Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 1Izl0P18LZZmNcj7TSZZCfca7PDVn/x4pqDA/rNfZUc=
Subject key identifier: 0A:17:C4:3B:9B:5B:2D:33:2A:42:6A:63:A1:3F:40:24:55:D1:D8:6E
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019DB6C799CF7A78B915F94D1DF663F80B44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1864
Signing time: Wed 22 Apr 2026 20:00:27 +0000
Manifest this update: Wed 22 Apr 2026 20:00:27 +0000
Manifest next update: Thu 23 Apr 2026 20:00:27 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: r3BhV8lKZJvpEGw5KOSZ2semg4k4ODjaSQVOCkN0r/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b6:c7:99:cf:7a:78:b9:15:f9:4d:1d:f6:63:f8:0b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 22 20:00:27 2026 GMT
Not After : Apr 23 20:00:27 2026 GMT
Subject: CN=0a17c43b9b5b2d332a426a63a13f402455d1d86e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:b6:55:99:04:8e:9a:ee:e4:0c:27:9e:9d:
bf:4b:0a:f9:dc:a2:f1:05:8d:9c:a4:68:91:80:78:
d9:0a:94:49:3a:df:4a:25:e3:2c:4a:30:8c:f1:81:
07:75:9d:ed:5c:5e:32:13:9d:2e:ea:a6:a9:71:74:
a7:28:71:79:16:c2:7e:e9:af:41:6c:ad:0f:67:e3:
30:bc:11:d1:df:9f:01:7b:f1:e6:ff:63:97:64:74:
c6:10:3d:21:21:b7:1d:57:7a:b1:8b:a2:92:f4:f2:
b9:46:b6:2b:1c:72:3f:97:5d:3a:59:f2:93:8f:42:
d6:ac:ee:c7:df:04:49:94:68:25:e2:bc:1c:4c:c3:
23:8d:d5:4d:1c:25:22:58:0d:2d:89:56:61:4f:9a:
7c:0d:6e:fc:3e:c2:95:64:a0:b9:a7:e8:35:6d:e9:
d8:8a:c1:47:5d:8e:e1:08:42:1a:ea:21:bb:f6:83:
e5:6f:05:12:d2:b7:02:4b:b6:89:b5:81:22:f0:a9:
db:26:88:ef:3e:17:83:d2:3d:42:a6:a5:aa:b6:01:
d5:a5:33:6e:15:fb:2e:90:36:bd:b3:61:a7:f4:34:
93:25:96:74:ba:e6:8b:98:28:9f:79:02:12:74:35:
f7:e0:ed:74:af:40:86:62:a8:1b:0a:25:41:a1:b3:
73:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:17:C4:3B:9B:5B:2D:33:2A:42:6A:63:A1:3F:40:24:55:D1:D8:6E
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:c0:00:ce:f9:04:a7:31:87:bb:59:96:3a:cd:39:4b:fa:4b:
b1:02:21:72:60:bb:1b:18:87:27:f3:f4:53:b1:7f:7f:01:e7:
9f:65:59:e3:9c:d9:ee:c6:8f:78:b0:83:6e:f8:ca:da:9d:b3:
7a:93:5f:49:2f:f3:53:f0:18:3d:73:7e:2a:33:58:4c:64:52:
f3:77:74:e2:f0:85:0b:91:d6:5d:e5:00:aa:a6:80:4c:c4:6d:
04:6b:f8:fb:59:06:b1:15:03:0e:ac:6d:61:0c:de:cc:39:7b:
f5:3c:49:3f:c4:4d:20:e5:75:d0:32:e3:9f:45:59:22:4e:eb:
58:57:c6:18:59:2b:de:bc:70:af:d0:cc:64:c3:88:72:e4:79:
9b:3b:18:4a:b7:ba:b0:dd:a5:0a:0c:1b:af:97:da:b3:ce:af:
75:c5:8f:12:b6:70:f0:04:5b:42:7b:ba:a3:2f:dc:74:ec:1b:
ef:21:f4:46:58:42:72:b0:58:22:0f:86:ac:08:7d:73:dd:fa:
6d:95:eb:ed:52:ac:6a:98:aa:7c:b5:70:1b:60:6e:43:72:0a:
22:8b:44:78:6e:c9:2d:0c:63:9f:11:d3:17:22:36:07:5c:e9:
d5:f5:3b:b7:d1:1c:7c:19:b2:c4:07:55:cb:ef:84:03:2d:f7:
e7:bb:48:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ22x5nPeni5FflNHfZj+AtEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwNDIyMjAwMDI3WhcNMjYwNDIzMjAwMDI3WjAzMTEwLwYDVQQD
EygwYTE3YzQzYjliNWIyZDMzMmE0MjZhNjNhMTNmNDAyNDU1ZDFkODZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2y2VZkEjpru5Awnnp2/Swr53KLx
BY2cpGiRgHjZCpRJOt9KJeMsSjCM8YEHdZ3tXF4yE50u6qapcXSnKHF5FsJ+6a9B
bK0PZ+MwvBHR358Be/Hm/2OXZHTGED0hIbcdV3qxi6KS9PK5RrYrHHI/l106WfKT
j0LWrO7H3wRJlGgl4rwcTMMjjdVNHCUiWA0tiVZhT5p8DW78PsKVZKC5p+g1benY
isFHXY7hCEIa6iG79oPlbwUS0rcCS7aJtYEi8KnbJojvPheD0j1CpqWqtgHVpTNu
FfsukDa9s2Gn9DSTJZZ0uuaLmCifeQISdDX34O10r0CGYqgbCiVBobNzrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAoXxDubWy0zKkJqY6E/QCRV0dhuMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUMAAzvkE
pzGHu1mWOs05S/pLsQIhcmC7GxiHJ/P0U7F/fwHnn2VZ45zZ7saPeLCDbvjK2p2z
epNfSS/zU/AYPXN+KjNYTGRS83d04vCFC5HWXeUAqqaATMRtBGv4+1kGsRUDDqxt
YQzezDl79TxJP8RNIOV10DLjn0VZIk7rWFfGGFkr3rxwr9DMZMOIcuR5mzsYSre6
sN2lCgwbr5fas86vdcWPErZw8ARbQnu6oy/cdOwb7yH0RlhCcrBYIg+GrAh9c936
bZXr7VKsapiqfLVwG2BuQ3IKIotEeG7JLQxjnxHTFyI2B1zp1fU7t9EcfBmyxAdV
y++EAy3357tI+A==
-----END CERTIFICATE-----
Generated at Thu Apr 23 03:35:33 2026 by rpki-client