Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 22imET1cD2k8EEAgPl6zIQoBAmr1K06OvgIQoVv4C9k=
Subject key identifier: 6F:62:08:93:D0:F0:A0:9A:6E:40:06:9C:88:7D:76:DD:65:88:8C:AD
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019CAE3575F9B35EA4A166D429791905270B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 17DB
Signing time: Mon 02 Mar 2026 11:01:05 +0000
Manifest this update: Mon 02 Mar 2026 11:01:05 +0000
Manifest next update: Tue 03 Mar 2026 11:01:05 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: k+rzH6qElm7hO/4uuuHWZGcGKsqOC4rqoPZslEIv28A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:75:f9:b3:5e:a4:a1:66:d4:29:79:19:05:27:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Mar 2 11:01:05 2026 GMT
Not After : Mar 3 11:01:05 2026 GMT
Subject: CN=6f620893d0f0a09a6e40069c887d76dd65888cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:1f:95:ff:11:61:e3:d4:09:35:dd:14:72:
56:df:d8:a8:c5:f7:a5:13:d0:f9:61:5f:11:60:44:
a4:78:d8:7a:37:de:39:4d:ad:59:ef:c2:76:f3:2b:
a7:d8:ed:0d:f7:aa:25:fd:8f:8d:b9:c8:cb:b1:da:
ae:10:75:73:ee:fa:b0:92:93:a0:00:29:87:ff:f6:
1c:08:ec:06:9b:1c:78:e5:5f:b4:40:02:2d:49:49:
74:b0:a2:a9:b2:f4:49:2b:4e:54:4c:79:a1:b3:80:
63:d2:b0:f1:52:2e:1c:a8:e6:b6:b9:1e:35:63:08:
a4:49:83:cb:57:14:c0:72:d8:e0:f9:8c:e1:b4:f9:
d5:07:3e:fa:8c:3d:d7:2c:f6:c3:d5:ed:84:b7:11:
9f:74:3d:4b:a6:cb:66:d0:16:0c:be:aa:2c:90:89:
d5:2b:04:b0:f2:bc:a6:c3:79:5d:00:34:27:ff:ab:
6c:e0:0c:93:29:db:50:c7:28:8c:b2:1a:57:82:19:
6e:46:76:9f:87:0f:fc:6c:d9:26:bb:d6:bc:95:a2:
54:15:13:e4:d6:76:14:ff:3f:9a:5b:8e:e8:26:60:
25:ba:d2:b1:47:ff:57:9a:db:7e:35:73:b2:94:5a:
c1:ca:32:1f:37:0c:18:29:71:10:79:17:03:b0:f9:
88:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:62:08:93:D0:F0:A0:9A:6E:40:06:9C:88:7D:76:DD:65:88:8C:AD
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7d:95:03:19:d1:04:b0:d4:4f:d6:33:94:04:d7:00:02:7b:
19:ea:26:23:ca:92:cf:0f:77:ab:f2:9d:5c:28:e3:ac:d6:31:
82:e7:75:95:e8:56:ca:d7:bf:ce:22:a7:f5:e4:bb:89:a2:a6:
36:82:71:47:7c:e9:89:a8:1d:f2:d2:62:ad:3e:02:6a:4e:e0:
5d:8a:aa:69:2a:e7:e1:7d:5a:6d:25:07:1a:8c:ed:19:0c:c1:
62:ea:91:b9:c5:92:e5:f5:1a:c3:81:0c:1c:b9:16:3b:ee:05:
2a:63:5b:42:d1:e4:ed:a4:48:7b:a1:85:b8:fa:c6:76:20:ac:
83:bc:d4:ce:35:a8:8f:7c:3c:52:c6:6c:58:0b:f9:55:d9:6a:
0c:6b:6a:63:e5:ab:72:95:d2:2f:8f:25:00:f9:23:56:9e:a3:
e4:25:c3:49:ed:ee:d1:4d:3f:21:2f:c6:f8:e6:c8:7b:df:49:
a8:bc:fd:b9:3a:a9:85:df:85:30:8e:01:80:8c:c3:b8:5a:ba:
86:04:0a:f6:5c:ad:e2:eb:28:d9:06:4c:9f:98:08:69:02:9a:
4f:a2:fa:69:bf:f9:b2:b7:da:d1:e3:75:6c:c6:ed:1a:ee:5f:
d6:98:01:3d:70:23:03:83:d5:0e:8a:62:9d:45:c2:3b:da:4e:
6e:5b:e5:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyuNXX5s16koWbUKXkZBScLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwMzAyMTEwMTA1WhcNMjYwMzAzMTEwMTA1WjAzMTEwLwYDVQQD
Eyg2ZjYyMDg5M2QwZjBhMDlhNmU0MDA2OWM4ODdkNzZkZDY1ODg4Y2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDgflf8RYePUCTXdFHJW39ioxfel
E9D5YV8RYESkeNh6N945Ta1Z78J28yun2O0N96ol/Y+NucjLsdquEHVz7vqwkpOg
ACmH//YcCOwGmxx45V+0QAItSUl0sKKpsvRJK05UTHmhs4Bj0rDxUi4cqOa2uR41
YwikSYPLVxTActjg+YzhtPnVBz76jD3XLPbD1e2EtxGfdD1Lpstm0BYMvqoskInV
KwSw8rymw3ldADQn/6ts4AyTKdtQxyiMshpXghluRnafhw/8bNkmu9a8laJUFRPk
1nYU/z+aW47oJmAlutKxR/9Xmtt+NXOylFrByjIfNwwYKXEQeRcDsPmI6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG9iCJPQ8KCabkAGnIh9dt1liIytMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQX2VAxnR
BLDUT9YzlATXAAJ7GeomI8qSzw93q/KdXCjjrNYxgud1lehWyte/ziKn9eS7iaKm
NoJxR3zpiagd8tJirT4Cak7gXYqqaSrn4X1abSUHGoztGQzBYuqRucWS5fUaw4EM
HLkWO+4FKmNbQtHk7aRIe6GFuPrGdiCsg7zUzjWoj3w8UsZsWAv5VdlqDGtqY+Wr
cpXSL48lAPkjVp6j5CXDSe3u0U0/IS/G+ObIe99JqLz9uTqphd+FMI4BgIzDuFq6
hgQK9lyt4uso2QZMn5gIaQKaT6L6ab/5srfa0eN1bMbtGu5f1pgBPXAjA4PVDopi
nUXCO9pOblvldw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:32:36 2026 by rpki-client