Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: u0qZldpVncR9BUaSozGfy5dGk7G4Dl36Zjio/8u9HYY=
Subject key identifier: 6A:7B:73:8B:9C:27:37:DF:57:6B:E8:52:49:0B:A4:42:3B:D7:62:CF
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019CAAC661AE0674D86FCD02AE95F5864E05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 09E4
Signing time: Sun 01 Mar 2026 19:00:53 +0000
Manifest this update: Sun 01 Mar 2026 19:00:53 +0000
Manifest next update: Mon 02 Mar 2026 19:00:53 +0000
Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: r3Sf3M1P1ljoX3hhIGhc52JuigjOTksFFDO5PGUgDyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:61:ae:06:74:d8:6f:cd:02:ae:95:f5:86:4e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Mar 1 19:00:53 2026 GMT
Not After : Mar 2 19:00:53 2026 GMT
Subject: CN=6a7b738b9c2737df576be852490ba4423bd762cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:99:65:5f:5c:b4:cf:33:f8:a4:e2:ea:06:e5:
d0:7f:15:fc:25:84:8a:6b:a7:62:c8:4a:92:ca:db:
ff:24:5a:54:21:f2:b2:fd:65:7d:6f:d2:4b:86:bb:
e9:21:50:3a:51:3b:c6:cf:0d:8a:2d:8a:9f:e3:52:
c9:40:2e:b4:ca:e6:f3:bb:05:55:51:ba:a9:15:40:
b5:ee:a7:b2:5c:30:9e:c2:6d:15:5b:46:05:df:73:
f6:cc:04:37:d2:75:f2:63:5a:6c:64:f8:13:1f:8f:
0d:3b:5d:44:c3:cf:1c:11:46:26:2e:f4:c4:37:d8:
aa:02:fa:69:9c:81:68:06:56:85:9b:48:0f:31:b7:
41:b2:9f:03:2a:4c:b7:96:dc:d7:a7:a4:93:a5:35:
b1:cb:31:3a:5d:4a:4d:17:17:73:1c:28:ad:7b:bc:
d3:01:c1:77:ba:03:8e:b7:e8:43:55:d3:c9:f4:b3:
b0:42:03:9b:a9:e1:a8:d2:a8:8b:05:bd:c6:3a:7a:
77:f7:36:08:8b:88:a9:3a:bc:f0:1a:bc:9c:c1:a1:
5f:d8:6b:ba:3b:0f:a9:b7:e1:09:d3:9e:80:84:c5:
b0:ec:7e:41:dd:31:5c:b9:c4:4e:c7:26:e4:4d:40:
27:44:5f:34:52:64:89:ae:04:ad:cf:2f:dd:e9:e7:
ce:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7B:73:8B:9C:27:37:DF:57:6B:E8:52:49:0B:A4:42:3B:D7:62:CF
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:03:f9:b2:26:2d:23:4a:b2:3f:a1:d4:ac:cb:7e:0c:8b:61:
57:39:87:00:75:13:9f:a1:05:37:8c:e4:ec:b6:65:43:4c:31:
9c:30:a4:4c:cc:b2:33:0c:d9:21:e1:7f:bb:7b:fb:c7:9c:cc:
98:00:d3:28:48:00:f3:c4:a6:4e:7a:d6:8b:53:02:f9:32:5e:
7e:58:ba:be:01:fd:37:68:9e:80:15:29:10:81:3e:2f:99:b5:
1c:83:99:3c:75:33:4c:7e:39:38:6e:9a:a4:f0:cc:89:dc:1e:
96:2e:15:1f:44:ed:17:bf:4b:79:4a:74:07:95:6a:c6:d5:c6:
73:53:7c:14:77:f7:95:9c:7e:c6:2e:8e:21:b6:69:08:de:88:
88:0b:c8:e1:5c:15:d9:a5:b4:f5:cc:fe:7b:ef:b8:46:dc:69:
05:df:f7:08:a5:6e:cc:22:3c:48:f1:ac:24:b6:cb:1f:2c:5b:
ad:ea:e8:3c:a7:6b:c5:ee:61:6b:7f:c9:4f:39:e1:e6:6c:1d:
63:72:a1:6d:90:c6:4e:c7:6a:f6:28:f4:2f:5d:cc:d5:0f:d6:
f6:a5:c3:f6:fb:ee:b4:e6:e2:a4:78:88:1f:36:44:ec:87:4f:
77:d7:5c:db:d6:1b:12:46:20:a0:0d:e8:c3:58:77:05:77:c8:
7a:83:78:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxmGuBnTYb80CrpX1hk4FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj
OTllNGUwHhcNMjYwMzAxMTkwMDUzWhcNMjYwMzAyMTkwMDUzWjAzMTEwLwYDVQQD
Eyg2YTdiNzM4YjljMjczN2RmNTc2YmU4NTI0OTBiYTQ0MjNiZDc2MmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpllX1y0zzP4pOLqBuXQfxX8JYSK
a6diyEqSytv/JFpUIfKy/WV9b9JLhrvpIVA6UTvGzw2KLYqf41LJQC60yubzuwVV
UbqpFUC17qeyXDCewm0VW0YF33P2zAQ30nXyY1psZPgTH48NO11Ew88cEUYmLvTE
N9iqAvppnIFoBlaFm0gPMbdBsp8DKky3ltzXp6STpTWxyzE6XUpNFxdzHCite7zT
AcF3ugOOt+hDVdPJ9LOwQgObqeGo0qiLBb3GOnp39zYIi4ipOrzwGrycwaFf2Gu6
Ow+pt+EJ056AhMWw7H5B3TFcucROxybkTUAnRF80UmSJrgStzy/d6efOSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGp7c4ucJzffV2voUkkLpEI712LPMB8GA1UdIwQY
MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt
MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5
LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAP5siYt
I0qyP6HUrMt+DIthVzmHAHUTn6EFN4zk7LZlQ0wxnDCkTMyyMwzZIeF/u3v7x5zM
mADTKEgA88SmTnrWi1MC+TJefli6vgH9N2iegBUpEIE+L5m1HIOZPHUzTH45OG6a
pPDMidweli4VH0TtF79LeUp0B5VqxtXGc1N8FHf3lZx+xi6OIbZpCN6IiAvI4VwV
2aW09cz+e++4RtxpBd/3CKVuzCI8SPGsJLbLHyxbreroPKdrxe5ha3/JTznh5mwd
Y3KhbZDGTsdq9ij0L13M1Q/W9qXD9vvutObipHiIHzZE7IdPd9dc29YbEkYgoA3o
w1h3BXfIeoN4cg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:26 2026 by rpki-client