Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: bFmhaUkdYz53tU1x6+1E7il4cEdA8p44/9udWU60QOY=
Subject key identifier: 40:AC:45:D6:7D:EC:CD:16:C0:7D:19:BE:4F:40:8D:AA:6D:87:10:9A
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019F0C9AE91A16E71846E53D24D93C4AD806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1915
Signing time: Sun 28 Jun 2026 05:01:46 +0000
Manifest this update: Sun 28 Jun 2026 05:01:46 +0000
Manifest next update: Mon 29 Jun 2026 05:01:46 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: X06QgaH3SjDZmJyCL1NS1YqyPF2c08LP6v5u+J1n4P4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 03:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0c:9a:e9:1a:16:e7:18:46:e5:3d:24:d9:3c:4a:d8:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jun 28 05:01:46 2026 GMT
Not After : Jun 29 05:01:46 2026 GMT
Subject: CN=40ac45d67deccd16c07d19be4f408daa6d87109a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:32:7f:06:18:6b:04:95:05:01:80:49:d3:7a:
b0:62:01:41:71:8b:5d:c8:74:0e:dc:0a:aa:74:8f:
40:d1:4b:bc:dd:65:31:9a:31:68:18:53:05:c9:e9:
b1:ba:1f:73:a6:e7:da:9a:48:fb:77:4b:6b:ee:65:
05:a9:8d:3d:15:00:d6:34:06:00:15:5e:9e:e3:e3:
dc:3e:8e:17:56:bc:8a:fd:5a:77:d3:4d:c7:79:99:
cb:ab:e6:37:62:43:7d:46:cb:a9:08:d6:db:89:b3:
1a:e4:27:b7:e0:95:d1:4b:1d:d2:c7:be:e8:f8:6a:
ed:f2:b4:f2:53:bd:6f:b8:68:f6:05:8e:19:79:e8:
7e:56:11:24:46:f3:64:91:52:3e:6c:c8:4b:c0:e2:
39:a4:07:a3:54:55:51:4f:10:1c:66:20:f7:ec:26:
56:eb:9d:ef:7f:d2:1e:e5:c4:5b:59:1d:02:68:27:
88:7e:f7:cb:9d:7b:4a:f8:5d:38:3f:19:1b:79:34:
37:c6:a1:e7:1b:19:b9:6c:7c:1e:c8:2d:20:22:45:
74:d2:e3:dc:76:91:33:81:d2:51:23:0c:3d:97:a3:
71:f8:35:15:6b:b2:f7:a2:32:83:d7:05:40:c3:f9:
52:2e:74:f8:5d:5b:c7:b3:75:8f:7f:6a:44:0d:a7:
5e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AC:45:D6:7D:EC:CD:16:C0:7D:19:BE:4F:40:8D:AA:6D:87:10:9A
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:95:9d:d3:25:fb:f9:b5:d9:d1:f7:45:00:35:65:3b:c9:e2:
7c:ef:38:45:1b:38:1f:7a:db:b2:bb:96:77:cd:6c:9a:97:ef:
e6:eb:a0:7a:e7:48:05:dd:55:bd:36:8c:03:15:36:59:89:19:
0a:fe:6b:57:a6:69:2e:5b:b7:33:3e:cd:74:f5:9c:0a:84:a7:
5c:f2:55:6f:4a:06:21:5f:0f:ae:4a:98:71:75:23:4b:9c:33:
e4:2e:3f:8c:dd:c4:7b:70:df:19:34:93:2a:ea:8f:38:b1:13:
44:e8:9f:43:21:94:d6:09:cc:0f:be:e9:14:a5:12:fd:dc:6e:
8c:3e:78:07:2a:28:50:de:38:30:5e:69:ef:c4:64:9c:1e:aa:
e4:fb:dd:96:e8:6d:51:59:be:65:99:1c:21:cb:74:0f:95:b4:
e9:7b:ab:a9:ef:bf:ed:f7:44:85:d7:71:31:ba:b9:b1:89:18:
66:d4:09:e1:04:8f:3b:0c:25:ce:b4:45:e5:71:fb:44:17:c8:
6a:b5:7c:12:43:ea:f4:12:12:f7:9b:47:be:6d:c6:f5:68:bf:
9b:16:b6:b0:d5:f4:23:c5:03:0b:18:f7:31:57:cf:19:3e:3c:
c3:f9:26:e3:9a:4e:fb:57:6b:9e:65:71:f1:65:26:27:fd:62:
01:18:4a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 11:27:38 2026 by rpki-client