Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: Bgfmsyc+zOB2auyzmqo6Zs/BAOCyHMl3q4kEP1PmlHM=
Subject key identifier: C0:93:9B:85:6E:1A:0D:99:12:B6:AD:E1:A8:56:68:B7:56:70:18:D0
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019CA86AB434DFA4C28B59435A5E16F0C18A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 17D8
Signing time: Sun 01 Mar 2026 08:01:30 +0000
Manifest this update: Sun 01 Mar 2026 08:01:30 +0000
Manifest next update: Mon 02 Mar 2026 08:01:30 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: lfO67YXeWxD9XqW8XXXDz+5nQKKU91JHBkDSq9mAUmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:6a:b4:34:df:a4:c2:8b:59:43:5a:5e:16:f0:c1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Mar 1 08:01:30 2026 GMT
Not After : Mar 2 08:01:30 2026 GMT
Subject: CN=c0939b856e1a0d9912b6ade1a85668b7567018d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:af:62:5b:c3:62:8a:e0:b9:4c:67:4e:70:05:
8f:df:af:7b:7c:a9:c9:76:e2:71:5c:b6:f1:4f:ee:
c0:f5:e5:a7:32:7e:ab:1b:53:bb:11:7b:49:6a:f0:
21:59:72:1a:98:3e:27:77:d1:09:36:c1:cc:83:a0:
53:06:de:e6:65:d4:54:5d:6f:6d:b8:65:05:52:9f:
3f:d6:15:2d:0d:ab:d7:ef:ee:7e:4f:c6:63:0d:6b:
fd:68:73:35:71:cf:7e:cc:0f:65:bf:21:71:72:10:
b6:c9:48:28:0e:78:b2:0b:52:9d:c1:4f:27:2c:f6:
d5:67:79:b3:91:df:6f:b4:4b:5b:fd:32:df:9f:2f:
5a:42:3b:c5:24:71:d5:5a:55:07:56:9d:bc:c1:b8:
97:39:9a:d1:20:fe:84:da:a0:14:be:05:d1:8a:6e:
b4:cd:74:ac:d4:af:cc:7f:54:af:7e:de:1e:3f:fc:
50:35:2a:f0:75:03:d2:0b:0f:a7:5f:fc:f7:50:2a:
d8:12:c8:8f:c2:58:d6:e0:63:47:f3:c4:dd:81:ab:
3e:08:9b:24:bb:14:2d:f7:40:5e:5c:e5:5a:c1:09:
19:02:fb:60:e3:fd:e5:11:4a:e8:28:ca:1c:e6:b9:
43:15:02:7f:b9:31:56:fa:a9:90:ad:f1:29:0b:15:
1e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:93:9B:85:6E:1A:0D:99:12:B6:AD:E1:A8:56:68:B7:56:70:18:D0
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:63:0f:97:e3:f4:6f:81:97:bf:a2:3f:09:e2:90:19:70:77:
ab:97:dd:37:ce:38:d2:0f:e7:37:78:3b:a6:0e:31:2a:f0:98:
40:18:01:c1:39:89:ce:2f:09:1a:67:24:4d:b6:c5:32:29:c5:
29:42:64:aa:fe:0c:a0:68:df:a5:0a:45:b1:52:72:cb:a1:09:
51:f9:60:f0:be:04:00:8a:a7:0e:ba:3e:86:2d:8d:f1:5a:4a:
ad:31:57:81:8c:b9:47:f1:e6:34:97:77:05:26:3c:e8:fd:10:
3c:f7:62:23:4f:b5:dc:ad:de:e6:30:d9:a4:af:62:e6:a4:81:
a8:a1:18:b5:0d:98:fc:5b:02:ea:50:48:aa:96:75:c5:a7:28:
2f:a9:a9:0e:23:cf:64:aa:7b:8e:8e:f4:83:7f:30:1f:0c:52:
58:7d:64:b2:53:21:9a:35:4a:4a:a3:4b:65:ee:aa:1d:f7:4c:
3d:2f:12:cb:b5:a7:dc:5d:5b:56:ad:0c:73:93:f0:6f:d8:8c:
f4:1e:de:40:ba:cc:c6:f3:43:12:72:5f:81:30:b9:74:02:13:
24:7c:8b:b2:cc:9d:b4:cc:2a:07:af:55:f5:39:56:f4:ce:64:
73:2b:a2:ac:47:c9:4e:fb:d4:65:1b:6e:f0:95:0b:41:de:3d:
be:13:e9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:49:41 2026 by rpki-client