Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 2GXJoKbOTAx31B6EFRl98cWZr3ZlLy8ehSmVnpY5+3c=
Subject key identifier: DD:84:C8:5B:E6:87:12:BA:08:88:45:AC:C7:4E:CC:D6:8B:A9:F9:42
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019E0F9DE9E6C86C17C9208E11241BEC4E67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1892
Signing time: Sun 10 May 2026 02:01:07 +0000
Manifest this update: Sun 10 May 2026 02:01:07 +0000
Manifest next update: Mon 11 May 2026 02:01:07 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: CD4rVpmKRa95KITKxgllwWIp6GLWEonGFkaIRl2DPXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 May 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0f:9d:e9:e6:c8:6c:17:c9:20:8e:11:24:1b:ec:4e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: May 10 02:01:07 2026 GMT
Not After : May 11 02:01:07 2026 GMT
Subject: CN=dd84c85be68712ba088845acc74eccd68ba9f942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b6:f8:67:38:88:31:d6:d4:6b:22:44:70:f2:
24:44:45:7b:f4:38:ee:23:f0:b9:5d:6c:c7:96:51:
60:9a:2a:e6:95:cc:18:56:63:71:85:57:52:4e:96:
a7:93:25:f7:3a:e6:f1:9c:5e:24:b8:c9:22:57:69:
f8:5b:7a:ae:9b:86:ba:72:a6:05:50:02:00:f0:cd:
08:84:f5:53:5c:1a:c0:bf:91:78:03:23:d0:b7:51:
2e:2b:c9:4f:6e:ad:21:75:cd:15:e8:55:e2:89:5e:
bd:81:3a:c0:ad:34:4b:7e:ba:4f:73:91:c1:b5:78:
15:73:24:8b:11:91:f6:74:5a:1e:cb:75:64:90:1f:
3d:f6:16:a3:4f:45:8b:be:a2:66:3d:2c:76:ca:d5:
f2:2b:25:8d:9c:f4:1c:24:93:76:95:2c:71:80:74:
b6:3e:35:16:ef:d8:62:d3:54:a4:02:b4:20:6c:9d:
db:1c:85:d7:b5:b2:00:48:52:b8:27:dd:d7:07:08:
a2:88:f6:f8:dd:1f:b5:39:db:a7:97:b1:88:89:53:
78:c9:97:eb:2f:27:e7:4b:e5:87:72:1c:7d:10:00:
21:68:61:ce:c3:de:4d:80:99:da:72:75:0d:4c:36:
c6:3d:8e:1d:d8:bd:2c:d1:2a:88:53:71:fa:ef:7f:
54:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:84:C8:5B:E6:87:12:BA:08:88:45:AC:C7:4E:CC:D6:8B:A9:F9:42
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:08:bb:4f:30:ae:3f:cc:ed:59:89:58:34:6d:00:2c:37:ac:
3c:21:1c:6e:48:2b:4b:3c:19:8c:94:d9:e3:be:24:86:6e:1d:
f1:3b:31:1e:54:20:a5:75:cd:ef:5d:fa:17:0b:6c:34:5b:a3:
0f:e8:93:7b:0c:f5:96:89:1b:0e:5b:91:d4:da:b1:59:85:c4:
f9:db:a6:b9:ea:0f:a9:fe:ce:55:e1:56:62:f1:50:bb:8e:a3:
40:c6:0a:fe:17:24:23:fb:cb:e4:81:fa:27:14:ba:c8:b0:d9:
26:21:5c:9d:5b:19:92:0a:18:e6:c7:8a:f3:04:84:bd:bf:06:
5b:e8:3a:32:f1:44:32:18:10:b8:49:be:37:56:58:24:44:0d:
45:07:4f:2c:51:25:94:51:40:c3:c7:a4:ac:43:ea:c5:58:fc:
9a:f7:74:f0:16:eb:00:c8:32:a6:10:cc:64:58:48:43:ed:4c:
db:8f:5b:21:f0:df:60:c3:ec:d5:95:74:ec:90:20:4d:bd:83:
76:f1:31:b0:c8:34:43:3e:ed:65:58:08:82:46:14:ad:d1:57:
ab:d9:a3:86:34:c0:44:db:0f:ae:1d:cf:61:e2:db:78:64:4d:
8f:43:70:0b:ac:c4:0a:c6:21:67:7c:57:49:27:97:46:d0:2d:
55:8e:b0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 10 06:43:07 2026 by rpki-client