Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: Ka2Uw5S0XCQUTv3clwbXt9h7bYLsPRFNgt1dEamjZ9A=
Subject key identifier: 9F:43:70:C2:6F:85:22:03:51:E7:4D:E3:F8:D8:51:12:3E:1E:E6:18
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019CAE35C3C1173FFEC081E101A01D9E7DED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 11F2
Signing time: Mon 02 Mar 2026 11:01:24 +0000
Manifest this update: Mon 02 Mar 2026 11:01:24 +0000
Manifest next update: Tue 03 Mar 2026 11:01:24 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: E5lgqUKFY585PnLLZxUT7+11dI9zCCRRrJ1d5HboasY=)
2: xJQkEE-myuee2xusX84h4jOXGkk.roa (hash: bgfimRITzgygmGvHr8W4DzraqoP9/oX3mukFAiSIHn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:c3:c1:17:3f:fe:c0:81:e1:01:a0:1d:9e:7d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Mar 2 11:01:24 2026 GMT
Not After : Mar 3 11:01:24 2026 GMT
Subject: CN=9f4370c26f85220351e74de3f8d851123e1ee618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e6:e6:14:8d:16:3b:64:17:62:03:32:6b:71:
9d:b8:4a:28:91:78:7e:65:68:71:dc:a5:37:8f:4a:
35:03:aa:52:40:d9:0d:de:78:7e:d5:d1:7d:ba:27:
1d:b7:90:96:e9:88:2b:91:26:44:0a:31:42:f8:63:
f6:58:d8:81:1c:5e:7f:f0:48:9b:ad:41:a1:8c:4b:
a9:e8:4e:af:03:9b:00:76:e6:8f:b2:c1:59:4b:21:
2f:e5:b6:5a:90:03:cc:ac:f2:02:cc:fa:b8:b8:85:
2c:84:48:54:4c:b5:c0:16:07:6f:81:ed:2f:ec:2d:
a2:8e:18:4f:e6:7d:63:67:a5:5e:04:3e:2d:54:27:
f8:48:58:89:64:78:82:42:7d:a7:9a:e0:7a:40:38:
1d:64:97:77:bb:fe:df:57:a6:6c:3a:07:41:05:36:
2c:42:29:3c:3b:70:cf:fb:6b:c7:7b:12:df:e0:67:
ba:f2:2d:e9:2a:a4:52:f7:97:af:6b:79:d8:80:cc:
63:73:03:2d:97:9b:ae:aa:bd:96:d6:24:d7:60:d5:
6d:d3:e4:6f:31:af:10:2b:bc:79:db:fe:3f:9e:73:
9f:19:c6:3b:2b:41:fc:c3:15:a3:fd:23:67:a2:ef:
f7:34:b7:8c:69:47:76:24:bc:4e:ad:39:40:11:ef:
78:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:43:70:C2:6F:85:22:03:51:E7:4D:E3:F8:D8:51:12:3E:1E:E6:18
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:49:8e:cd:2c:40:1e:99:22:c1:2c:01:6a:ef:f1:fa:0a:d1:
fa:4f:f2:5d:19:4f:5a:38:e0:92:b1:12:81:e9:a1:56:cd:5b:
13:ea:68:b9:a2:b3:4a:19:35:ab:04:5a:41:3b:ee:15:47:45:
04:51:5d:d5:c6:38:95:33:14:79:e3:2d:48:b5:2f:33:89:b7:
ee:81:d3:1a:8c:bb:a5:24:c0:71:aa:58:ee:cf:96:c7:b4:fa:
18:fd:b3:e1:36:68:f9:95:de:95:47:ab:49:94:c1:f0:c5:b9:
07:41:46:82:1a:92:b0:db:6d:89:54:a2:42:df:32:52:c3:8f:
7c:4a:91:b5:10:c7:4f:2f:30:6e:3f:0e:c5:ed:91:7d:8f:74:
08:ad:40:42:e7:de:10:34:b4:a8:d9:ad:eb:0b:65:0a:34:b2:
7c:4a:32:aa:5a:db:6e:a4:ff:83:4c:00:ab:38:fc:d8:96:d4:
2e:b4:9c:0b:4a:98:bd:21:16:10:15:5a:21:84:eb:29:ab:7d:
37:e6:7b:cd:ba:bf:91:d6:ad:52:58:d8:d4:2c:c0:10:14:56:
4f:a5:4a:2b:bc:a0:87:21:63:6a:1f:5f:cb:2b:64:69:03:9b:
78:87:35:e1:b0:51:f5:4a:99:1a:3b:7b:3e:bb:da:41:f0:af:
c0:5b:6c:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyuNcPBFz/+wIHhAaAdnn3tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NGQzZTVkOTk0YmVjZDNmMjU4YzQxZGYzOWYxZjYzZWM1
NjNlMWQwHhcNMjYwMzAyMTEwMTI0WhcNMjYwMzAzMTEwMTI0WjAzMTEwLwYDVQQD
Eyg5ZjQzNzBjMjZmODUyMjAzNTFlNzRkZTNmOGQ4NTExMjNlMWVlNjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+bmFI0WO2QXYgMya3GduEookXh+
ZWhx3KU3j0o1A6pSQNkN3nh+1dF9uicdt5CW6YgrkSZECjFC+GP2WNiBHF5/8Eib
rUGhjEup6E6vA5sAduaPssFZSyEv5bZakAPMrPICzPq4uIUshEhUTLXAFgdvge0v
7C2ijhhP5n1jZ6VeBD4tVCf4SFiJZHiCQn2nmuB6QDgdZJd3u/7fV6ZsOgdBBTYs
Qik8O3DP+2vHexLf4Ge68i3pKqRS95eva3nYgMxjcwMtl5uuqr2W1iTXYNVt0+Rv
Ma8QK7x52/4/nnOfGcY7K0H8wxWj/SNnou/3NLeMaUd2JLxOrTlAEe94/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ9DcMJvhSIDUedN4/jYURI+HuYYMB8GA1UdIwQY
MBaAFOdNPl2ZS+zT8ljEHfOfH2PsVj4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMt
YzIzZDdhZGJlYmRjLzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMtYzIzZDdhZGJlYmRj
LzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtEmOzSxA
HpkiwSwBau/x+grR+k/yXRlPWjjgkrESgemhVs1bE+pouaKzShk1qwRaQTvuFUdF
BFFd1cY4lTMUeeMtSLUvM4m37oHTGoy7pSTAcapY7s+Wx7T6GP2z4TZo+ZXelUer
SZTB8MW5B0FGghqSsNttiVSiQt8yUsOPfEqRtRDHTy8wbj8Oxe2RfY90CK1AQufe
EDS0qNmt6wtlCjSyfEoyqlrbbqT/g0wAqzj82JbULrScC0qYvSEWEBVaIYTrKat9
N+Z7zbq/kdatUljY1CzAEBRWT6VKK7yghyFjah9fyytkaQObeIc14bBR9UqZGjt7
PrvaQfCvwFts9w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 17:54:20 2026 by rpki-client