Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 3dpiTWMXb6J/kdOROkf/DauJqGa935Ujz5QcS/8CMo0=
Subject key identifier: DD:A6:A6:DC:41:D6:40:96:CF:6E:1C:2B:CD:84:33:C4:1B:79:5F:72
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019CA67C2BB2157673994466F0650B1DAD93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 17D7
Signing time: Sat 28 Feb 2026 23:01:21 +0000
Manifest this update: Sat 28 Feb 2026 23:01:21 +0000
Manifest next update: Sun 01 Mar 2026 23:01:21 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: s8W16Ix6+B3UC6mUdeOdLN8sX1vtNd5xT/NaglTHgmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 01 Mar 2026 23:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a6:7c:2b:b2:15:76:73:99:44:66:f0:65:0b:1d:ad:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Feb 28 23:01:21 2026 GMT
Not After : Mar 1 23:01:21 2026 GMT
Subject: CN=dda6a6dc41d64096cf6e1c2bcd8433c41b795f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d8:7f:a7:e5:dd:df:59:dc:b6:8c:1d:5e:dc:
e3:cf:34:a5:7f:e1:a9:2f:a1:fe:9d:17:dd:c1:71:
0b:d2:e6:40:49:d4:ed:06:0e:71:1b:6a:82:44:55:
40:0f:46:3f:4c:7f:8d:e4:27:22:d8:59:f8:cf:65:
ff:93:7b:b2:af:87:35:50:b6:ac:c3:4a:5d:9f:83:
88:b7:d0:82:07:13:b2:75:e4:3d:72:d4:16:85:62:
40:25:c5:5f:4b:0d:e7:70:9b:74:03:52:15:d3:d2:
47:fa:de:b8:5f:6a:3e:01:c1:4e:5b:93:76:1e:f6:
17:a3:cf:a6:2d:3e:92:3c:60:3e:18:72:ed:a8:cd:
94:cf:28:60:f7:35:32:0d:bc:f7:ce:76:02:23:fc:
68:2f:b6:e1:8b:cd:34:c8:73:eb:ad:a9:9b:12:38:
7c:c4:a8:1f:bc:58:55:0a:b8:ab:8d:34:c5:d8:f9:
f8:ca:dd:58:1d:12:4b:a0:7e:26:e8:96:be:3b:f7:
95:ac:cf:21:88:28:f8:af:84:35:30:fc:6a:37:d6:
9e:3d:c4:7a:4c:e3:aa:b7:a4:b3:e8:1f:8a:00:cc:
ec:52:2f:e6:49:8b:8f:0d:6e:ae:5a:db:2e:71:4e:
92:a6:5a:8e:49:6d:d9:45:dd:4a:08:3b:70:55:34:
95:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A6:A6:DC:41:D6:40:96:CF:6E:1C:2B:CD:84:33:C4:1B:79:5F:72
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:44:11:0b:1b:51:d1:ee:d9:df:6d:dc:05:50:07:30:08:43:
fd:32:96:79:7b:86:94:40:25:55:64:35:c1:fb:7c:a2:cc:10:
c5:45:02:79:0e:f8:57:81:a4:02:f8:0c:bd:73:d1:24:ae:ba:
cb:fb:8e:be:01:d4:a8:73:0d:2b:4a:fe:0a:e1:b7:1f:2c:7e:
67:04:d6:c0:e9:7b:18:7c:51:2b:d1:c9:d9:2f:87:8e:81:fd:
23:31:7d:8e:a9:9e:50:41:58:70:e1:92:7e:01:78:cc:7f:ba:
d3:31:a2:8c:b1:87:3d:8a:f6:b8:f2:bd:c7:52:5d:e2:d2:0b:
0f:6b:a1:a0:b8:5b:00:c4:bb:f1:f4:d3:12:d1:05:7c:05:f3:
c4:0f:40:f6:76:98:35:bf:b1:a5:ca:d3:4c:a9:8f:2d:98:b1:
24:b9:ac:65:70:85:78:2c:d1:bb:77:b9:e9:5b:3b:9b:4f:10:
fa:fd:56:5b:ee:19:28:0f:7b:f3:61:3f:92:ff:3f:cd:04:2a:
61:a1:1d:d9:a4:ee:6b:91:b6:2a:3b:53:f8:5e:39:77:16:a8:
62:3c:31:33:ec:a9:01:a5:54:cf:40:35:2c:0a:73:75:08:73:
c1:70:0a:7e:68:ac:0f:11:d0:fc:a1:03:4c:a0:c0:f2:97:24:
93:4c:ce:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 09:53:51 2026 by rpki-client