Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: 7hsYJwvv/PGpMlQIZglUVA5rIbaxLEa2UERPBuQMpv4=
Subject key identifier: 20:79:78:C4:BE:ED:00:18:F7:5B:B7:D0:A8:0D:6D:E5:DD:2C:96:74
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 019D996226A31C1012AA2C27D5B979D7FDD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 0CE7
Signing time: Fri 17 Apr 2026 03:00:39 +0000
Manifest this update: Fri 17 Apr 2026 03:00:39 +0000
Manifest next update: Sat 18 Apr 2026 03:00:39 +0000
Files and hashes: 1: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: 0TRgJv1JVOr7XC3wnRQ8MbL2xNsnp3k5K39BCmQU8zo=)
2: eO46gXXoSZwATk8MoN76YPpN1jQ.roa (hash: F/WomuEJ+uQlAxaPHkR6qqNqSNUL0B0LVxqFRNytneU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:26:a3:1c:10:12:aa:2c:27:d5:b9:79:d7:fd:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Apr 17 03:00:39 2026 GMT
Not After : Apr 18 03:00:39 2026 GMT
Subject: CN=207978c4beed0018f75bb7d0a80d6de5dd2c9674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:fa:eb:4a:b8:73:54:72:58:16:93:99:af:
5d:6a:90:b8:bb:72:ca:c0:79:14:15:31:3c:30:10:
83:f3:5e:83:7e:66:b6:88:f2:55:65:c3:f7:41:2b:
19:3d:ae:19:62:19:3c:d8:99:b9:f2:13:21:b4:b8:
5b:7f:34:8e:3a:5f:20:ee:7f:a1:e5:a7:93:7c:20:
0b:47:aa:55:c8:d1:80:bd:c1:db:ac:87:46:c6:33:
a3:74:de:93:0f:94:e0:14:1c:7e:4a:b6:3c:a7:a0:
7a:8b:a9:69:42:6d:99:5d:ed:65:7e:0a:2a:0c:71:
c0:b2:a1:1e:37:e6:89:54:c0:da:c1:5a:c0:83:8d:
44:ee:a3:e5:8b:d0:71:5e:80:08:c4:fd:74:d4:96:
0a:f1:6f:ee:8d:1c:dc:68:f9:fc:4e:d5:66:0e:35:
8e:f6:37:58:97:3e:e0:09:71:c0:02:01:7d:6a:fc:
21:40:2d:09:f2:53:0b:fd:09:25:c2:80:71:50:ec:
e8:21:61:40:37:e2:de:7b:60:50:fa:df:32:91:c4:
17:77:5b:2a:8f:df:3e:18:4b:8d:f8:48:80:45:63:
d4:72:d7:99:51:c7:56:53:61:0b:2a:06:ce:a0:2e:
71:ff:80:06:ab:52:4d:fb:cd:44:52:83:50:bf:67:
85:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:79:78:C4:BE:ED:00:18:F7:5B:B7:D0:A8:0D:6D:E5:DD:2C:96:74
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:a5:f4:50:2b:4b:d5:b6:78:22:c8:4f:87:fc:1c:b2:19:43:
4e:d4:4f:09:de:5f:fa:ea:ae:5b:01:cc:ae:93:44:08:c4:3d:
38:f5:d1:71:d0:f6:fd:dc:c9:1d:89:d7:12:91:39:b9:81:ae:
85:8a:e2:c1:39:c6:ef:01:7f:24:52:f4:44:4a:22:8c:ba:18:
23:06:04:73:33:8d:40:c8:da:5c:56:cb:8a:d9:ab:02:e5:45:
f8:84:05:25:08:86:49:f2:0c:10:07:06:82:e6:72:08:b9:37:
32:8f:72:b0:13:15:ff:47:e3:c7:9d:36:f4:c9:d7:0a:41:8e:
b0:ac:e1:44:a0:6f:ba:8e:70:58:4f:69:f0:e5:a5:a2:17:65:
67:f1:94:9a:26:f9:da:fa:88:52:9e:b8:ba:17:9e:9d:5f:b8:
72:98:20:11:2b:ec:c3:4d:ab:00:61:7d:9a:2f:be:03:96:32:
a5:2c:35:57:fd:ff:e8:90:86:69:92:d6:23:2d:b9:33:5d:fb:
ba:c2:7b:44:ed:9f:38:5e:8e:46:2c:69:c7:c6:df:52:91:6a:
21:fd:ac:05:7b:24:9b:74:71:f8:84:f8:1a:3b:a3:f2:86:cc:
65:d1:32:21:15:c0:53:05:13:7d:8f:b2:75:19:08:69:8f:af:
dd:9f:42:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZYiajHBASqiwn1bl51/3VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjYmI2ZjdkMTFkZWJmOWU0YmE4YjFmNjljMzgzYjhmYzNj
NGFlMTIwHhcNMjYwNDE3MDMwMDM5WhcNMjYwNDE4MDMwMDM5WjAzMTEwLwYDVQQD
EygyMDc5NzhjNGJlZWQwMDE4Zjc1YmI3ZDBhODBkNmRlNWRkMmM5Njc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDv660q4c1RyWBaTma9dapC4u3LK
wHkUFTE8MBCD816Dfma2iPJVZcP3QSsZPa4ZYhk82Jm58hMhtLhbfzSOOl8g7n+h
5aeTfCALR6pVyNGAvcHbrIdGxjOjdN6TD5TgFBx+SrY8p6B6i6lpQm2ZXe1lfgoq
DHHAsqEeN+aJVMDawVrAg41E7qPli9BxXoAIxP101JYK8W/ujRzcaPn8TtVmDjWO
9jdYlz7gCXHAAgF9avwhQC0J8lML/QklwoBxUOzoIWFAN+Lee2BQ+t8ykcQXd1sq
j98+GEuN+EiARWPUcteZUcdWU2ELKgbOoC5x/4AGq1JN+81EUoNQv2eFtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCB5eMS+7QAY91u30KgNbeXdLJZ0MB8GA1UdIwQY
MBaAFFy7b30R3r+eS6ix9pw4O4/DxK4SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEx0dmZSSGV2NTVMcUxIMm5EZzdqOFBFcmhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9jYTgxMjUtNTQ3Ny00MjIyLWIwNTUt
YmJlYjQ1NTBkOWU2LzEvWEx0dmZSSGV2NTVMcUxIMm5EZzdqOFBFcmhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9jYTgxMjUtNTQ3Ny00MjIyLWIwNTUtYmJlYjQ1NTBkOWU2
LzEvWEx0dmZSSGV2NTVMcUxIMm5EZzdqOFBFcmhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6X0UCtL
1bZ4IshPh/wcshlDTtRPCd5f+uquWwHMrpNECMQ9OPXRcdD2/dzJHYnXEpE5uYGu
hYriwTnG7wF/JFL0REoijLoYIwYEczONQMjaXFbLitmrAuVF+IQFJQiGSfIMEAcG
guZyCLk3Mo9ysBMV/0fjx5029MnXCkGOsKzhRKBvuo5wWE9p8OWlohdlZ/GUmib5
2vqIUp64uheenV+4cpggESvsw02rAGF9mi++A5YypSw1V/3/6JCGaZLWIy25M137
usJ7RO2fOF6ORixpx8bfUpFqIf2sBXskm3Rx+IT4Gjuj8obMZdEyIRXAUwUTfY+y
dRkIaY+v3Z9C6w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:24:44 2026 by rpki-client