Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
File: XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft (raw, json)
Hash identifier: UvqBzuj+fi+eEVBE5kfd8HLsZTYhR7U7O9QyYmI6vZo=
Subject key identifier: A0:D3:1E:84:F4:46:03:9E:86:52:15:EB:14:58:27:9F:C4:C6:EB:A3
Authority key identifier: 5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
Certificate issuer: /CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Certificate serial: 019CACB4A90CD57DFB5C45D084F90965842C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
Manifest number: 184C
Signing time: Mon 02 Mar 2026 04:00:46 +0000
Manifest this update: Mon 02 Mar 2026 04:00:46 +0000
Manifest next update: Tue 03 Mar 2026 04:00:46 +0000
Files and hashes: 1: Npw06d3i6OT6W1cbnDgGuSW4ge4.roa (hash: XuYzx4X8wj26HqV6SxCe8B8EhqEndYSd+I3KwtxjVxU=)
2: XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl (hash: wsjI5h82YoIqqq1MI1uc/CS3gjfDZeLidDxk5anA5SU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:a9:0c:d5:7d:fb:5c:45:d0:84:f9:09:65:84:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Validity
Not Before: Mar 2 04:00:46 2026 GMT
Not After : Mar 3 04:00:46 2026 GMT
Subject: CN=a0d31e84f446039e865215eb1458279fc4c6eba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:54:ad:60:eb:a1:e8:c9:44:4b:f0:e5:2c:
06:d2:66:fe:34:de:e2:72:ec:b5:b3:4f:7e:2c:b2:
4e:1e:c7:67:17:f9:af:34:82:a1:9b:ec:8e:bf:71:
2f:38:b8:ff:f8:ca:b2:ca:bb:91:2a:1c:ca:70:e6:
be:15:d6:53:0b:9f:61:9c:69:be:71:46:1d:75:f1:
ff:ae:6d:a8:6f:f2:5f:be:3b:b1:75:16:7f:33:85:
1e:12:24:01:e3:ea:55:01:39:f4:62:33:fd:ac:4f:
a5:de:58:c3:f6:ed:20:63:58:c7:1a:bc:ba:dc:f0:
34:d8:f1:82:7b:75:01:00:32:26:95:7e:24:df:05:
97:a0:5a:f7:29:07:6b:46:3a:ec:64:13:4e:9c:83:
b9:82:6e:81:41:12:fb:94:ca:d2:29:3c:9f:ab:d0:
a4:2b:88:ad:e8:14:bf:98:ed:cb:bb:0a:01:7f:d2:
e0:e2:b7:38:66:9e:5f:dc:b1:b0:16:fd:cf:c4:f4:
2c:1d:28:5f:0f:dc:47:1c:25:a6:55:27:e6:6f:1c:
07:11:a2:91:ac:50:c7:99:60:67:23:2c:df:bb:07:
b9:41:37:fe:30:40:00:ea:bb:84:b7:86:ab:67:d6:
8b:02:ac:d0:9d:a6:3f:6f:37:fb:f6:33:5c:63:cb:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D3:1E:84:F4:46:03:9E:86:52:15:EB:14:58:27:9F:C4:C6:EB:A3
X509v3 Authority Key Identifier:
keyid:5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:01:0c:fe:74:c5:f3:2a:b3:fe:84:72:b4:31:d1:55:60:6e:
a7:de:78:20:c6:54:a9:e0:02:ee:a7:92:39:f6:cb:47:76:20:
