Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: xxlrFhPsnwRcoTgBz50sF5qtCc7nD/Xlod/9pS1zzYM=
Subject key identifier: 26:02:3F:1A:41:18:15:DE:A2:3F:5A:AE:C4:38:FF:66:7B:D3:DC:BE
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019D525B9BA0BE8F09C2C032EAED94D32922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1830
Signing time: Fri 03 Apr 2026 08:00:28 +0000
Manifest this update: Fri 03 Apr 2026 08:00:28 +0000
Manifest next update: Sat 04 Apr 2026 08:00:28 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: FPfA6+A4PVjg7mzjnXSJ1kYHIX5zkAvI0x9vHl/MP8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Apr 2026 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:52:5b:9b:a0:be:8f:09:c2:c0:32:ea:ed:94:d3:29:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 3 08:00:28 2026 GMT
Not After : Apr 4 08:00:28 2026 GMT
Subject: CN=26023f1a411815dea23f5aaec438ff667bd3dcbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e4:f7:45:bc:85:fd:8e:4f:5d:03:80:02:56:
16:81:67:db:a2:25:b7:3c:18:6d:82:fb:29:9b:13:
10:a4:aa:4e:e0:56:1a:07:b9:a4:91:95:08:60:58:
80:e3:a6:a0:d2:7c:eb:37:a6:5d:66:57:31:4a:d0:
f3:c6:cd:bd:7e:e3:4f:b5:a3:bd:58:2e:aa:b1:b0:
d4:65:19:d3:78:35:26:39:f2:3c:c7:fb:34:5a:75:
05:35:65:a7:c8:da:b4:11:62:f1:16:05:82:51:d5:
54:dc:6a:68:94:45:44:db:dd:33:57:2f:a6:07:f4:
d7:bd:f4:ee:b2:51:cb:5f:7b:92:92:07:71:9e:b8:
5f:1d:b0:a5:5e:67:49:28:ca:24:9c:78:68:20:01:
77:26:e8:30:a8:fc:31:18:26:e9:2d:42:35:b2:43:
27:fb:a7:a0:31:42:e0:5f:91:0f:04:f0:da:48:be:
bd:6b:f6:1e:3c:a6:72:49:1d:46:9a:c1:58:b6:34:
39:08:3f:5e:0c:f5:58:b5:74:59:b8:1d:45:10:d4:
1d:f5:ba:a5:63:f2:ee:c6:3f:ea:f6:21:82:97:d1:
80:ec:39:bd:97:4a:7a:b0:4b:72:65:e1:d4:23:06:
1a:a2:6e:8b:f6:81:b6:77:4c:fe:9f:68:25:b4:16:
74:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:02:3F:1A:41:18:15:DE:A2:3F:5A:AE:C4:38:FF:66:7B:D3:DC:BE
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:13:6d:f6:f7:26:3f:18:5f:01:79:db:5a:45:e7:17:07:7d:
0a:fe:b6:54:bc:2c:fd:a2:90:b6:05:9d:66:5e:20:39:19:16:
25:51:10:09:75:8c:3c:da:60:17:1d:14:8c:f3:28:06:7f:3c:
a0:aa:38:4a:c0:f2:bd:37:32:99:bd:ba:9b:80:30:a9:98:a4:
65:1b:f2:a7:0e:09:2e:97:8d:de:5a:45:cf:f5:b9:ec:ef:b7:
0c:9c:55:b1:b5:53:86:a9:16:d4:41:5b:40:8f:d9:c8:55:91:
c5:85:2b:d0:1d:02:f5:38:4e:3e:83:ad:eb:4c:37:fb:2d:21:
7c:a1:be:3c:01:87:0c:3a:50:02:41:fa:0b:00:04:4b:e3:55:
0f:55:26:06:9b:c3:6b:5e:07:97:2f:fe:14:92:b1:e0:b2:78:
8a:b7:aa:65:8e:55:a5:87:c7:63:15:42:7e:e6:b5:63:c2:d2:
4f:4f:f7:b8:27:d1:3d:39:bc:0f:bb:42:1c:91:1a:ce:5f:81:
7e:81:03:3f:8b:39:8a:78:0b:3a:25:57:a9:dd:bf:b6:d9:67:
ec:af:07:c4:7f:70:2c:5e:0d:d6:8b:52:01:83:68:52:51:39:
d6:8b:ab:00:ce:47:00:39:8a:39:b0:84:e7:07:b6:3a:5c:43:
56:f4:01:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 3 17:03:05 2026 by rpki-client