Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: jwJfO1tEkL9OBaljW/wWkv7C2PMfVhJT7uunBdaudSM=
Subject key identifier: D8:9E:5B:FA:B7:1A:EC:E7:28:FD:5A:57:1E:36:67:EF:21:C7:C8:22
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019DC63BB2C556EF4F4D5CE93316F117EE80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 186C
Signing time: Sat 25 Apr 2026 20:01:34 +0000
Manifest this update: Sat 25 Apr 2026 20:01:34 +0000
Manifest next update: Sun 26 Apr 2026 20:01:34 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: yAt8xw1YId66jM1LHY9+6QApl7IgSgXrWi4Na8H/kMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Apr 2026 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c6:3b:b2:c5:56:ef:4f:4d:5c:e9:33:16:f1:17:ee:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 25 20:01:34 2026 GMT
Not After : Apr 26 20:01:34 2026 GMT
Subject: CN=d89e5bfab71aece728fd5a571e3667ef21c7c822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b6:ff:d0:f0:19:d9:61:8f:9a:d7:f4:89:c1:
1f:0c:b9:9b:91:fc:ee:f7:0a:ad:75:51:7e:2b:64:
07:7c:bf:b0:5f:ec:92:f9:3d:ff:7e:0d:6a:7a:1f:
bf:d2:e4:45:ad:3f:2c:dd:e2:bb:e0:d3:3d:45:2a:
ed:0c:e6:79:04:92:a4:e7:74:2d:66:80:14:66:b4:
5f:74:f3:a8:07:68:a9:2f:01:50:b7:8d:cd:81:75:
66:0f:64:fe:2a:96:be:81:2b:19:1c:2c:53:76:73:
1a:f2:f2:15:a4:93:7a:95:0e:d9:74:49:6f:78:3d:
ba:37:5e:09:29:49:3b:77:fe:29:05:6c:08:39:a3:
1b:f3:14:10:bb:81:bb:70:c6:25:6b:52:9b:2a:c3:
fd:f0:1b:fb:c3:95:0f:e6:ad:5c:57:69:46:b2:a2:
1d:49:fc:f0:ac:0d:82:9c:99:f3:92:fb:e8:a6:82:
55:7a:ee:50:c8:41:b9:11:7f:fc:20:ce:ca:3e:0d:
6f:59:83:84:2d:ce:ba:8c:be:3a:14:c5:f1:ca:9a:
20:ff:83:36:37:35:b7:32:25:9a:ce:37:05:39:bc:
be:bf:3f:98:45:57:24:95:b3:7f:19:47:2a:73:f5:
19:8c:8c:78:3d:5c:b0:c2:07:03:a4:0c:a1:7b:92:
74:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9E:5B:FA:B7:1A:EC:E7:28:FD:5A:57:1E:36:67:EF:21:C7:C8:22
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:5f:a3:71:92:52:04:b0:d1:1d:a3:dc:69:1a:57:0b:d6:05:
93:50:10:5c:d4:03:ff:db:0a:a2:1a:66:40:bd:db:87:a9:be:
8c:09:43:23:4d:be:ec:1b:a2:bb:3e:ac:4e:88:3e:f0:0f:30:
7c:ad:35:5d:6b:72:04:6d:6c:70:78:5f:e6:90:88:66:af:ad:
0b:f3:01:62:e0:b4:d6:a9:57:35:5f:2d:fa:5e:ec:9f:f5:f3:
d5:76:cc:a0:34:d2:fc:ba:fc:89:e0:cd:63:39:64:73:f0:e3:
9c:c9:9b:33:62:b7:81:83:68:e6:70:76:83:c0:0a:8d:9f:db:
7f:ab:15:30:a3:c4:b3:fc:b3:9b:0a:af:b6:f5:ee:94:43:7c:
41:04:4f:b1:db:1c:19:b1:79:16:28:06:8a:4b:35:64:b0:d0:
00:9a:8e:32:09:c5:25:c3:3e:14:ec:2d:41:01:4b:f1:98:df:
1d:f8:67:72:37:d2:c9:28:00:4e:7f:40:d8:93:02:04:9e:00:
b0:38:87:44:7c:cc:d4:ff:d8:cc:51:de:3b:1e:97:83:43:1b:
31:05:fc:1f:11:34:31:cb:6d:d0:0b:2d:6a:cc:b4:75:c3:d8:
84:8e:05:92:fc:40:14:8f:8f:59:d7:f2:23:d5:52:c0:63:4d:
5a:d6:ef:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 26 05:43:01 2026 by rpki-client