01:85:3d:5c:53:e0:4b:d7:36:91:e3:11:35:b7:b4:cc:0f:50:
c6:12:de:41:c9:9b:87:95:c2:a3:4d:a7:70:f9:09:c8:63:2e:
da:a5:fa:3c:52:e4:fc:f9:fe:f0:67:b3:26:63:8a:ce:fa:0f:
c3:e9:15:52:af:78:82:02:1a:d1:cd:e5:20:85:65:be:c1:28:
cd:1c:91:93:cf:03:89:7f:6b:b6:db:c4:2d:b9:51:c0:83:69:
6c:dd:5c:4c:30:f6:73:7a:51:be:b0:c8:de:ea:90:2d:20:e5:
29:93:50:21:8e:07:49:67:98:3a:bc:53:09:da:6f:03:69:87:
f4:7b:57:ac:ef:24:3e:09:0b:fd:8d:95:48:74:49:07:88:f6:
01:c9:fb:c7:ff:87:6d:d9:27:0d:ae:1d:ca:e6:fa:dd:0e:0b:
36:f3:1d:fe:5e:59:12:79:2d:8c:b7:b8:be:32:06:c4:a0:aa:
8e:b6:5a:b5:98:54:26:00:81:f5:88:6d:34:4b:04:ef:28:8c:
65:09:d2:98:a1:0a:30:fe:e3:41:84:e5:25:28:2f:5f:8a:d7:
bb:8f:dc:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystKkM1X37XEXQhPkJZYQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZjVlZDA0MGVmZTJlNTgxNzU0ZGViNWMzY2Q4MmQ5OWRm
ZWU4ZDkwHhcNMjYwMzAyMDQwMDQ2WhcNMjYwMzAzMDQwMDQ2WjAzMTEwLwYDVQQD
EyhhMGQzMWU4NGY0NDYwMzllODY1MjE1ZWIxNDU4Mjc5ZmM0YzZlYmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbhUrWDroejJREvw5SwG0mb+NN7i
cuy1s09+LLJOHsdnF/mvNIKhm+yOv3EvOLj/+MqyyruRKhzKcOa+FdZTC59hnGm+
cUYddfH/rm2ob/JfvjuxdRZ/M4UeEiQB4+pVATn0YjP9rE+l3ljD9u0gY1jHGry6
3PA02PGCe3UBADImlX4k3wWXoFr3KQdrRjrsZBNOnIO5gm6BQRL7lMrSKTyfq9Ck
K4it6BS/mO3LuwoBf9Lg4rc4Zp5f3LGwFv3PxPQsHShfD9xHHCWmVSfmbxwHEaKR
rFDHmWBnIyzfuwe5QTf+MEAA6ruEt4arZ9aLAqzQnaY/bzf79jNcY8tkpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKDTHoT0RgOehlIV6xRYJ5/ExuujMB8GA1UdIwQY
MBaAFF317QQO/i5YF1TetcPNgtmd/ujZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGZYdEJBNy1MbGdYVk42MXc4MkMyWjMtNk5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iM2Q3NmYtNmVmOS00YzRhLTgxMmMt
YmVmZTRiMzRjNmYwLzEvWGZYdEJBNy1MbGdYVk42MXc4MkMyWjMtNk5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9iM2Q3NmYtNmVmOS00YzRhLTgxMmMtYmVmZTRiMzRjNmYw
LzEvWGZYdEJBNy1MbGdYVk42MXc4MkMyWjMtNk5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASgEM/nTF
8yqz/oRytDHRVWBup954IMZUqeAC7qeSOfbLR3YgAYU9XFPgS9c2keMRNbe0zA9Q
xhLeQcmbh5XCo02ncPkJyGMu2qX6PFLk/Pn+8GezJmOKzvoPw+kVUq94ggIa0c3l
IIVlvsEozRyRk88DiX9rttvELblRwINpbN1cTDD2c3pRvrDI3uqQLSDlKZNQIY4H
SWeYOrxTCdpvA2mH9HtXrO8kPgkL/Y2VSHRJB4j2Acn7x/+HbdknDa4dyub63Q4L
NvMd/l5ZEnktjLe4vjIGxKCqjrZatZhUJgCB9YhtNEsE7yiMZQnSmKEKMP7jQYTl
JSgvX4rXu4/cVQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:30:09 2026 by rpki-client