Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: Nhh+jtCNjDklB4OGZOykDtiYBwlWvICJbT0WWc48y+c=
Subject key identifier: C6:D8:5E:D6:0A:72:B4:AA:2B:23:D6:3E:08:09:37:17:BB:D9:F1:DF
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 019CAAC68EDC02A0009EE3A48F112C1E7495
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 0FC3
Signing time: Sun 01 Mar 2026 19:01:05 +0000
Manifest this update: Sun 01 Mar 2026 19:01:05 +0000
Manifest next update: Mon 02 Mar 2026 19:01:05 +0000
Files and hashes: 1: OUhIXcYKuJwX-1gGqSyC-ytysk8.roa (hash: SNKMZI12Bd30LXMDKulFyeiCL2F4p+Ej66EZURTKN18=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: Pxt9DElopT34wbYzBkkg+CTx3ETKnwVaU0V8cD/N73w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:8e:dc:02:a0:00:9e:e3:a4:8f:11:2c:1e:74:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Mar 1 19:01:05 2026 GMT
Not After : Mar 2 19:01:05 2026 GMT
Subject: CN=c6d85ed60a72b4aa2b23d63e08093717bbd9f1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0a:9e:6f:10:a6:f6:a0:52:ee:5b:e1:60:d2:
cf:c4:a4:e6:4b:51:1d:43:dd:8e:04:2b:e1:5f:93:
19:9c:d0:ef:5b:bd:74:0b:35:4d:e3:00:77:4e:bb:
c4:46:4d:20:53:00:f8:b8:8d:9b:64:c1:55:82:9f:
8c:45:5d:41:06:48:bc:cd:02:55:b0:4f:31:25:10:
62:13:d4:87:ac:a0:54:1f:91:33:e7:02:60:a7:2d:
13:cb:4b:8d:5a:3d:e5:66:a4:05:27:03:2b:a3:c6:
8c:11:f3:5b:d1:0b:09:33:d2:09:6b:49:2d:46:3d:
d5:1d:2b:99:86:42:e0:a0:e2:06:3b:64:51:94:20:
3f:85:be:4d:8d:44:31:fe:6c:ee:b2:32:73:31:a1:
31:7c:fc:7b:a1:7b:0b:eb:27:71:17:42:a3:3e:78:
db:aa:8b:e6:ad:bd:69:2c:aa:9d:7c:da:68:78:e9:
e1:23:79:4e:03:3f:cf:e6:b7:b0:a3:d9:27:e3:b6:
12:b3:e1:1d:82:13:87:52:ab:3d:61:2b:71:74:d2:
c7:13:b5:aa:8e:fa:23:d3:ba:31:dc:05:b8:21:8b:
4f:07:98:6b:82:69:4d:18:4f:2d:d1:1a:32:f2:bf:
9c:12:85:38:ab:cb:58:20:46:1a:71:12:9a:15:17:
e9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D8:5E:D6:0A:72:B4:AA:2B:23:D6:3E:08:09:37:17:BB:D9:F1:DF
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:d3:ec:84:12:16:e6:d2:78:a4:b1:67:e1:e4:a6:7d:ef:f6:
c3:89:4b:9c:13:6c:c3:ed:4e:12:fc:e2:ab:34:a5:e9:d3:2a:
6b:6f:86:0e:78:d8:73:9d:1c:1e:f7:ad:b3:6d:f0:b0:17:e7:
6e:82:b1:13:f5:f1:87:bd:46:5b:d8:a5:01:71:30:f9:da:98:
fb:2d:9b:04:7f:84:88:1f:cc:02:d5:b8:5d:16:3f:fe:6e:06:
fa:8f:8e:53:57:38:4b:1e:5c:ed:b6:77:0e:e9:26:73:26:de:
57:17:ea:21:a7:22:45:d3:d5:06:77:5e:f5:43:c3:e8:dc:25:
99:7d:44:fc:27:10:f3:bd:9f:63:f9:70:bd:91:36:07:43:34:
bb:85:7a:3b:97:a6:cd:d4:56:2c:be:05:1a:75:cf:66:b3:a1:
5f:fb:c6:56:f5:c8:b9:fd:12:47:17:5c:d5:7c:9c:56:3e:69:
5d:67:ce:65:4c:eb:86:d0:43:a0:65:49:80:5b:12:87:79:9a:
df:2e:ec:06:40:f8:0e:5e:34:b0:41:b4:fc:a8:fa:a1:4d:66:
a6:4b:d3:14:a4:a2:61:7b:db:59:d5:ec:b3:89:94:de:14:11:
53:43:d5:58:05:f3:a6:3b:72:f1:7e:cb:b6:2d:4b:56:da:8f:
46:db:6e:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxo7cAqAAnuOkjxEsHnSVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZDM3OWNlZGNkYzIwZjA4NzVjNGIwOGI5NGI0MTE2MWIz
ZThjMDMwHhcNMjYwMzAxMTkwMTA1WhcNMjYwMzAyMTkwMTA1WjAzMTEwLwYDVQQD
EyhjNmQ4NWVkNjBhNzJiNGFhMmIyM2Q2M2UwODA5MzcxN2JiZDlmMWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwqebxCm9qBS7lvhYNLPxKTmS1Ed
Q92OBCvhX5MZnNDvW710CzVN4wB3TrvERk0gUwD4uI2bZMFVgp+MRV1BBki8zQJV
sE8xJRBiE9SHrKBUH5Ez5wJgpy0Ty0uNWj3lZqQFJwMro8aMEfNb0QsJM9IJa0kt
Rj3VHSuZhkLgoOIGO2RRlCA/hb5NjUQx/mzusjJzMaExfPx7oXsL6ydxF0KjPnjb
qovmrb1pLKqdfNpoeOnhI3lOAz/P5rewo9kn47YSs+EdghOHUqs9YStxdNLHE7Wq
jvoj07ox3AW4IYtPB5hrgmlNGE8t0Roy8r+cEoU4q8tYIEYacRKaFRfp1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMbYXtYKcrSqKyPWPggJNxe72fHfMB8GA1UdIwQY
MBaAFFzTec7c3CDwh1xLCLlLQRYbPowDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQt
MDk2NDQ2NGMxNzUxLzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQtMDk2NDQ2NGMxNzUx
LzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAINPshBIW
5tJ4pLFn4eSmfe/2w4lLnBNsw+1OEvziqzSl6dMqa2+GDnjYc50cHvets23wsBfn
boKxE/Xxh71GW9ilAXEw+dqY+y2bBH+EiB/MAtW4XRY//m4G+o+OU1c4Sx5c7bZ3
DukmcybeVxfqIaciRdPVBnde9UPD6NwlmX1E/CcQ872fY/lwvZE2B0M0u4V6O5em
zdRWLL4FGnXPZrOhX/vGVvXIuf0SRxdc1XycVj5pXWfOZUzrhtBDoGVJgFsSh3ma
3y7sBkD4Dl40sEG0/Kj6oU1mpkvTFKSiYXvbWdXss4mU3hQRU0PVWAXzpjty8X7L
ti1LVtqPRttuWw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:41:43 2026 by rpki-client