Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json)
Hash identifier: HMcIC4gfzSw9ZBJApIb6WOCSp17bfkkr9ABL9OLTQlI=
Subject key identifier: 1C:11:B2:3E:C2:38:E0:13:E9:6B:89:F5:33:60:63:01:F3:7F:05:66
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 019CADC82FE82A4356242C53D3770FAF996D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
Manifest number: 147F
Signing time: Mon 02 Mar 2026 09:01:43 +0000
Manifest this update: Mon 02 Mar 2026 09:01:43 +0000
Manifest next update: Tue 03 Mar 2026 09:01:43 +0000
Files and hashes: 1: Sg_4XUAI-4zoY2AzgRoGFITRYgE.roa (hash: J1EWDPsgpuehOfFX0CglsLJx+tt5cw97sY3WgurbJXo=)
2: TeQy6kFDHKNYmWvI94KK1SajumM.roa (hash: 9uvICF7tqz4KyCQG2zRzp+9JspsGn3aZOu1Zg1a40nY=)
3: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: RvmM+ZOVjKpiYgmcYQkcXUfdA0cM0k7XChsxuvUcNjM=)
4: dhOZf_4fAgQZi4_moQSI8o9EFj0.roa (hash: 5T/3rUQwrhAAxuFwErHVP6jvrc57b61OVidSPKCnMBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:2f:e8:2a:43:56:24:2c:53:d3:77:0f:af:99:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Mar 2 09:01:43 2026 GMT
Not After : Mar 3 09:01:43 2026 GMT
Subject: CN=1c11b23ec238e013e96b89f533606301f37f0566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:47:ba:3b:4f:cf:83:d8:88:47:d4:4a:b6:77:
cb:15:8c:7a:74:e2:09:b1:65:fd:73:ea:4d:5b:68:
5a:22:fe:cf:ba:21:21:b1:60:d6:de:2d:b6:c6:65:
0c:8e:de:d6:72:0e:72:0b:1b:5c:45:fe:11:1f:1c:
ac:bc:31:30:b3:e3:5a:b1:e9:64:64:dc:a0:a9:db:
5e:c1:70:ad:08:7d:41:17:19:9d:45:0b:4a:03:ff:
53:ad:2b:5c:06:57:7a:5b:30:de:41:4c:db:df:9d:
cc:4c:02:0f:4d:aa:75:91:d9:a5:4b:6f:40:52:a3:
cb:f1:37:9b:34:72:e9:b5:e1:24:97:f9:ea:6a:3e:
75:ae:09:cd:b0:65:81:99:61:8d:18:56:1b:1b:04:
f9:37:d0:b0:db:81:e8:0f:9f:86:9a:d1:83:e5:f3:
fd:c4:57:c1:51:c8:0e:84:70:43:51:e6:25:fd:74:
c7:a1:b1:b3:c7:60:46:14:37:a7:ee:4e:ad:26:3d:
d7:6d:ab:cc:0c:45:1b:5b:11:0f:9c:48:f9:57:84:
aa:1f:13:bd:71:94:71:18:3c:a9:00:95:80:95:2b:
9a:30:01:7b:bb:b9:dd:ef:e4:ea:50:1e:5b:b8:75:
55:72:c7:fd:d7:ac:77:b4:ca:ee:9a:7e:9f:6e:e4:
31:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:11:B2:3E:C2:38:E0:13:E9:6B:89:F5:33:60:63:01:F3:7F:05:66
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:58:9c:4d:44:25:4e:c2:82:3e:5b:16:88:b2:e0:ef:58:50:
