Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: gq6TKGNfulaBFZEtGbrelw6iYBmfRzQt+fRtPc3c/kE=
Subject key identifier: F8:35:88:F2:92:AE:44:15:AC:00:65:4A:1D:9E:4A:F8:65:A8:DE:67
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019D9BBE3124031A6EB0D799D6A04302137B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1856
Signing time: Fri 17 Apr 2026 14:00:25 +0000
Manifest this update: Fri 17 Apr 2026 14:00:25 +0000
Manifest next update: Sat 18 Apr 2026 14:00:25 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 8KIMYz+yQP4kW/E9cJbYUztp6KuraGE3FiE3fJE4wCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:31:24:03:1a:6e:b0:d7:99:d6:a0:43:02:13:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 17 14:00:25 2026 GMT
Not After : Apr 18 14:00:25 2026 GMT
Subject: CN=f83588f292ae4415ac00654a1d9e4af865a8de67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:47:e7:3f:ad:ec:c0:2f:aa:5d:a1:b2:32:ad:
0b:58:3d:a5:0c:75:48:f9:dc:d3:1e:dc:29:54:93:
4e:8a:e5:9c:7b:c9:02:cc:3a:f6:54:67:7a:7d:fc:
d4:e7:97:11:04:af:95:7e:27:1c:e3:27:09:2e:c9:
47:ce:d3:b4:d2:a3:12:17:e0:b1:63:23:2a:41:fe:
a7:e5:9e:18:3d:79:81:b6:7f:ee:af:de:92:13:20:
12:35:a8:fb:b1:84:2e:ff:c4:51:c5:d7:97:7c:56:
af:4a:ba:94:68:6c:07:5b:72:ba:b1:d9:c8:fe:55:
4c:47:05:b7:97:d9:38:eb:78:46:6f:b8:09:ab:2c:
5f:15:26:99:a9:57:57:fc:65:12:ba:71:5e:b7:f4:
ac:61:3c:23:74:f6:a0:b4:01:68:f8:e7:53:ae:1e:
7e:5c:84:3e:c2:fc:a1:23:e8:81:9c:58:e2:da:ec:
a3:bd:3e:fd:ce:70:8a:90:37:c5:63:58:f1:e6:c9:
e4:24:4e:6c:51:b0:c7:51:7d:8b:2e:fa:bb:c2:5a:
92:03:51:a7:80:6d:f3:24:2b:58:ed:1d:53:0d:c1:
10:f3:c8:89:0c:2f:8a:76:2d:80:3c:50:f9:07:c9:
e9:38:09:2d:ac:af:de:f5:3e:f4:65:8b:f6:23:18:
b9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:35:88:F2:92:AE:44:15:AC:00:65:4A:1D:9E:4A:F8:65:A8:DE:67
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:b8:41:ac:3c:34:90:79:59:c4:ea:03:2d:6e:d1:56:22:4e:
80:26:4e:b4:cc:ed:8d:fe:6e:7c:50:c8:87:51:cf:8b:52:87:
5f:0b:30:9a:de:4e:f8:2e:ec:a0:49:c6:7d:d4:f8:ed:c0:7a:
0f:ee:94:ec:3f:e1:cd:ab:87:c7:12:8d:f8:68:4b:f2:78:05:
c1:39:b2:20:d0:b9:14:db:e7:74:ba:82:bd:e1:2a:61:4f:e1:
80:af:ef:23:d5:3d:4f:78:f7:48:25:1c:0b:d3:64:c5:ca:31:
57:eb:1e:7a:a3:4b:02:18:fe:cd:40:1f:ef:c9:51:16:bf:a2:
e4:2e:96:43:61:68:43:a8:cc:75:1c:cb:30:66:f3:da:d8:42:
e1:6d:bb:3f:fc:10:e2:ff:39:ac:26:4f:e2:27:8f:0b:0a:a3:
40:d4:0b:e1:31:25:a6:5b:10:63:32:78:97:1c:46:63:9d:00:
fe:a1:2d:e9:c7:72:8a:6e:93:77:a6:23:65:6f:6c:55:c5:6d:
96:80:3d:32:1f:b2:4d:2d:26:df:17:72:3e:80:dd:e1:69:42:
fa:f4:19:e5:0c:36:0e:25:59:a9:2e:7c:34:8a:97:c2:e6:5a:
87:d6:05:9b:92:21:06:0e:aa:87:50:bd:1c:af:52:5e:cb:2f:
49:d9:4c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:03:33 2026 by rpki-client