Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 0NpU8/BrVoWREn/lUCWfyG/8PIXp/s/f5H2/ucCP+3M=
Subject key identifier: A4:F1:BD:FB:8B:F7:62:DB:94:5E:5F:7B:6C:06:EF:8B:08:52:05:C3
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019C9708F8908A44DE929F4EADFD929722A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 17CF
Signing time: Wed 25 Feb 2026 23:01:13 +0000
Manifest this update: Wed 25 Feb 2026 23:01:13 +0000
Manifest next update: Thu 26 Feb 2026 23:01:13 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: rF15BsafMMXgfh7l/8p+k1EIh30TroVrPhqmIUi8jzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Feb 2026 23:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:97:08:f8:90:8a:44:de:92:9f:4e:ad:fd:92:97:22:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Feb 25 23:01:13 2026 GMT
Not After : Feb 26 23:01:13 2026 GMT
Subject: CN=a4f1bdfb8bf762db945e5f7b6c06ef8b085205c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:01:93:70:71:09:78:58:7c:78:77:61:d4:4b:
d7:bf:d2:e6:d5:c7:6a:79:f4:11:fa:ce:c3:af:2e:
c1:b5:ae:36:d5:e7:f9:8e:db:ed:71:9c:05:6d:65:
83:c9:b0:53:c3:29:58:f8:37:94:ce:5c:d6:96:ab:
ed:22:e7:b6:6b:bc:41:83:c4:3b:cf:95:e3:7a:55:
4b:82:e3:1c:60:4c:4e:4b:c6:1d:34:d2:04:f5:b9:
57:84:1f:f4:f2:8b:7b:5d:6c:80:50:bd:f9:e7:fb:
13:f6:60:d5:c5:d3:81:3d:c9:4a:ae:1b:d5:a3:1c:
46:4a:a5:38:d3:4e:f1:3d:c8:cf:77:b4:15:12:8c:
38:9a:ef:7f:8e:fb:cc:40:34:7c:c6:aa:71:53:9e:
e8:96:0d:e5:6d:e1:b4:2c:75:0c:88:22:60:0b:69:
12:48:65:e9:46:0b:95:f1:a4:ef:be:65:f6:14:76:
68:86:96:8e:5b:fc:5f:13:5b:9e:c4:2c:ed:89:04:
e2:ce:00:23:72:3f:f2:98:65:fe:5d:7e:d3:94:fd:
f4:37:88:5a:59:fe:c9:57:33:87:c4:b5:3a:f6:42:
2c:0e:90:56:13:b1:fb:60:5d:a2:5d:5e:84:88:8b:
55:61:53:49:5b:4d:2a:90:81:7c:62:23:49:11:40:
75:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F1:BD:FB:8B:F7:62:DB:94:5E:5F:7B:6C:06:EF:8B:08:52:05:C3
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:e3:07:9e:8f:c9:c0:0f:27:6a:30:7f:04:7f:cf:82:56:11:
4d:54:d0:d3:61:63:04:5b:aa:aa:b4:c8:01:cf:ef:e6:6c:d2:
7e:59:99:b8:97:fa:2f:d4:b7:cd:b5:b3:88:6b:8d:68:ad:10:
55:a4:6a:dc:23:a1:0b:64:ff:2c:e2:04:50:19:b3:c0:b3:81:
17:2c:54:7a:fc:ca:dd:cb:95:04:b7:f9:5a:d2:fa:64:79:a6:
92:5c:cc:9d:41:a3:6d:40:a5:50:54:2d:14:5f:47:71:31:53:
79:59:d3:d6:b1:59:18:fe:71:2b:8d:5c:cc:92:ea:15:61:f5:
93:0a:b5:36:ed:12:96:5d:bb:9a:02:d5:68:5e:22:54:d3:1f:
b8:bf:d8:13:1a:07:01:89:7d:93:91:25:14:8f:a5:0b:f9:0d:
3b:a0:07:40:ea:b2:cd:e0:a0:32:cb:d1:92:0d:db:1e:33:40:
a2:0c:c7:8f:a8:01:54:da:e1:bd:99:c0:11:e1:61:94:50:18:
e5:1a:f7:21:ec:8c:09:79:4c:9f:71:e9:08:ec:1a:63:34:d9:
99:77:db:a6:34:a6:2f:0c:a8:95:2f:9b:2f:92:34:d9:06:dd:
d2:0d:37:eb:59:6c:21:30:df:be:c7:f8:ce:b6:77:90:45:d6:
00:f9:cf:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyXCPiQikTekp9Orf2SlyKoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwMjI1MjMwMTEzWhcNMjYwMjI2MjMwMTEzWjAzMTEwLwYDVQQD
EyhhNGYxYmRmYjhiZjc2MmRiOTQ1ZTVmN2I2YzA2ZWY4YjA4NTIwNWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQGTcHEJeFh8eHdh1EvXv9Lm1cdq
efQR+s7Dry7Bta421ef5jtvtcZwFbWWDybBTwylY+DeUzlzWlqvtIue2a7xBg8Q7
z5XjelVLguMcYExOS8YdNNIE9blXhB/08ot7XWyAUL355/sT9mDVxdOBPclKrhvV
oxxGSqU4007xPcjPd7QVEow4mu9/jvvMQDR8xqpxU57olg3lbeG0LHUMiCJgC2kS
SGXpRguV8aTvvmX2FHZohpaOW/xfE1uexCztiQTizgAjcj/ymGX+XX7TlP30N4ha
Wf7JVzOHxLU69kIsDpBWE7H7YF2iXV6EiItVYVNJW00qkIF8YiNJEUB1cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTxvfuL92LblF5fe2wG74sIUgXDMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeMHno/J
wA8najB/BH/PglYRTVTQ02FjBFuqqrTIAc/v5mzSflmZuJf6L9S3zbWziGuNaK0Q
VaRq3COhC2T/LOIEUBmzwLOBFyxUevzK3cuVBLf5WtL6ZHmmklzMnUGjbUClUFQt
FF9HcTFTeVnT1rFZGP5xK41czJLqFWH1kwq1Nu0Sll27mgLVaF4iVNMfuL/YExoH
AYl9k5ElFI+lC/kNO6AHQOqyzeCgMsvRkg3bHjNAogzHj6gBVNrhvZnAEeFhlFAY
5Rr3IeyMCXlMn3HpCOwaYzTZmXfbpjSmLwyolS+bL5I02Qbd0g0361lsITDfvsf4
zrZ3kEXWAPnPFw==
-----END CERTIFICATE-----
Generated at Thu Feb 26 08:57:51 2026 by rpki-client