Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: qB/fxUpCLB2T6X+e5b7/bcInf8JM+7OiuuM43W0XjrE=
Subject key identifier: 44:D7:B5:C7:B5:45:17:87:F9:01:4C:EC:AB:26:47:DE:DB:50:45:9C
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019DEAEC88F0F3707CA477AE1E2EED25BF04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 187F
Signing time: Sat 02 May 2026 23:01:03 +0000
Manifest this update: Sat 02 May 2026 23:01:03 +0000
Manifest next update: Sun 03 May 2026 23:01:03 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: JNCgvjbcCKvjGI9JlD1zBFyaudzm3z7/AUack9eftTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 May 2026 20:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ea:ec:88:f0:f3:70:7c:a4:77:ae:1e:2e:ed:25:bf:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: May 2 23:01:03 2026 GMT
Not After : May 3 23:01:03 2026 GMT
Subject: CN=44d7b5c7b5451787f9014cecab2647dedb50459c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:40:98:c9:dd:01:2b:6c:1e:06:47:34:58:09:
de:ac:6e:25:19:89:90:6e:43:14:e7:ab:3e:35:c5:
ee:8c:41:2c:4f:e2:85:1a:fb:09:2f:a8:59:88:31:
b0:bd:46:9e:94:8d:f3:d6:7b:58:be:a2:67:8b:18:
b6:a8:7f:45:4a:80:8c:37:10:29:58:21:15:f6:62:
18:6b:94:f0:9a:e3:f1:30:42:1b:c5:f6:9c:17:8a:
92:43:5a:ff:1c:a4:63:a3:00:fa:ac:d7:f4:68:a5:
49:22:33:12:ed:1a:a4:30:92:cd:ff:94:1a:7f:91:
95:ab:17:e5:57:26:39:dd:46:4b:79:15:b9:6d:8e:
a2:e9:ab:58:aa:73:02:b4:fc:1b:20:8f:47:4f:04:
a3:e9:41:fd:4b:f1:18:6b:a2:0d:11:f2:23:25:ae:
9d:4f:f2:33:30:a7:43:bb:73:9e:e5:b6:6f:14:4b:
10:bc:fb:45:22:16:dd:aa:51:44:a5:9c:dc:fd:71:
6d:73:97:16:30:0c:d2:48:c0:83:b0:b4:fa:d5:37:
35:a4:92:33:ee:62:ec:82:db:79:9d:58:7b:78:ae:
c3:d0:da:e6:19:dd:dd:8d:8e:a2:c2:99:17:3d:0f:
31:00:e2:8a:a7:95:c0:ee:c4:e8:24:91:8c:e1:f4:
78:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D7:B5:C7:B5:45:17:87:F9:01:4C:EC:AB:26:47:DE:DB:50:45:9C
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:dc:45:09:9b:cd:7b:ba:d7:ef:f1:18:de:26:2d:4a:0f:6a:
5f:18:66:10:54:9b:5c:7c:95:1e:d0:d4:c3:92:67:74:ed:a3:
77:74:7b:67:06:42:9c:ca:a1:94:85:16:f3:78:48:07:4b:1f:
ce:be:4d:4d:70:f8:57:5c:7e:86:03:11:8c:db:9a:85:4f:67:
56:a5:b6:0d:72:dc:f4:08:5a:7d:9e:60:d8:05:10:99:4b:b9:
fa:ef:ab:23:80:4e:ed:36:e3:4f:24:34:19:9a:28:ed:fe:dd:
d7:06:69:7f:cc:cc:c6:69:60:33:65:e4:f3:cd:9b:0a:73:ed:
cd:27:fc:b7:24:e0:ef:35:b5:32:5a:8d:4e:10:eb:a9:39:a4:
51:59:5a:74:e0:a6:3d:c8:b1:e1:bd:84:35:a8:79:72:94:19:
74:5a:7b:a2:f6:e0:01:97:56:2d:94:15:c1:d9:32:08:ec:1d:
7b:18:c4:55:2d:47:53:81:e4:ba:ff:9e:e7:43:41:d7:6c:45:
e5:d1:41:7c:55:3b:a9:91:42:6a:b2:7e:76:3e:05:3d:a5:a0:
fa:45:e1:e2:81:97:3e:87:10:fb:4e:3e:a4:72:67:ba:5f:06:
e3:14:5c:85:4d:c1:c8:d3:b6:fb:37:c9:62:da:c1:32:29:c6:
61:d8:a0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 05:47:55 2026 by rpki-client