Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: SKx86uLi4rU9eASaJPrbsZcBv98nAvY//QSHzdMvjZQ=
Subject key identifier: 7F:B5:BC:2E:B5:8F:1D:9A:C8:CA:99:9C:3E:7E:FF:68:F1:79:A1:4C
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 019E31852124B3671A458C7F96C54B960F9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 18A4
Signing time: Sat 16 May 2026 16:01:08 +0000
Manifest this update: Sat 16 May 2026 16:01:08 +0000
Manifest next update: Sun 17 May 2026 16:01:08 +0000
Files and hashes: 1: 2hbC2fRcwVVGLuxr3y8s9IdUqJ0.roa (hash: WENyhbzOdCYh/WeleDC3Eb7ZL7vwxD85NmDsUD+Ca/o=)
2: rJ0B3_PG0rjHq-_hS6K9nBrn-PY.roa (hash: m7Zi/TNYib5gTH6m2mPeaQUI4WRQNMe1ierjcvG2bOc=)
3: xOCpqHIGWYpMZiK0D_GduGL-xNY.roa (hash: EH/6F7DAxWGzLP0f7IyWGiPlk48ND1XykF58xtVXDcQ=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: GBGy0yrC+1BczlbAgVbQJUNLry3Czbv2DHorYYpnrWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:21:24:b3:67:1a:45:8c:7f:96:c5:4b:96:0f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: May 16 16:01:08 2026 GMT
Not After : May 17 16:01:08 2026 GMT
Subject: CN=7fb5bc2eb58f1d9ac8ca999c3e7eff68f179a14c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:77:39:c6:b2:d6:89:e9:32:96:82:1e:9b:91:
41:91:cb:0b:da:b3:8c:04:82:ea:c2:a9:65:2d:5f:
74:99:e4:03:88:dc:fc:d7:bf:b9:e2:13:25:aa:b2:
00:c7:35:16:cd:e7:37:59:b6:8f:80:49:d5:61:3b:
1c:26:0a:a8:2c:ad:da:18:80:d8:66:25:7e:d5:79:
e6:22:7b:a0:b1:8e:cb:e9:a4:ae:68:52:c7:2f:b3:
d6:de:48:77:cc:6e:cc:2a:39:8c:8b:95:77:4f:05:
42:eb:3c:81:e1:de:96:17:ec:95:a8:c8:39:db:07:
a4:6c:36:52:b5:68:db:76:27:8e:71:b7:bc:5b:20:
0c:00:65:41:62:c6:81:c7:2e:ad:5b:4d:ce:19:b0:
3d:e8:f0:36:d8:c6:d7:e4:41:14:2c:c9:0b:70:91:
e4:00:6c:4d:5a:4e:f0:d7:6f:c1:21:f0:59:33:a3:
45:73:da:f8:95:bf:21:88:f8:b0:c1:86:08:73:ba:
1c:10:0d:31:dd:42:c4:ec:db:94:5d:b5:20:1c:00:
24:16:2a:88:48:76:5a:f2:3d:0c:5c:2b:39:df:bf:
f6:33:ac:b0:76:ef:31:19:26:c7:ad:74:2a:c4:a6:
78:cc:08:8e:24:71:4d:c7:23:41:e3:f8:a8:be:cb:
39:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B5:BC:2E:B5:8F:1D:9A:C8:CA:99:9C:3E:7E:FF:68:F1:79:A1:4C
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:fc:bf:9a:25:d6:29:36:27:88:bd:ac:83:fb:d2:e5:95:77:
20:4e:f6:cf:a9:2a:2f:cb:a9:57:8f:79:ea:cd:b3:ca:cc:2e:
91:f4:b1:ab:95:22:c2:2c:30:33:da:0f:72:96:ed:ec:69:b8:
54:84:97:2c:08:e1:40:21:e3:7d:8a:73:cf:85:3a:7e:7a:1b:
e3:e3:90:09:f6:4a:40:b9:21:60:ad:29:f6:e4:14:1a:2f:46:
a3:0a:e0:6c:d5:70:f9:05:cd:5a:ff:8e:be:83:04:fc:30:08:
61:4a:e3:28:7e:81:be:59:41:8b:67:9d:94:74:93:14:cf:39:
4d:15:b9:97:69:fd:f9:8d:0b:64:0c:5d:e7:c6:80:fe:52:b2:
6f:60:7e:77:12:dd:b1:ef:43:02:3a:ea:25:7f:d9:6a:2c:c0:
6c:3e:04:ce:06:45:c5:91:26:2b:20:61:df:5d:0c:9a:57:1f:
fa:69:8c:9f:1c:7d:bb:7a:a6:4c:73:b7:e3:f0:01:fa:dd:98:
c9:4d:a8:9f:40:58:d8:08:f2:cd:68:24:f5:82:9a:c0:c0:8f:
49:0d:41:2f:e7:43:08:f1:2c:25:dd:11:0a:cd:60:96:3b:df:
5d:0d:7c:da:63:1f:57:e2:bb:a3:0c:43:e4:af:df:bc:a3:1e:
cc:43:af:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:26:19 2026 by rpki-client