Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
File: XY9AsSSN49pfXWCX-BBoKTxL7vc.mft (raw, json)
Hash identifier: WUhmGRz9+t4thKhLjvIh8F244F4XrAl8IyUINZexqpk=
Subject key identifier: 98:C5:85:A4:EA:C0:50:45:4D:A9:4A:87:3E:5E:50:FB:E2:8D:50:8D
Authority key identifier: 5D:8F:40:B1:24:8D:E3:DA:5F:5D:60:97:F8:10:68:29:3C:4B:EE:F7
Certificate issuer: /CN=5d8f40b1248de3da5f5d6097f81068293c4beef7
Certificate serial: 019D9C2CD6C04B079E90CA2529C9E8B15085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XY9AsSSN49pfXWCX-BBoKTxL7vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
Manifest number: 01EE
Signing time: Fri 17 Apr 2026 16:01:17 +0000
Manifest this update: Fri 17 Apr 2026 16:01:17 +0000
Manifest next update: Sat 18 Apr 2026 16:01:17 +0000
Files and hashes: 1: XY9AsSSN49pfXWCX-BBoKTxL7vc.crl (hash: CPpbGWA1bl7w2yka6B1o/3AcVbMNXIEdFCDglmBtIJg=)
2: _a7gNZLlQxgHn1SWkyljxM4Vp8E.roa (hash: riqb9ZgtO6K145lOcaQYpYRovN3sqPG5Tn86hViYkIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XY9AsSSN49pfXWCX-BBoKTxL7vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:d6:c0:4b:07:9e:90:ca:25:29:c9:e8:b1:50:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8f40b1248de3da5f5d6097f81068293c4beef7
Validity
Not Before: Apr 17 16:01:17 2026 GMT
Not After : Apr 18 16:01:17 2026 GMT
Subject: CN=98c585a4eac050454da94a873e5e50fbe28d508d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ab:f7:e8:c6:fb:ab:5e:d6:38:b1:4f:f4:d0:
4a:1c:c9:c6:a8:29:15:05:f2:a5:88:50:15:b7:9b:
5c:01:00:ae:4e:78:52:ad:db:75:71:61:36:11:f8:
68:2f:5b:37:ba:13:cc:d4:01:cc:3c:f9:78:c6:b0:
66:a9:6b:34:64:0e:ea:28:ba:3c:f5:7f:b6:bf:40:
1b:89:82:95:9a:a2:68:7d:13:81:2f:78:4d:66:30:
d8:d4:48:c2:86:25:94:40:d2:57:6a:bd:36:5a:25:
bc:ef:2d:35:b6:f1:0c:c6:91:b9:5f:3d:54:8a:78:
26:34:01:1f:05:c9:42:c4:d3:30:ef:5b:12:2f:91:
14:fc:a2:6c:d8:23:e3:5d:be:f7:dd:5c:f5:d1:4a:
1d:8d:92:d0:4e:eb:a9:30:a4:d2:61:54:3c:15:cb:
0d:fa:a5:f8:82:3b:7e:63:46:74:40:72:b6:ad:2d:
58:6c:04:07:a9:ae:b8:e8:cb:55:8e:f8:c4:43:b7:
8d:02:8c:46:4e:31:fb:63:ad:98:06:a3:b8:91:dd:
71:16:d1:f9:48:17:a4:e1:86:81:bb:65:bf:a5:21:
83:aa:83:10:8a:05:c1:d5:a0:d3:01:85:a0:8a:f0:
83:84:09:85:8c:d2:b5:44:4e:9a:c3:35:d2:4c:1a:
ed:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C5:85:A4:EA:C0:50:45:4D:A9:4A:87:3E:5E:50:FB:E2:8D:50:8D
X509v3 Authority Key Identifier:
keyid:5D:8F:40:B1:24:8D:E3:DA:5F:5D:60:97:F8:10:68:29:3C:4B:EE:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XY9AsSSN49pfXWCX-BBoKTxL7vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:7b:0c:36:55:25:96:ab:4a:25:20:59:65:c3:66:75:80:2f:
3e:90:cb:ea:01:fb:de:a4:8c:5d:40:2a:19:3f:80:48:fc:4e:
03:d7:ed:25:8a:e2:6a:f0:d4:d6:a1:f0:d4:9b:8a:93:a7:c9:
04:d3:89:0b:69:e0:6b:1a:f4:24:d2:0c:b2:5b:db:65:0b:b3:
c1:ba:3d:37:df:49:68:17:6b:7e:df:ed:72:71:5f:65:4e:0b:
9e:17:e6:7d:31:c6:cc:d4:f9:d9:e6:67:d3:9f:83:d4:f1:da:
3e:c2:a4:71:8f:4c:f3:4a:15:b5:be:50:38:1d:4e:a6:33:2f:
22:5c:6c:bd:f6:8a:78:22:e5:03:dd:59:5b:d9:87:2e:e6:3c:
64:5a:d0:92:c3:b2:07:c5:34:f6:98:02:00:8e:9e:af:7c:d2:
04:7d:4a:ba:03:4a:88:a2:fc:ef:64:2f:9f:ea:49:5b:26:32:
dc:fa:38:6b:78:a4:f7:de:59:f5:4d:b3:5b:77:a6:13:c1:72:
c8:45:2f:b2:a5:b2:4d:76:97:ad:28:4b:6c:07:97:1e:64:59:
81:88:69:e2:d5:75:42:c0:79:fd:2d:1b:14:94:5b:0d:02:10:
1f:b0:1b:1a:e9:45:ff:5c:09:bb:6e:1d:4c:69:e2:c9:de:fc:
09:1d:44:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cLNbASweekMolKcnosVCFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkOGY0MGIxMjQ4ZGUzZGE1ZjVkNjA5N2Y4MTA2ODI5M2M0
YmVlZjcwHhcNMjYwNDE3MTYwMTE3WhcNMjYwNDE4MTYwMTE3WjAzMTEwLwYDVQQD
Eyg5OGM1ODVhNGVhYzA1MDQ1NGRhOTRhODczZTVlNTBmYmUyOGQ1MDhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyav36Mb7q17WOLFP9NBKHMnGqCkV
BfKliFAVt5tcAQCuTnhSrdt1cWE2EfhoL1s3uhPM1AHMPPl4xrBmqWs0ZA7qKLo8
9X+2v0AbiYKVmqJofROBL3hNZjDY1EjChiWUQNJXar02WiW87y01tvEMxpG5Xz1U
ingmNAEfBclCxNMw71sSL5EU/KJs2CPjXb733Vz10UodjZLQTuupMKTSYVQ8FcsN
+qX4gjt+Y0Z0QHK2rS1YbAQHqa646MtVjvjEQ7eNAoxGTjH7Y62YBqO4kd1xFtH5
SBek4YaBu2W/pSGDqoMQigXB1aDTAYWgivCDhAmFjNK1RE6awzXSTBrtJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjFhaTqwFBFTalKhz5eUPvijVCNMB8GA1UdIwQY
MBaAFF2PQLEkjePaX11gl/gQaCk8S+73MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFk5QXNTU040OXBmWFdDWC1CQm9LVHhMN3ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8xMGZlYTgtNGY5Yy00MmUyLWIwNDEt
YmQ2NWZlZDY3ZGM2LzEvWFk5QXNTU040OXBmWFdDWC1CQm9LVHhMN3ZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8xMGZlYTgtNGY5Yy00MmUyLWIwNDEtYmQ2NWZlZDY3ZGM2
LzEvWFk5QXNTU040OXBmWFdDWC1CQm9LVHhMN3ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPnsMNlUl
lqtKJSBZZcNmdYAvPpDL6gH73qSMXUAqGT+ASPxOA9ftJYriavDU1qHw1JuKk6fJ
BNOJC2ngaxr0JNIMslvbZQuzwbo9N99JaBdrft/tcnFfZU4LnhfmfTHGzNT52eZn
05+D1PHaPsKkcY9M80oVtb5QOB1OpjMvIlxsvfaKeCLlA91ZW9mHLuY8ZFrQksOy
B8U09pgCAI6er3zSBH1KugNKiKL872Qvn+pJWyYy3Po4a3ik995Z9U2zW3emE8Fy
yEUvsqWyTXaXrShLbAeXHmRZgYhp4tV1QsB5/S0bFJRbDQIQH7AbGulF/1wJu24d
TGniyd78CR1EZA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 18:58:06 2026 by rpki-client