Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: ifg0RaSHO13b/lRUSuPHNiWuCpuzm1ZmFvgZJQEZj2c=
Subject key identifier: B0:F4:5F:7E:B4:78:29:5F:8B:29:BB:01:6E:93:E7:99:4C:C8:92:84
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019DBC931C9C36F8C07CA076FC9E2121BE3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1867
Signing time: Thu 23 Apr 2026 23:00:50 +0000
Manifest this update: Thu 23 Apr 2026 23:00:50 +0000
Manifest next update: Fri 24 Apr 2026 23:00:50 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 4CNZ68TmD3c9B83XeLZHdPXKcyOly7bmjO9WCC8geQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Apr 2026 18:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:bc:93:1c:9c:36:f8:c0:7c:a0:76:fc:9e:21:21:be:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 23 23:00:50 2026 GMT
Not After : Apr 24 23:00:50 2026 GMT
Subject: CN=b0f45f7eb478295f8b29bb016e93e7994cc89284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:17:bd:b5:43:c7:74:e5:ea:2f:d2:1b:01:44:
f4:db:d6:0b:f1:12:70:f9:58:bf:7a:e4:35:b6:64:
72:2f:fb:4a:6a:45:93:d5:66:26:8e:43:9a:4f:17:
2f:39:a9:3c:b9:da:e3:44:75:2c:8d:88:7b:c0:3b:
7d:fe:8f:e7:27:58:92:e7:fb:f4:b6:66:75:e6:cc:
11:78:86:6c:6d:51:66:58:27:00:56:34:96:ca:76:
e9:9a:a6:98:ff:f7:f7:b6:8a:bb:4c:a8:c4:8c:dc:
70:9e:4c:0e:f5:14:75:ee:c9:e3:83:5a:b0:da:f7:
13:0c:b4:8a:4d:46:eb:62:06:65:79:19:79:9f:8c:
f8:6c:b4:84:e3:6b:c3:41:24:44:00:50:d0:2a:33:
50:49:13:8f:4e:78:c9:39:ea:fe:c6:fe:90:c1:c3:
81:3a:43:f3:2a:a0:24:e4:8a:09:e2:7a:73:c6:6f:
98:e7:8a:22:5a:c0:4a:81:c2:95:5e:66:c8:6f:77:
c4:e7:b9:e8:0c:b5:e6:ba:20:c1:ce:38:36:4c:11:
53:37:00:92:fd:ac:f3:95:57:07:c4:e5:9c:67:0f:
92:bd:a5:b7:1a:e9:af:97:da:d6:4c:5c:cd:03:2a:
4c:15:3e:d5:57:5d:e6:59:99:95:8f:50:64:ca:a5:
1a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F4:5F:7E:B4:78:29:5F:8B:29:BB:01:6E:93:E7:99:4C:C8:92:84
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:d9:cd:4b:f7:18:94:e4:b5:6b:be:32:25:f9:0c:61:f5:84:
ba:fb:c9:3b:f2:e9:7a:b2:4a:21:aa:9e:d3:f1:90:c4:12:01:
7f:99:c6:ea:b2:1a:4f:4b:b0:f3:d0:d0:6b:7b:0e:e4:ba:8c:
79:61:ac:13:80:88:24:2d:57:b4:aa:6d:9a:c6:25:ef:23:40:
67:c2:eb:80:dd:3a:24:bc:7f:0a:05:a5:d0:b4:34:a4:60:a0:
8a:f4:43:cd:a3:5d:07:6f:34:29:3d:31:59:53:43:55:4a:0f:
14:14:5b:53:74:ee:c4:0d:77:48:1c:94:a4:09:47:07:69:25:
7d:8c:3b:03:07:93:e6:bc:1f:e7:5f:db:f7:e2:5b:48:72:fa:
68:e0:93:04:61:e0:56:a9:0d:71:fc:18:91:87:9d:ef:36:f6:
04:67:15:8a:cb:e0:f0:d4:b1:d4:f3:b3:de:59:f2:de:6b:e5:
be:fa:ff:79:59:a9:e6:13:ea:d9:34:59:dc:a7:f7:11:cf:13:
67:ff:ed:35:f6:fb:f8:c9:1d:3a:79:d9:36:fe:51:bb:66:45:
d6:2b:cf:08:24:1b:d1:4b:eb:f0:b3:b2:c1:b8:3c:6b:da:f6:
60:d2:78:60:dd:3f:83:8c:b9:00:72:91:9a:b4:1c:81:0a:26:
3d:40:64:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 24 03:41:30 2026 by rpki-client