Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 6Nb+bc+T7/mFqu7rqm9BgniJRjEH77JBlC295JunL5A=
Subject key identifier: 36:24:11:E3:73:ED:21:0F:60:70:E1:FD:44:43:A7:D9:E7:6B:B2:C6
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019D95F372E57C1330A53535883A9C3CEE9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1853
Signing time: Thu 16 Apr 2026 11:00:52 +0000
Manifest this update: Thu 16 Apr 2026 11:00:52 +0000
Manifest next update: Fri 17 Apr 2026 11:00:52 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 8v66EE/3pjQiFsYUJrqCz5YD2UHC/F7p1kxF3nevxcY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 11:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:95:f3:72:e5:7c:13:30:a5:35:35:88:3a:9c:3c:ee:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 16 11:00:52 2026 GMT
Not After : Apr 17 11:00:52 2026 GMT
Subject: CN=362411e373ed210f6070e1fd4443a7d9e76bb2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4c:af:a5:ee:53:8a:3b:a7:c5:2e:92:b3:d4:
79:00:d0:a9:12:e5:ad:a0:48:dd:da:12:52:76:2b:
1f:5c:03:f0:47:8e:72:90:c8:9b:ab:e8:07:23:c2:
76:f2:15:c7:5b:0d:6a:bf:0c:8b:25:64:1d:f7:93:
c2:dd:fd:e8:10:df:b5:88:9a:d1:de:4a:91:bd:8f:
cc:90:82:77:dc:e0:48:e5:bd:c0:cf:89:5f:2c:43:
06:b3:1d:e7:b2:02:ab:fd:f9:18:41:35:d1:b2:b7:
37:22:a3:b3:b0:35:96:64:dc:ff:fc:fe:36:59:fa:
ba:97:7a:73:28:3a:71:ea:0c:3a:47:fe:70:bb:2b:
4d:fa:95:2c:fd:03:e8:c4:dd:e1:17:9c:c4:8c:f9:
b6:cf:87:46:a5:6e:bc:d0:66:da:cb:d3:01:c7:2e:
a1:ae:67:9b:bd:b6:4c:be:a2:bb:0f:da:01:52:ee:
76:b1:c1:32:ce:ef:b5:1b:b8:b3:1e:92:68:ac:4d:
9c:9d:c1:69:4c:2b:c6:ea:30:a6:f9:a0:1c:f5:22:
0c:03:fa:08:59:f2:ca:29:84:99:77:89:d8:f1:b1:
32:44:8c:84:b0:73:04:a5:66:5f:9f:29:1e:33:62:
4e:21:19:bc:c1:86:44:95:20:23:a7:a1:e2:40:d0:
66:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:24:11:E3:73:ED:21:0F:60:70:E1:FD:44:43:A7:D9:E7:6B:B2:C6
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e4:85:db:f0:97:32:cd:a2:b3:d2:09:24:23:9e:95:2e:1a:
cd:d2:6c:ff:17:3a:7c:36:fa:55:76:09:f2:36:39:d6:13:80:
e7:c7:d6:df:9e:33:76:be:a3:03:dd:d2:a8:08:5a:82:35:ea:
31:54:39:ee:88:a6:e6:ae:5f:57:9b:9c:9d:fb:62:4b:9f:02:
91:23:f2:7a:8a:92:a6:4d:d1:de:9b:56:d0:32:2e:86:7c:e0:
03:2c:6a:b1:b3:f5:b1:15:77:5a:f5:5e:c8:0d:3c:de:9e:04:
6d:f5:6a:c0:04:bd:9a:64:b2:4a:53:da:37:35:81:a1:31:d0:
37:f1:85:a2:e0:5c:70:af:e9:de:21:3f:1e:25:d0:a0:e0:e9:
8a:86:6b:6d:07:06:6f:a1:d6:03:e9:c0:81:8b:c4:8c:f6:83:
88:43:d5:87:83:00:6e:96:9c:2e:24:65:a0:68:40:c9:6b:fc:
d3:a1:72:cc:3f:33:de:bd:b0:e3:55:d4:06:ec:e4:ec:64:d7:
84:8d:6f:5d:cc:40:f8:88:23:af:57:f4:e4:e3:80:ff:70:07:
d2:0d:59:30:23:21:81:a3:b8:9e:79:5c:a7:56:2b:4a:d8:f7:
5f:8b:c8:72:74:12:ba:d0:d8:24:f0:25:4f:b2:10:b2:41:b6:
e0:1c:90:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 21:51:22 2026 by rpki-client