Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: NkjGcdn/4C++tsvIpp3oJWvwtpnwzW79Kr7cI7wjGyY=
Subject key identifier: DF:D4:F2:1D:E1:19:97:25:06:1C:C9:F1:8C:62:FF:45:74:F1:00:38
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019E7BC3260D0E0C5C79393C9CB6F85F9EEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 18CA
Signing time: Sun 31 May 2026 02:00:47 +0000
Manifest this update: Sun 31 May 2026 02:00:47 +0000
Manifest next update: Mon 01 Jun 2026 02:00:47 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: Rrms3JyzOIqZOpWTIjg5kjtb72ZizfTecOvYbUEaPto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 02:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7b:c3:26:0d:0e:0c:5c:79:39:3c:9c:b6:f8:5f:9e:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: May 31 02:00:47 2026 GMT
Not After : Jun 1 02:00:47 2026 GMT
Subject: CN=dfd4f21de1199725061cc9f18c62ff4574f10038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:52:b1:7d:ce:fb:3b:1b:d0:c1:05:2d:14:
f6:34:d3:c3:3e:77:6c:36:34:b1:d6:96:05:11:50:
05:38:0e:98:0e:d8:9f:af:e4:cd:b7:c4:95:75:ac:
d4:43:9a:6f:d8:70:8d:a5:68:2f:1b:ae:3a:2e:34:
c6:18:ba:ff:5d:12:65:b2:86:af:41:76:56:51:e6:
79:65:6c:ac:a2:88:48:27:e7:98:20:f7:af:25:d4:
a5:65:3f:a2:20:20:d8:6c:91:2a:e2:97:ef:c9:0a:
98:b2:f2:65:d9:8a:43:62:b7:ad:79:e0:db:cc:36:
23:6b:7a:5a:fb:dc:0d:c8:1b:75:9c:06:e2:1c:65:
8f:43:e7:90:d6:0d:e4:ef:05:35:9b:c5:ab:c5:91:
ee:81:af:a3:d2:4c:86:c6:bb:9f:8c:f3:63:5b:78:
48:9c:b6:0e:76:18:fa:5a:4d:f3:38:10:b2:22:cf:
26:d3:93:51:5b:03:04:97:b1:53:6c:31:12:09:07:
66:5c:10:9e:7f:35:cc:8b:1e:bd:bc:a4:da:25:32:
9a:9a:9b:a5:2c:a5:12:2d:6a:0e:51:3f:b8:a8:fc:
56:7d:db:f4:42:42:c0:44:6d:1a:2e:55:0e:7d:90:
4e:b9:54:7d:2a:df:1f:c9:b5:44:9a:5b:9b:a2:9b:
0d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D4:F2:1D:E1:19:97:25:06:1C:C9:F1:8C:62:FF:45:74:F1:00:38
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:a1:06:f0:e4:a7:23:d4:4f:7a:ee:ae:50:2f:33:0d:cc:03:
ec:af:60:24:22:fa:26:9a:04:9f:e1:b5:8e:87:c6:f4:ed:ab:
02:0e:15:45:f5:db:16:5d:e0:ac:31:db:a7:ce:26:2e:1b:33:
f6:c8:7e:ad:ed:72:92:d7:26:df:81:57:81:50:7a:42:e5:b2:
81:c4:e3:a5:dd:02:01:47:04:f5:1c:11:7c:2e:be:f9:12:6b:
fc:d4:f5:2a:a1:d9:ac:d3:a9:19:f9:fd:57:18:2b:73:58:72:
1f:94:4e:56:3c:88:24:00:ef:06:75:05:90:92:60:0f:04:23:
78:5e:26:6a:25:f4:48:18:40:ec:0b:25:35:01:7b:70:4e:32:
17:d4:89:ea:70:75:cc:73:10:06:a2:39:32:be:62:bd:72:54:
32:c1:a1:14:63:de:b9:5c:e9:8b:1f:cc:07:b0:f4:e4:ec:d8:
09:78:9b:a1:6f:72:c3:f8:15:cb:f9:a6:5d:86:cc:c3:25:d2:
24:31:3c:73:70:00:59:a1:fc:c7:df:62:2a:12:69:68:3b:1a:
87:ec:a6:a4:69:62:d3:d2:82:93:a1:fe:e4:06:fd:00:4d:7a:
dc:af:17:17:fc:b2:d9:ec:47:8f:65:d2:b4:1e:3b:35:98:3c:
4d:67:2c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 31 07:38:13 2026 by rpki-client