Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json)
Hash identifier: Qnh65cAbEMcEh0j9zIzCroBdJQ6XywHbmrAOzoejCI0=
Subject key identifier: 6A:3F:F0:72:C1:6E:C7:A2:04:DF:E7:E5:1A:81:CB:BD:47:FD:29:1E
Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Certificate serial: 019CAF48005490ADF33BFC2AB09BDF322EE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
Manifest number: 02C5
Signing time: Mon 02 Mar 2026 16:00:57 +0000
Manifest this update: Mon 02 Mar 2026 16:00:57 +0000
Manifest next update: Tue 03 Mar 2026 16:00:57 +0000
Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: DPIRVnHqOAHQVLndffHwlansbZnkK+JFvrW6xsz6E/s=)
2: kSjjDOzoNANECAR0DxlgQ3qg0Ak.roa (hash: /lj5qR8E+7YT0u9bmkNO6K63OEKU1WfqJKCxaWzabBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:48:00:54:90:ad:f3:3b:fc:2a:b0:9b:df:32:2e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Validity
Not Before: Mar 2 16:00:57 2026 GMT
Not After : Mar 3 16:00:57 2026 GMT
Subject: CN=6a3ff072c16ec7a204dfe7e51a81cbbd47fd291e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2c:e2:b8:94:c1:c5:b6:63:3d:ba:0a:7f:6b:
e2:16:e0:a9:18:bd:c8:77:9b:c9:45:5d:ca:2f:68:
85:48:3f:23:00:6b:23:91:df:e1:9a:20:0f:e9:09:
e0:46:34:a4:4b:7d:38:9f:ae:51:ad:e9:75:1d:06:
d3:3a:9a:bd:3e:2b:c4:4b:9b:f5:0c:0c:d0:22:19:
00:44:42:dd:20:0a:81:1c:99:d4:34:e7:9d:bc:b7:
b8:91:60:64:c1:d6:dd:da:a2:8a:b1:96:be:0a:bb:
92:9b:b6:26:45:23:5f:a3:e0:ef:84:95:80:6e:c4:
3e:81:7a:50:3c:0f:4e:71:2c:35:15:aa:81:fe:b7:
20:bb:19:b3:89:3b:30:62:d1:d1:d3:ee:03:c2:99:
12:c2:11:ec:29:46:a8:2a:df:c9:54:10:2f:22:e4:
68:12:ff:36:6b:f4:59:cf:ac:1b:bf:a1:dd:cc:1b:
23:ca:e6:e2:b2:e9:8b:12:0a:8e:fb:1b:39:fb:9c:
28:b9:fc:e1:07:00:6a:47:75:60:c6:3f:77:2a:1d:
5f:75:f8:9f:9b:72:a4:a1:37:38:8e:ed:3a:df:5e:
0f:0d:e1:10:4c:ea:52:0d:72:e9:19:29:ad:44:0d:
a4:4b:ae:3c:93:fb:73:44:c1:d3:c7:c9:e7:16:48:
69:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3F:F0:72:C1:6E:C7:A2:04:DF:E7:E5:1A:81:CB:BD:47:FD:29:1E
X509v3 Authority Key Identifier:
keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:55:a3:b8:17:c7:e4:e3:39:7a:d0:4c:ed:64:de:e2:d4:38:
f5:a6:1d:8d:fc:e3:45:6a:6b:8f:7b:02:03:43:04:84:e6:14:
a5:16:a9:e4:86:b7:67:b8:48:39:50:73:bd:f9:cf:88:d8:4a:
08:69:2e:8c:45:90:c0:b6:d9:9a:6c:1a:30:5c:76:ea:07:8c:
