Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: s5c6+BFqzY43zdiSVZ1KnQ6+Sgn6JkUA3kQd9/hQTwY=
Subject key identifier: 8B:08:02:5A:00:02:A1:33:08:B1:FD:F7:A6:50:DE:6D:8A:F5:87:E6
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 019CAC46DD5ECA3F3CA40405B4DA25A86B6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 10A5
Signing time: Mon 02 Mar 2026 02:00:51 +0000
Manifest this update: Mon 02 Mar 2026 02:00:51 +0000
Manifest next update: Tue 03 Mar 2026 02:00:51 +0000
Files and hashes: 1: Huv8_F7CU0_Jslnzwh9x9lhwpc0.roa (hash: que/wANCXPBVboi+Ao6/Mhrzm4uO58lF/bE0KnuyKBc=)
2: TyZ-EN3ZikEP3O1aIGeCGjgK3LI.roa (hash: rGtYPfugPBoAr+vznSLu3abrcQ5ZUu7nfMCulcJMbYg=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: 9/BwBDpNpyNdqqBUGSrFv6j9J1Q3ZYZr2QQvhxwKBmI=)
4: YcTggkw1dIIwon9zpxmI36qcgzY.roa (hash: hJIPq4cJhvmtr5AA2Y+pzfZ+vAbq2fL2IZZMCvtTNqY=)
5: qGL8RTzpNc9QMzJ4mB1cjE85xJ4.roa (hash: ABpLHA3uxkTxF69tefDioKBR4SIb/ghL74K+XaKX/Ag=)
6: wDhMGJ9NzXfEad9sT6Le_xs3iaE.roa (hash: zPKoEOiN3uariB64Rf296KkD/lWfDnDeFg2GGweepII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:dd:5e:ca:3f:3c:a4:04:05:b4:da:25:a8:6b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Mar 2 02:00:51 2026 GMT
Not After : Mar 3 02:00:51 2026 GMT
Subject: CN=8b08025a0002a13308b1fdf7a650de6d8af587e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5a:63:6a:da:ad:61:75:3f:0c:1a:45:c2:73:
40:45:18:33:2c:cb:a2:08:46:7b:83:55:ac:00:06:
c3:d3:3a:84:b6:ae:85:38:08:aa:85:43:4f:f5:9f:
bc:f0:b4:b3:5e:a8:11:79:2b:28:4e:80:f1:db:09:
7e:9a:fe:50:17:fd:6e:cc:b3:cb:34:f5:39:e6:3e:
53:29:2d:56:19:e6:34:be:66:2d:aa:57:04:8a:a0:
b6:bb:86:78:9f:2b:81:0e:e3:f1:b4:16:5a:03:3a:
23:ab:18:cc:92:9d:23:d6:73:66:30:fd:aa:bc:50:
c7:6e:70:f5:53:9a:04:6d:1d:f6:52:16:f5:c6:f9:
a6:6d:21:9e:24:e2:69:7d:18:aa:09:17:d4:5e:ca:
5d:22:fc:51:7b:8c:37:0a:c2:14:42:17:ab:d3:9d:
46:63:3b:f5:7e:d2:93:15:8a:16:f5:7b:1c:56:54:
d3:7d:07:a2:9e:a0:dc:a7:f3:80:b1:8d:98:13:32:
b2:ad:87:12:21:46:f9:60:ec:30:33:8f:68:95:c7:
12:7d:81:3e:f4:3d:ac:1c:72:28:c4:06:86:eb:50:
46:a1:bb:13:1a:3b:a8:ab:10:f4:5d:e6:32:62:c7:
a0:9c:4f:51:ec:16:74:1e:c2:e2:da:93:2a:1d:a5:
ea:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:08:02:5A:00:02:A1:33:08:B1:FD:F7:A6:50:DE:6D:8A:F5:87:E6
