Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: bur8k6om6dCWW3XEB8kyeRB4Fy6E6nnRJKZSa8mkTbw=
Subject key identifier: 3F:A7:4A:0A:A5:4E:CC:BD:E4:F9:C6:71:44:BC:0D:09:50:AC:09:C7
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019CE06AF5EF39E12FAA629EF5642F4B0413
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 17F5
Signing time: Thu 12 Mar 2026 05:00:31 +0000
Manifest this update: Thu 12 Mar 2026 05:00:31 +0000
Manifest next update: Fri 13 Mar 2026 05:00:31 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: vkvMTZVq9sLXU8ps3YevzBOQx0tUJ6FlDP86pbO0KGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e0:6a:f5:ef:39:e1:2f:aa:62:9e:f5:64:2f:4b:04:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Mar 12 05:00:31 2026 GMT
Not After : Mar 13 05:00:31 2026 GMT
Subject: CN=3fa74a0aa54eccbde4f9c67144bc0d0950ac09c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:27:53:b4:8a:3b:45:dc:6e:6c:c1:30:03:d4:
68:16:5c:d4:fe:4e:41:18:44:c8:e0:64:ee:ce:50:
c4:7a:5c:fe:ee:31:25:c0:a0:bc:ad:02:22:00:0f:
d8:78:ad:c6:a6:53:7d:fd:c1:da:b8:fd:ee:5b:59:
84:94:45:f9:49:87:57:ba:35:59:fa:0a:60:51:73:
49:4a:08:1e:5b:8c:ca:a0:86:56:ab:15:ab:e5:ad:
83:50:8f:89:84:9c:10:84:79:e0:f1:98:99:41:4d:
8a:43:03:0c:70:e2:49:41:e9:be:b1:99:08:f6:a5:
09:d7:8c:72:2d:52:55:05:a3:07:a2:c4:8e:bc:49:
9b:28:a9:74:b4:5b:bb:72:11:8a:7a:ac:da:66:71:
cd:a7:f1:4f:f3:c6:42:ed:e5:34:56:5b:07:98:00:
fc:27:2c:38:08:43:a7:e1:dc:f3:a2:f9:07:c3:54:
bc:9c:4e:42:e0:c7:cd:58:36:5a:f0:44:a3:03:63:
28:e6:2c:aa:02:33:81:60:06:72:c5:b1:72:c7:23:
39:7b:2d:b2:36:12:07:02:0e:31:88:db:9b:a4:49:
98:3b:90:89:d6:03:d8:74:f5:7c:e1:62:97:8d:2a:
3b:1e:a5:b8:82:35:bc:58:48:77:23:7e:ac:5b:c3:
a0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A7:4A:0A:A5:4E:CC:BD:E4:F9:C6:71:44:BC:0D:09:50:AC:09:C7
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:87:47:a9:da:a2:33:97:63:69:67:ba:96:e7:70:fc:e8:2f:
da:4a:fe:07:79:e8:a5:4e:7f:7e:ef:7a:54:46:84:cd:9a:d8:
b7:c5:fc:67:74:68:71:87:d4:28:8f:14:f1:d3:79:c9:4e:19:
0d:75:c0:3f:27:e4:58:45:cd:41:e9:d1:1c:49:a8:95:71:af:
c0:87:7d:01:96:9f:ca:42:7c:f5:77:62:1e:7c:b2:d8:48:9f:
25:4e:e4:76:34:9b:c4:91:60:82:ff:d4:36:05:6c:af:7f:4f:
7a:9f:e6:64:c6:a7:26:1d:a0:c3:49:68:dd:80:d3:31:8e:4e:
36:33:e8:64:aa:ce:cb:88:00:a9:90:83:c3:ad:13:f9:db:e9:
d6:c0:9c:0a:c5:78:bd:09:0e:86:a0:40:86:17:73:06:17:b3:
08:6d:ec:6e:c0:ce:1d:8c:7c:34:d3:c6:39:ab:3e:36:d7:d2:
7c:5c:63:1c:4a:04:fe:11:47:1b:e3:8f:af:72:d1:09:6a:b0:
8d:fd:62:7e:2f:72:65:18:19:72:6b:26:f3:62:85:3c:15:c5:
7d:55:77:3d:3f:ee:ed:c2:e4:0d:32:03:b7:49:ac:62:5d:7d:
74:0c:07:65:d1:fa:5c:3d:cf:42:98:37:a1:d8:76:d8:87:e3:
de:81:63:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzgavXvOeEvqmKe9WQvSwQTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwMzEyMDUwMDMxWhcNMjYwMzEzMDUwMDMxWjAzMTEwLwYDVQQD
EygzZmE3NGEwYWE1NGVjY2JkZTRmOWM2NzE0NGJjMGQwOTUwYWMwOWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApydTtIo7RdxubMEwA9RoFlzU/k5B
GETI4GTuzlDEelz+7jElwKC8rQIiAA/YeK3GplN9/cHauP3uW1mElEX5SYdXujVZ
+gpgUXNJSggeW4zKoIZWqxWr5a2DUI+JhJwQhHng8ZiZQU2KQwMMcOJJQem+sZkI
9qUJ14xyLVJVBaMHosSOvEmbKKl0tFu7chGKeqzaZnHNp/FP88ZC7eU0VlsHmAD8
Jyw4CEOn4dzzovkHw1S8nE5C4MfNWDZa8ESjA2Mo5iyqAjOBYAZyxbFyxyM5ey2y
NhIHAg4xiNubpEmYO5CJ1gPYdPV84WKXjSo7HqW4gjW8WEh3I36sW8OgOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+nSgqlTsy95PnGcUS8DQlQrAnHMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlIdHqdqi
M5djaWe6ludw/Ogv2kr+B3nopU5/fu96VEaEzZrYt8X8Z3RocYfUKI8U8dN5yU4Z
DXXAPyfkWEXNQenRHEmolXGvwId9AZafykJ89XdiHnyy2EifJU7kdjSbxJFggv/U
NgVsr39Pep/mZManJh2gw0lo3YDTMY5ONjPoZKrOy4gAqZCDw60T+dvp1sCcCsV4
vQkOhqBAhhdzBhezCG3sbsDOHYx8NNPGOas+NtfSfFxjHEoE/hFHG+OPr3LRCWqw
jf1ifi9yZRgZcmsm82KFPBXFfVV3PT/u7cLkDTIDt0msYl19dAwHZdH6XD3PQpg3
odh22Ifj3oFjGg==
-----END CERTIFICATE-----
Generated at Thu Mar 12 12:46:38 2026 by rpki-client