72:c5:18:e8:54:f1:b8:2c:8c:04:7c:63:d6:45:49:cd:92:f0:
ac:8d:c3:ac:61:7b:52:2c:56:e3:4d:51:da:fc:fc:64:cd:44:
3c:c4:6d:e1:d4:26:3e:06:c3:3b:f5:22:a0:ca:50:5f:d6:48:
b7:3a:83:dd:ac:99:65:ac:6f:f8:51:58:6f:7a:9b:8b:8f:01:
c6:25:34:03:c8:2a:3e:7b:1b:f7:bb:87:34:8d:b9:12:74:66:
99:e6:6d:04:4e:52:f4:61:27:cb:1f:7e:e5:e1:07:c3:e5:66:
34:11:20:44:8e:cd:28:2f:09:55:b5:15:f1:fa:d5:b6:86:8d:
60:13:b3:6a:8b:df:73:5a:70:d7:b0:13:74:c2:f0:f2:f1:64:
91:7d:1a:5e:4a:43:bc:23:82:b7:b6:a1:e6:35:b1:66:e8:6a:
f9:52:d5:b2:c7:52:15:42:be:17:ca:6d:d6:6d:d4:d9:73:d5:
20:3e:e2:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvSABUkK3zO/wqsJvfMi7gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNGQ3Yjc5MGYzZjQ5MzQzMjhlMTI5YTJkZGU0ZGQ3NGFh
M2UxM2UwHhcNMjYwMzAyMTYwMDU3WhcNMjYwMzAzMTYwMDU3WjAzMTEwLwYDVQQD
Eyg2YTNmZjA3MmMxNmVjN2EyMDRkZmU3ZTUxYTgxY2JiZDQ3ZmQyOTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SziuJTBxbZjPboKf2viFuCpGL3I
d5vJRV3KL2iFSD8jAGsjkd/hmiAP6QngRjSkS304n65Rrel1HQbTOpq9PivES5v1
DAzQIhkARELdIAqBHJnUNOedvLe4kWBkwdbd2qKKsZa+CruSm7YmRSNfo+DvhJWA
bsQ+gXpQPA9OcSw1FaqB/rcguxmziTswYtHR0+4DwpkSwhHsKUaoKt/JVBAvIuRo
Ev82a/RZz6wbv6HdzBsjyubisumLEgqO+xs5+5woufzhBwBqR3Vgxj93Kh1fdfif
m3KkoTc4ju06314PDeEQTOpSDXLpGSmtRA2kS648k/tzRMHTx8nnFkhpdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGo/8HLBbseiBN/n5RqBy71H/SkeMB8GA1UdIwQY
MBaAFF9Ne3kPP0k0Mo4Smi3eTddKo+E+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDAxN2VROF9TVFF5amhLYUxkNU4xMHFqNFQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85YjYwMTYtMTQyNC00MTg4LWFlNjIt
N2Q1NDkyNzQ0NWY2LzEvWDAxN2VROF9TVFF5amhLYUxkNU4xMHFqNFQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85YjYwMTYtMTQyNC00MTg4LWFlNjItN2Q1NDkyNzQ0NWY2
LzEvWDAxN2VROF9TVFF5amhLYUxkNU4xMHFqNFQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhlWjuBfH
5OM5etBM7WTe4tQ49aYdjfzjRWprj3sCA0MEhOYUpRap5Ia3Z7hIOVBzvfnPiNhK
CGkujEWQwLbZmmwaMFx26geMcsUY6FTxuCyMBHxj1kVJzZLwrI3DrGF7UixW401R
2vz8ZM1EPMRt4dQmPgbDO/UioMpQX9ZItzqD3ayZZaxv+FFYb3qbi48BxiU0A8gq
Pnsb97uHNI25EnRmmeZtBE5S9GEnyx9+5eEHw+VmNBEgRI7NKC8JVbUV8frVtoaN
YBOzaovfc1pw17ATdMLw8vFkkX0aXkpDvCOCt7ah5jWxZuhq+VLVssdSFUK+F8pt
1m3U2XPVID7ikA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 21:56:59 2026 by rpki-client