Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: dKXn1ttR4zWOLJQSvPMbfsrOib1HTE5b/p9spizbljE=
Subject key identifier: 0A:AE:1F:4F:F9:4A:C5:7B:8C:04:E0:F8:FD:45:F8:71:20:4F:DA:C2
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019DA7548E87A2DEF8C739CC5AF47B5FC678
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 185C
Signing time: Sun 19 Apr 2026 20:00:29 +0000
Manifest this update: Sun 19 Apr 2026 20:00:29 +0000
Manifest next update: Mon 20 Apr 2026 20:00:29 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: wl/Y5QI/QVOQccQ4jZx6D4aIJJMi16WwHseqG4B/vY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 13:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a7:54:8e:87:a2:de:f8:c7:39:cc:5a:f4:7b:5f:c6:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 19 20:00:29 2026 GMT
Not After : Apr 20 20:00:29 2026 GMT
Subject: CN=0aae1f4ff94ac57b8c04e0f8fd45f871204fdac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:5b:a4:75:2a:4d:b3:3c:6c:68:8b:ac:a9:
ac:f7:96:72:f9:74:73:c6:1d:3f:8e:a7:24:1f:e5:
c2:85:a5:c5:21:b0:e2:69:99:bf:d1:27:b9:b6:96:
c0:b0:f0:ad:e3:ef:02:52:f4:a0:cf:71:c1:64:8d:
13:57:f6:37:ab:96:ec:32:e7:f5:ef:ea:d1:3a:79:
f6:d2:08:27:a9:54:f2:74:5f:e1:6e:a0:17:0e:75:
dc:92:b6:47:86:fc:35:b1:20:80:26:ab:c5:08:0b:
1a:50:71:5f:e2:31:b7:91:b9:13:0d:97:16:3a:36:
7b:0e:30:a3:1d:7d:74:da:6b:ec:b1:a7:ab:2a:b6:
cf:79:76:09:ab:c6:f9:89:18:6f:55:5e:56:1b:a5:
e1:d8:2d:85:a4:d0:4a:af:9d:a0:67:ea:4f:05:07:
7f:cf:a4:ef:fd:c5:52:5c:04:f1:e7:96:93:77:0a:
aa:e5:32:cd:12:21:7a:01:34:49:94:f1:63:8e:65:
90:e3:33:cb:15:03:50:d7:a1:8d:0e:e1:80:00:d7:
96:06:9c:44:ab:c7:e0:ed:fd:6d:35:23:3d:4d:f0:
17:fc:a1:bf:eb:0e:0c:58:6e:ff:97:63:2e:b9:e8:
a3:20:66:d6:cf:7d:50:42:a7:bd:7c:ac:0f:c0:e9:
2c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AE:1F:4F:F9:4A:C5:7B:8C:04:E0:F8:FD:45:F8:71:20:4F:DA:C2
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:83:28:7c:69:29:a4:f2:7c:e8:e5:55:07:41:a3:60:55:03:
39:38:d7:50:5f:28:1d:e1:f4:ae:6f:10:82:3b:c7:67:44:0e:
f3:47:d6:e7:bc:31:02:8a:bf:ca:16:96:e5:16:dc:02:21:c8:
8d:3a:1a:91:1f:52:eb:de:c2:03:b2:b6:ef:a8:da:5d:f3:87:
b3:07:73:97:49:57:26:3e:e7:46:0e:28:58:48:6a:32:7c:bf:
c3:bb:70:0f:7f:57:54:4e:72:6a:53:c8:db:2a:d4:00:a2:77:
71:9f:30:97:34:22:89:1a:5b:74:6f:41:3b:18:6c:70:30:82:
1d:98:29:c4:af:88:30:e4:c1:2a:ee:a6:8a:d9:f9:fe:ca:f4:
73:9b:51:a0:78:9d:b6:ce:85:94:c6:b4:e3:e2:59:4f:ea:8e:
54:fe:4f:32:55:7e:ef:9c:f7:05:81:cd:de:b4:4e:a9:24:ec:
fd:aa:46:64:76:8c:c6:55:7b:63:9a:9e:1f:ff:91:4a:80:6c:
8a:f4:30:0a:fb:86:37:7e:0c:d1:b3:96:db:3a:24:34:c8:2c:
2d:29:94:cf:8d:08:0e:2a:15:97:c1:ea:06:61:39:d9:23:8b:
e3:5b:c4:d4:9f:50:bb:40:d3:b6:5b:a6:c6:ea:0b:3a:de:5f:
4f:98:bb:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 23:39:54 2026 by rpki-client