Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 1io8Nwil7FDiA/xE4A/TdgkB/0IOpPl8d4iWfz9Snb8=
Subject key identifier: E9:7C:BC:D7:4B:66:3C:B1:49:1F:7C:44:CC:80:96:6D:F0:E5:DC:10
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019DC25E4E547A8D85D3A3A828567985F4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 186A
Signing time: Sat 25 Apr 2026 02:00:53 +0000
Manifest this update: Sat 25 Apr 2026 02:00:53 +0000
Manifest next update: Sun 26 Apr 2026 02:00:53 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: SoEgnj9zFJnN36VXsf7FroTzq+X2pdM6QADq53GlnB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Apr 2026 01:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c2:5e:4e:54:7a:8d:85:d3:a3:a8:28:56:79:85:f4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 25 02:00:53 2026 GMT
Not After : Apr 26 02:00:53 2026 GMT
Subject: CN=e97cbcd74b663cb1491f7c44cc80966df0e5dc10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4e:94:42:ef:7e:1b:1d:c3:11:96:ba:e9:7d:
db:f8:4a:79:c1:d4:9e:e9:ad:9d:f2:56:c6:4b:30:
31:8a:7a:61:27:34:fe:46:c7:4b:3a:a0:c8:dd:52:
ff:3c:b0:ef:a0:f3:94:f5:c0:a1:4d:fc:a4:12:21:
07:e0:aa:a6:b1:27:c9:a4:ae:fa:09:f2:4d:ce:10:
45:e8:fe:52:55:77:60:d5:5a:fa:2c:f9:f0:96:4f:
74:48:c4:c4:a6:d1:f2:19:9e:05:50:63:cc:97:ea:
ac:94:50:55:df:74:21:b8:82:92:df:b1:00:a3:de:
70:27:f6:d7:9c:9f:9b:2f:2f:15:77:38:ad:6b:36:
b6:f5:41:69:25:30:e7:d3:ac:8f:fc:c0:e0:0f:fa:
98:36:90:2c:19:d5:2a:2a:03:ad:e1:1c:cc:28:c1:
e6:28:6f:6e:82:9d:3c:a4:23:08:9f:c4:79:4a:13:
ab:b0:c1:7a:bb:aa:70:bc:c7:f8:70:9b:51:9f:4d:
00:c3:85:b8:fd:ff:bd:58:68:e4:1c:75:1c:1e:ec:
40:4b:7b:7b:64:ab:01:c4:68:88:e1:76:e9:68:a9:
0f:98:38:aa:2e:c2:52:76:ae:49:6c:a4:32:35:b6:
48:c4:34:3b:38:3c:ba:e1:c4:a0:a5:21:98:b1:f5:
e8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7C:BC:D7:4B:66:3C:B1:49:1F:7C:44:CC:80:96:6D:F0:E5:DC:10
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:16:a6:f4:ac:6e:16:58:f8:4d:b8:4b:24:29:55:20:a5:15:
24:9a:ad:9c:08:15:f1:65:48:9d:1e:03:10:64:6a:8b:8c:05:
8a:0d:76:7a:8f:fe:75:b8:52:c7:3a:5c:99:52:2d:75:22:20:
01:61:f9:6d:94:27:85:93:d7:e3:ab:59:c3:d5:e5:36:ed:e6:
c8:a1:5b:4a:c4:c4:5e:f6:9c:9e:92:91:28:0b:09:11:c2:8e:
9e:27:49:21:54:97:d3:b5:bc:2a:22:c7:8c:f6:0f:e2:b3:06:
24:2d:02:bd:50:c8:d5:e9:ca:81:18:59:b8:35:6c:0c:26:09:
cd:11:2e:3a:41:1b:5a:6d:4a:87:32:ea:e4:33:9f:c2:60:48:
e1:cc:95:ed:78:33:1d:d4:c8:e7:5d:a2:6d:31:6f:a3:98:83:
ce:a8:f1:c4:6b:76:2c:37:aa:2b:84:90:a8:dd:c4:1f:87:57:
4e:28:14:1f:54:88:df:e4:4b:d9:74:55:ae:76:1b:cf:94:74:
33:51:1b:cd:06:c9:24:c0:5f:f6:08:cd:6d:47:ae:61:5d:da:
d9:ef:d0:79:8c:58:89:60:4f:c6:cf:a2:10:25:67:39:ee:6d:
2f:70:9e:d9:f2:fa:d4:9a:cc:95:8f:0c:da:12:a5:2e:15:dd:
12:a6:48:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3CXk5Ueo2F06OoKFZ5hfTkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwNDI1MDIwMDUzWhcNMjYwNDI2MDIwMDUzWjAzMTEwLwYDVQQD
EyhlOTdjYmNkNzRiNjYzY2IxNDkxZjdjNDRjYzgwOTY2ZGYwZTVkYzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3U6UQu9+Gx3DEZa66X3b+Ep5wdSe
6a2d8lbGSzAxinphJzT+RsdLOqDI3VL/PLDvoPOU9cChTfykEiEH4KqmsSfJpK76
CfJNzhBF6P5SVXdg1Vr6LPnwlk90SMTEptHyGZ4FUGPMl+qslFBV33QhuIKS37EA
o95wJ/bXnJ+bLy8Vdzitaza29UFpJTDn06yP/MDgD/qYNpAsGdUqKgOt4RzMKMHm
KG9ugp08pCMIn8R5ShOrsMF6u6pwvMf4cJtRn00Aw4W4/f+9WGjkHHUcHuxAS3t7
ZKsBxGiI4XbpaKkPmDiqLsJSdq5JbKQyNbZIxDQ7ODy64cSgpSGYsfXo4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOl8vNdLZjyxSR98RMyAlm3w5dwQMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaxam9Kxu
Flj4TbhLJClVIKUVJJqtnAgV8WVInR4DEGRqi4wFig12eo/+dbhSxzpcmVItdSIg
AWH5bZQnhZPX46tZw9XlNu3myKFbSsTEXvacnpKRKAsJEcKOnidJIVSX07W8KiLH
jPYP4rMGJC0CvVDI1enKgRhZuDVsDCYJzREuOkEbWm1KhzLq5DOfwmBI4cyV7Xgz
HdTI512ibTFvo5iDzqjxxGt2LDeqK4SQqN3EH4dXTigUH1SI3+RL2XRVrnYbz5R0
M1EbzQbJJMBf9gjNbUeuYV3a2e/QeYxYiWBPxs+iECVnOe5tL3Ce2fL61JrMlY8M
2hKlLhXdEqZIbw==
-----END CERTIFICATE-----
Generated at Sat Apr 25 05:31:59 2026 by rpki-client