e1:e3:44:b0:01:f2:2b:09:2f:9f:3a:dc:ff:d6:45:20:11:71:
a3:ae:a1:b3:c6:99:31:1a:e6:41:55:02:6a:3c:f1:35:00:14:
ca:dd:71:55:15:22:43:cf:d5:f1:3f:32:16:bf:1e:f5:cf:5c:
48:58:3c:3b:ee:4a:84:20:67:ff:f3:93:3a:8c:d7:5c:a8:29:
dd:15:f2:08:ba:75:68:9d:85:9e:8b:bf:01:6c:66:87:fa:55:
62:f1:bf:71:af:15:bb:e2:23:52:f3:c5:f3:84:84:43:16:18:
09:24:f0:d6:7c:cb:c2:48:e8:53:b5:d2:61:c6:df:04:d1:9e:
01:05:57:42:36:b6:ba:3c:fc:bf:8f:40:b8:1d:2e:bf:76:f3:
4d:b1:42:a6:87:ce:a3:45:6a:5f:a6:00:68:64:6d:3b:ac:92:
70:23:fd:b6:46:65:e1:fc:88:11:27:59:ff:2e:c1:e1:d1:b2:
83:0e:80:35:b7:09:40:cc:1a:62:fa:c2:bd:43:81:ce:a9:be:
4b:c3:5d:23:c6:c2:e9:13:a4:82:d1:d5:30:63:2c:8d:c3:65:
bd:f0:32:4e:61:0c:68:3c:2a:9c:07:f0:d1:74:d8:77:a4:17:
e8:8f:43:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytyC/oKkNWJCxT03cPr5ltMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODJjYTZmOGViNjg1YTU3M2U1ZDFkOTFmOGYwNjEyMWFi
MDJhMzcwHhcNMjYwMzAyMDkwMTQzWhcNMjYwMzAzMDkwMTQzWjAzMTEwLwYDVQQD
EygxYzExYjIzZWMyMzhlMDEzZTk2Yjg5ZjUzMzYwNjMwMWYzN2YwNTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10e6O0/Pg9iIR9RKtnfLFYx6dOIJ
sWX9c+pNW2haIv7PuiEhsWDW3i22xmUMjt7Wcg5yCxtcRf4RHxysvDEws+Naselk
ZNygqdtewXCtCH1BFxmdRQtKA/9TrStcBld6WzDeQUzb353MTAIPTap1kdmlS29A
UqPL8TebNHLpteEkl/nqaj51rgnNsGWBmWGNGFYbGwT5N9Cw24HoD5+GmtGD5fP9
xFfBUcgOhHBDUeYl/XTHobGzx2BGFDen7k6tJj3XbavMDEUbWxEPnEj5V4SqHxO9
cZRxGDypAJWAlSuaMAF7u7nd7+TqUB5buHVVcsf916x3tMrumn6fbuQxAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBwRsj7COOAT6WuJ9TNgYwHzfwVmMB8GA1UdIwQY
MBaAFF2Cym+OtoWlc+XR2R+PBhIasCo3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kNTRiYzAtZjc4MS00OGIwLTlmNmQt
YjVmMGQyMTA1M2Y4LzEvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9kNTRiYzAtZjc4MS00OGIwLTlmNmQtYjVmMGQyMTA1M2Y4
LzEvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMFicTUQl
TsKCPlsWiLLg71hQ4eNEsAHyKwkvnzrc/9ZFIBFxo66hs8aZMRrmQVUCajzxNQAU
yt1xVRUiQ8/V8T8yFr8e9c9cSFg8O+5KhCBn//OTOozXXKgp3RXyCLp1aJ2Fnou/
AWxmh/pVYvG/ca8Vu+IjUvPF84SEQxYYCSTw1nzLwkjoU7XSYcbfBNGeAQVXQja2
ujz8v49AuB0uv3bzTbFCpofOo0VqX6YAaGRtO6yScCP9tkZl4fyIESdZ/y7B4dGy
gw6ANbcJQMwaYvrCvUOBzqm+S8NdI8bC6ROkgtHVMGMsjcNlvfAyTmEMaDwqnAfw
0XTYd6QX6I9DWQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:50:22 2026 by rpki-client