:e5:14:78:22:f3:a6:
a1:cd:39:a5:39:f5:c4:9b:e9:17:fb:d8:46:f1:95:c0:79:0a:
fe:71:56:b1:d1:c2:40:c6:32:68:0a:7c:8b:ed:d5:57:d0:dc:
c0:af:09:cc:be:3d:ec:3a:52:96:7c:aa:20:fa:09:94:57:60:
91:89:f9:85:8a:0e:62:d9:5c:ec:d1:68:0f:e1:01:62:61:bf:
e8:d4:cc:ee:8a:1c:c1:4b:d3:42:2b:68:a8:58:27:29:e9:d6:
ad:fd:64:d0:da:22:d1:df:6f:18:12:0c:7f:2a:a4:30:5e:20:
54:59:d2:21:94:42:90:95:34:a7:2a:27:d5:0a:de:99:3f:c3:
23:c4:6b:ae:63:b0:33:ba:fa:99:f4:f1:78:dc:70:5b:2d:8a:
e7:9d:a3:1c:e8:70:19:80:d3:4a:f7:85:9b:97:4d:eb:55:c7:
c3:a0:66:9d:89:c1:13:81:25:20:bf:5e:51:33:69:c3:ac:0e:
aa:df:6f:b6:33:62:d9:ff:62:2a:14:63:57:f1:a8:76:92:80:
91:79:b0:57:4c:6f:12:cf:95:67:dc:54:e9:dc:18:37:ca:18:
4a:46:0c:ae:bd:42:3a:66:47:ae:20:fd:c7:68:df:7f:df:21:
4d:49:42:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytyB+C2Z2hQ0WTh99uVZaWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2RlY2ExNzFlNDIyYzc5YzkzOGMyNzMyYTkwZDQ4YThj
NTNjMDYwHhcNMjYwMzAyMDkwMTM5WhcNMjYwMzAzMDkwMTM5WjAzMTEwLwYDVQQD
EygyZDIxZTNlOWQzNzhjZTFjYzk2YjY1NmU2ZTNjN2I5NDhhYmFlOGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaA/VDXJfATPW7HpreIlTPXt/0oW
Nxx3kDhWRBTQRxsRmCaqSHaZnWvtX1OhaQURseVvYZUNwekn4M6WIDjtHfEeNSYo
rvrhLVRD5mryOZYFWB7Rhhx6TnYu45QyKVfNSc/wxAai5mgR7oowJ0QQn3RJq3OQ
7JT2hNTT1lNDAkC0fklqgF2lEjGPLXMEpfl7ZHiAi20HMvIE0fAqyxa9gvscdNgy
gB6xe/9Eju/iQzosxhReAxykXQDlHVZmMdM71Ek/AYSmQQ9/6HHp3a6upaSnDTjf
+cpK96wlG8qoBvSKFtHg9rWfk6IJE87/ucc/a/jZVbwnTyvq1GTMVwsVYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC0h4+nTeM4cyWtlbm48e5SKuujfMB8GA1UdIwQY
MBaAFFzN7KFx5CLHnJOMJzKpDUioxTwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUt
YTg4MWVjODIyOGI1LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUtYTg4MWVjODIyOGI1
LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtROEJ22
CbBTCjtO5RR4IvOmoc05pTn1xJvpF/vYRvGVwHkK/nFWsdHCQMYyaAp8i+3VV9Dc
wK8JzL497DpSlnyqIPoJlFdgkYn5hYoOYtlc7NFoD+EBYmG/6NTM7oocwUvTQito
qFgnKenWrf1k0Noi0d9vGBIMfyqkMF4gVFnSIZRCkJU0pyon1QremT/DI8RrrmOw
M7r6mfTxeNxwWy2K552jHOhwGYDTSveFm5dN61XHw6BmnYnBE4ElIL9eUTNpw6wO
qt9vtjNi2f9iKhRjV/GodpKAkXmwV0xvEs+VZ9xU6dwYN8oYSkYMrr1COmZHriD9
x2jff98hTUlC+g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 18:08:31 2026 by rpki-client