
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: zgbb03Eg/JKxzcCnniJG84q/OAb81qdvKZnscdEvr00=
Subject key identifier: 56:66:89:5B:5F:3E:ED:82:B7:33:DA:9D:85:18:FE:CE:A5:94:2D:6E
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019F540E803ED21B015D3D48C6EC35F154BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 193A
Signing time: Sun 12 Jul 2026 02:01:04 +0000
Manifest this update: Sun 12 Jul 2026 02:01:04 +0000
Manifest next update: Mon 13 Jul 2026 02:01:04 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: RxMCxqFvS7dV69pGQXliYuVmo6EYkPAB6RmLjJ1B8rQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 Jul 2026 02:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:54:0e:80:3e:d2:1b:01:5d:3d:48:c6:ec:35:f1:54:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jul 12 02:01:04 2026 GMT
Not After : Jul 13 02:01:04 2026 GMT
Subject: CN=5666895b5f3eed82b733da9d8518fecea5942d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ec:ff:b5:d8:24:f7:1f:a9:ae:21:c9:b6:5c:
0a:89:8b:ae:3f:5e:4b:61:89:71:77:89:ba:a2:b4:
ad:50:83:8f:ed:bb:b8:b0:f0:28:f9:9c:06:fc:75:
ee:8c:5b:83:f5:52:63:30:9b:77:21:c2:67:b0:dc:
bc:34:8d:1f:3c:27:dd:ee:f5:fa:83:05:d7:54:eb:
99:36:a4:9a:02:05:60:dd:0c:e2:27:81:70:0e:82:
45:96:2a:6e:cd:a2:5a:2c:ae:62:53:6f:f2:50:f7:
af:be:04:da:6e:d7:d9:49:cb:67:6e:69:8b:c8:04:
97:8f:b2:53:85:34:1f:db:c3:fa:c6:82:43:03:46:
76:85:b4:93:8f:f0:4f:b6:fc:07:3e:09:58:bf:30:
f2:11:8f:0a:7f:34:36:ad:74:27:ff:eb:bd:97:13:
45:2e:1d:6c:17:a2:dd:de:f5:6c:6e:15:ef:92:7a:
38:fc:af:a5:a3:08:67:91:06:74:33:14:d9:67:e2:
34:e3:32:c9:dd:de:9d:40:69:47:c9:d6:f2:61:fc:
be:da:d0:31:75:c1:02:ec:28:b7:ac:b6:82:47:99:
9d:24:cb:b5:31:14:26:f7:f9:2d:08:7b:4c:3e:44:
07:1a:53:74:0c:c8:e6:b9:60:ae:09:45:ff:e2:bb:
61:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:66:89:5B:5F:3E:ED:82:B7:33:DA:9D:85:18:FE:CE:A5:94:2D:6E
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:fb:e9:09:b6:ba:0c:b4:f9:c5:9d:ec:d8:87:33:96:f4:e5:
46:92:70:77:1c:a5:0f:e9:70:d9:ca:b5:2d:52:89:ca:b5:b5:
98:de:a7:ec:b5:2a:ba:19:cd:04:16:69:1c:e6:38:db:3a:03:
dd:1d:37:c8:cd:d6:2b:16:59:b3:cc:f9:90:4a:6f:54:95:d7:
65:42:31:9d:03:9e:91:38:3f:ee:6f:d4:36:bf:db:2d:b2:3f:
29:6f:cb:d6:31:d9:8c:42:46:7f:a4:e6:18:e0:6e:23:82:6e:
26:82:0c:b5:76:ac:31:8b:cd:a9:b8:eb:fb:c6:d8:1c:ae:03:
32:75:fc:e7:16:dd:95:68:4c:2a:eb:ea:24:9e:6d:7a:66:c8:
72:db:a6:80:53:77:a7:32:80:0e:d7:dd:c2:2f:5d:50:22:dc:
30:4c:29:b1:8e:94:98:87:2d:fb:dc:72:fe:5d:27:59:0b:f8:
ab:3f:41:bc:60:83:d3:bd:a5:bc:b6:7e:13:04:63:07:41:d7:
4d:6c:32:9c:46:a7:70:c0:be:69:ca:e9:a2:9f:ee:8e:ec:60:
43:b7:9d:2c:c4:0d:97:48:c1:b8:f4:85:36:98:9a:1d:87:cd:
ad:2f:99:32:a8:6e:9d:4e:08:8c:a5:46:f5:20:5e:3a:59:01:
15:b2:d7:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 12:04:35 2026 by rpki-client