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:67:c4:74:d3:24:db:23:b9:96:79:5d:2c:44:05:1c:13:de:
2c:c1:d2:1f:c5:9c:a9:7c:26:cb:b3:14:f2:c6:7c:88:7b:8a:
61:15:79:a4:0d:e8:c2:c3:89:c8:69:38:9a:fe:53:64:8b:e1:
6a:de:93:d9:89:a6:fb:02:cb:92:59:c5:f9:96:d6:1e:6e:62:
0a:d7:57:0f:ba:87:ef:22:39:94:23:2d:73:69:c8:9d:fe:b0:
6a:ec:5c:a6:f8:3f:39:3c:b3:dc:f2:f3:89:5e:56:77:56:6a:
ad:89:5e:7f:5b:44:d4:83:a3:97:0f:c2:a8:56:7e:92:df:7e:
31:4b:b2:b1:ea:21:3a:4f:1f:e6:ef:60:6b:31:42:7b:41:b4:
8b:b0:b1:36:b5:f0:3c:15:7a:c8:a6:a8:1b:a6:13:08:fe:57:
1b:2c:26:b7:14:d5:95:cf:07:e0:01:c2:2b:51:86:43:db:2b:
23:52:fd:67:5e:c5:2b:04:d9:c2:10:83:2a:80:88:a9:a4:c2:
d9:df:1f:9a:42:3e:98:07:bd:1d:0d:4a:3f:02:6a:e0:da:f4:
36:c2:c2:57:c3:71:eb:a5:9d:2c:0d:8a:7d:f8:f6:12:18:df:
2c:c2:73:03:16:2e:6f:2e:ef:6e:47:66:29:f0:a6:ef:ab:0c:
d3:f8:9b:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRt1eyj88pAQFtNolqGtvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMDIyNmE3MDRjZjYyMGViMjAwMGYyN2U3YTkxOWNlNzMw
OTkxYmUwHhcNMjYwMzAyMDIwMDUxWhcNMjYwMzAzMDIwMDUxWjAzMTEwLwYDVQQD
Eyg4YjA4MDI1YTAwMDJhMTMzMDhiMWZkZjdhNjUwZGU2ZDhhZjU4N2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlpjatqtYXU/DBpFwnNARRgzLMui
CEZ7g1WsAAbD0zqEtq6FOAiqhUNP9Z+88LSzXqgReSsoToDx2wl+mv5QF/1uzLPL
NPU55j5TKS1WGeY0vmYtqlcEiqC2u4Z4nyuBDuPxtBZaAzojqxjMkp0j1nNmMP2q
vFDHbnD1U5oEbR32Uhb1xvmmbSGeJOJpfRiqCRfUXspdIvxRe4w3CsIUQher051G
Yzv1ftKTFYoW9XscVlTTfQeinqDcp/OAsY2YEzKyrYcSIUb5YOwwM49olccSfYE+
9D2sHHIoxAaG61BGobsTGjuoqxD0XeYyYsegnE9R7BZ0HsLi2pMqHaXqhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIsIAloAAqEzCLH996ZQ3m2K9YfmMB8GA1UdIwQY
MBaAFF8CJqcEz2IOsgAPJ+epGc5zCZG+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAt
NzVkOWNlNWI4ZDljLzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC82M2VmYjgtYmYyNC00OGMyLThjNTAtNzVkOWNlNWI4ZDlj
LzEvWHdJbXB3VFBZZzZ5QUE4bjU2a1p6bk1Ka2I0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARmfEdNMk
2yO5lnldLEQFHBPeLMHSH8WcqXwmy7MU8sZ8iHuKYRV5pA3owsOJyGk4mv5TZIvh
at6T2Ymm+wLLklnF+ZbWHm5iCtdXD7qH7yI5lCMtc2nInf6wauxcpvg/OTyz3PLz
iV5Wd1ZqrYlef1tE1IOjlw/CqFZ+kt9+MUuyseohOk8f5u9gazFCe0G0i7CxNrXw
PBV6yKaoG6YTCP5XGywmtxTVlc8H4AHCK1GGQ9srI1L9Z17FKwTZwhCDKoCIqaTC
2d8fmkI+mAe9HQ1KPwJq4Nr0NsLCV8Nx66WdLA2Kffj2EhjfLMJzAxYuby7vbkdm
KfCm76sM0/ibrw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:17:21 2026 by rpki-client