Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: Jkv0KJxwY7mOWG19lIJrULLfsJ3AsqPjedNxBUgkPes=
Subject key identifier: B4:73:22:BF:AB:80:0E:9D:E6:A4:87:40:A3:FC:13:80:1E:79:26:AC
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 019D98F407B7B6469BAD62EFE7B85907DBCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 1855
Signing time: Fri 17 Apr 2026 01:00:22 +0000
Manifest this update: Fri 17 Apr 2026 01:00:22 +0000
Manifest next update: Sat 18 Apr 2026 01:00:22 +0000
Files and hashes: 1: 2hbC2fRcwVVGLuxr3y8s9IdUqJ0.roa (hash: WENyhbzOdCYh/WeleDC3Eb7ZL7vwxD85NmDsUD+Ca/o=)
2: rJ0B3_PG0rjHq-_hS6K9nBrn-PY.roa (hash: m7Zi/TNYib5gTH6m2mPeaQUI4WRQNMe1ierjcvG2bOc=)
3: xOCpqHIGWYpMZiK0D_GduGL-xNY.roa (hash: EH/6F7DAxWGzLP0f7IyWGiPlk48ND1XykF58xtVXDcQ=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: PAT7JQuctn1p+mj4/7goQ+K+4SPCSqoUSEEx4u7ZBDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:07:b7:b6:46:9b:ad:62:ef:e7:b8:59:07:db:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Apr 17 01:00:22 2026 GMT
Not After : Apr 18 01:00:22 2026 GMT
Subject: CN=b47322bfab800e9de6a48740a3fc13801e7926ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:bc:e0:ef:b3:ea:23:3d:23:95:dc:e5:5d:
d1:8f:0f:77:87:96:01:6b:9b:29:34:af:81:2d:6d:
e6:77:ae:c0:67:1d:3f:4a:45:ca:7d:92:14:fd:14:
16:e4:80:0b:da:fe:6d:31:51:f3:31:0f:8f:58:00:
5b:8f:35:92:b5:0e:b3:0c:95:4d:a8:15:b2:16:b8:
6f:1c:c9:c7:b8:cb:fb:6e:95:d0:fb:2e:08:c7:da:
9b:5c:5a:e8:8c:6b:60:ed:ab:ec:cd:fe:81:3c:8a:
5a:98:ce:b5:e9:58:66:8c:91:c0:62:08:46:d8:31:
b2:8d:1d:b2:bf:1a:4f:26:4d:e5:81:55:8e:d5:72:
ca:51:5d:d1:28:d3:ca:74:f0:2b:f4:2c:52:96:72:
b3:f9:72:5f:10:06:23:83:4f:d6:40:a9:51:91:8e:
6c:f9:de:28:e2:95:2a:60:1c:99:95:a8:6b:a6:85:
ef:d2:cf:21:ec:05:5a:98:89:49:34:41:6f:fa:ca:
d1:eb:64:a3:50:a1:6f:b6:80:2b:8f:76:38:c6:db:
62:17:43:3c:c5:20:93:1e:c4:6e:ea:d7:f9:2e:90:
00:60:54:73:c3:c0:bc:a9:a7:4d:c9:e4:50:40:3b:
18:c5:fa:e7:ee:1e:14:6a:fe:0f:78:2a:31:bf:47:
d6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:73:22:BF:AB:80:0E:9D:E6:A4:87:40:A3:FC:13:80:1E:79:26:AC
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:5a:a0:4b:c6:1c:25:62:29:7d:20:27:52:95:96:8c:36:3c:
a5:00:a4:b3:83:c2:eb:0c:4d:b5:de:34:f6:5c:2e:a8:9b:60:
cf:28:5a:b6:75:f4:f0:a2:60:92:3a:30:a2:8d:b0:fd:a6:22:
9c:7d:16:25:57:04:0e:a7:6c:2c:a1:6d:1f:62:04:4b:ba:9f:
b9:f9:fc:ec:a2:a6:1d:8b:a9:90:0b:56:b4:00:74:d4:ac:31:
fc:b2:94:30:54:18:8f:84:de:8f:f8:3e:ea:0c:14:bd:d5:5a:
43:4c:32:ad:79:30:e7:31:26:d9:e6:fd:8f:62:7e:d7:42:29:
f5:71:3d:a8:69:c7:ce:37:e2:98:de:10:57:b1:cc:f1:3b:d2:
12:7f:e1:01:34:ca:3c:82:95:a5:cb:1d:fa:b5:4d:60:88:00:
4e:94:bc:d8:49:c5:e4:b3:15:dd:e8:1e:91:0d:28:40:0f:dd:
91:06:2b:31:48:99:97:9a:2c:cb:38:85:ae:55:d9:79:6f:76:
a5:94:5e:e9:1b:6e:f3:d3:6f:64:e3:e2:1e:c4:b8:92:7f:19:
b8:88:a0:84:8a:6a:b0:3b:12:a2:79:5e:74:46:d0:a5:84:27:
33:f3:0f:31:b8:3f:bb:19:6b:82:23:5e:ac:73:15:82:85:e2:
20:59:5f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:00:00 2026 by rpki-client