Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
File: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft (raw, json)
Hash identifier: ZHM1gO5H956balBrg65SSo8P5XPpIGo50hBCCstsKws=
Subject key identifier: DD:C4:43:67:19:0E:E2:1A:9B:D1:48:DB:F8:FA:55:98:AA:44:FF:5D
Authority key identifier: C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64
Certificate issuer: /CN=c618f03f9874370653aa3a026f6707c2e0e74764
Certificate serial: 019CAC46E40499BA29F3AE8E527E0AC5A8C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
Manifest number: 092B
Signing time: Mon 02 Mar 2026 02:00:52 +0000
Manifest this update: Mon 02 Mar 2026 02:00:52 +0000
Manifest next update: Tue 03 Mar 2026 02:00:52 +0000
Files and hashes: 1: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl (hash: 544sV5WO6bTt15doK0mpdDjmqDqDT+pvNAHJ9ESiW/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:e4:04:99:ba:29:f3:ae:8e:52:7e:0a:c5:a8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c618f03f9874370653aa3a026f6707c2e0e74764
Validity
Not Before: Mar 2 02:00:52 2026 GMT
Not After : Mar 3 02:00:52 2026 GMT
Subject: CN=ddc44367190ee21a9bd148dbf8fa5598aa44ff5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5d:d6:ae:db:bc:c8:ba:87:66:59:0a:bc:41:
81:17:8a:56:e8:96:2d:19:26:36:a3:1c:2e:44:62:
c6:af:09:61:10:90:cf:86:d4:db:df:b7:a9:ed:5b:
ef:82:da:8a:22:01:f8:50:3b:d2:9a:e8:c1:ba:67:
51:44:d9:f5:4b:2a:85:7d:2f:0c:a2:2a:2d:71:1c:
ad:15:ea:b6:83:e2:e3:d0:c2:0a:22:c0:70:54:5b:
6a:a8:15:a8:2d:5c:64:a2:d7:ef:7f:1f:62:9f:61:
f7:2e:90:c8:9b:fb:bd:ac:78:cf:0c:5d:de:5f:5c:
ab:86:8e:9c:8d:29:dc:cd:2c:56:3c:76:9e:8d:d1:
84:3f:d8:49:da:aa:c4:17:dd:23:63:49:a0:33:fe:
01:c1:18:0a:df:62:6b:bc:24:a2:03:64:14:98:8b:
aa:62:2d:c2:24:74:48:19:07:44:7d:28:d9:93:33:
f0:a3:08:1f:54:3e:e4:f2:05:bb:c7:ee:54:c9:f0:
75:64:4b:66:18:f7:1e:d8:95:3f:44:3a:18:07:e3:
ea:23:71:84:9e:c4:90:1d:39:03:f7:a3:dd:82:06:
31:5d:b9:45:ef:34:8f:1d:3c:02:c9:1a:78:f2:a0:
c3:57:e5:7e:1d:bd:bc:b0:eb:32:b7:bc:52:2c:a3:
7e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C4:43:67:19:0E:E2:1A:9B:D1:48:DB:F8:FA:55:98:AA:44:FF:5D
X509v3 Authority Key Identifier:
keyid:C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8e:81:2a:95:0d:a7:a0:5e:07:65:ab:75:4e:7a:69:05:0a:
65:a7:b5:db:3d:b0:f7:05:26:c6:02:95:38:03:94:5a:37:92:
53:6f:d1:97:ac:2b:17:37:60:21:4f:56:95:ce:9d:8d:55:91:
e6:de:76:1e:fc:65:4e:cd:16:29:34:ee:b1:d4:e4:a1:8c:d5:
f5:9b:6d:71:a5:e1:81:f3:1f:55:41:79:c9:12:4d:e5:33:87:
15:ea:0c:5b:c2:bb:78:11:cc:17:6b:0d:db:06:d3:71:37:f1:
31:5b:f8:42:28:48:b7:c2:f0:33:2b:0a:8d:ff:7e:ed:f2:04:
63:cb:9a:bd:17:98:8b:b0:c0:7b:dd:62:e2:67:8f:27:26:b3:
ba:b2:f2:bf:ce:f3:27:61:8f:e1:01:3c:29:4c:ad:d1:4a:5b:
4b:78:7f:5a:e6:16:b3:b6:6d:9e:03:87:74:00:9b:8f:31:08:
9f:34:7d:6a:e7:e8:8a:94:93:41:42:98:3a:b0:4b:d1:7c:48:
5a:77:91:f4:52:53:0a:8d:4a:e8:82:89:f9:68:27:59:26:f6:
19:43:b2:f4:18:85:7a:c4:47:65:b8:01:89:7d:0f:c1:71:29:
1f:60:c9:d9:0a:aa:8d:1b:b0:c8:57:0b:a5:4e:45:76:22:52:
7e:d3:f7:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRuQEmbop866OUn4KxajAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MThmMDNmOTg3NDM3MDY1M2FhM2EwMjZmNjcwN2MyZTBl
NzQ3NjQwHhcNMjYwMzAyMDIwMDUyWhcNMjYwMzAzMDIwMDUyWjAzMTEwLwYDVQQD
EyhkZGM0NDM2NzE5MGVlMjFhOWJkMTQ4ZGJmOGZhNTU5OGFhNDRmZjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz13Wrtu8yLqHZlkKvEGBF4pW6JYt
GSY2oxwuRGLGrwlhEJDPhtTb37ep7VvvgtqKIgH4UDvSmujBumdRRNn1SyqFfS8M
oiotcRytFeq2g+Lj0MIKIsBwVFtqqBWoLVxkotfvfx9in2H3LpDIm/u9rHjPDF3e
X1yrho6cjSnczSxWPHaejdGEP9hJ2qrEF90jY0mgM/4BwRgK32JrvCSiA2QUmIuq
Yi3CJHRIGQdEfSjZkzPwowgfVD7k8gW7x+5UyfB1ZEtmGPce2JU/RDoYB+PqI3GE
nsSQHTkD96PdggYxXblF7zSPHTwCyRp48qDDV+V+Hb28sOsyt7xSLKN+7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN3EQ2cZDuIam9FI2/j6VZiqRP9dMB8GA1UdIwQY
MBaAFMYY8D+YdDcGU6o6Am9nB8Lg50dkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhqd1A1aDBOd1pUcWpvQ2IyY0h3dURuUjJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8xNmZkZWUtZDM5Ny00MWZkLTg4OGYt
NTFkZTQ5NjRhOTEzLzEveGhqd1A1aDBOd1pUcWpvQ2IyY0h3dURuUjJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8xNmZkZWUtZDM5Ny00MWZkLTg4OGYtNTFkZTQ5NjRhOTEz
LzEveGhqd1A1aDBOd1pUcWpvQ2IyY0h3dURuUjJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAI6BKpUN
p6BeB2WrdU56aQUKZae12z2w9wUmxgKVOAOUWjeSU2/Rl6wrFzdgIU9Wlc6djVWR
5t52HvxlTs0WKTTusdTkoYzV9ZttcaXhgfMfVUF5yRJN5TOHFeoMW8K7eBHMF2sN
2wbTcTfxMVv4QihIt8LwMysKjf9+7fIEY8uavReYi7DAe91i4mePJyazurLyv87z
J2GP4QE8KUyt0UpbS3h/WuYWs7ZtngOHdACbjzEInzR9aufoipSTQUKYOrBL0XxI
WneR9FJTCo1K6IKJ+WgnWSb2GUOy9BiFesRHZbgBiX0PwXEpH2DJ2QqqjRuwyFcL
pU5FdiJSftP3Kg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:33:51 2026 by rpki-client