Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: UIVBmzESVJOPbrVWWEiOUNJ1N10IJ5IJULOCmAJHH44=
Subject key identifier: E0:D0:20:B2:28:08:E6:30:B2:EB:81:14:D4:CA:48:8E:45:CC:4E:38
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019E326143C8B74EE8687C5D385B5DFF120D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 18A4
Signing time: Sat 16 May 2026 20:01:35 +0000
Manifest this update: Sat 16 May 2026 20:01:35 +0000
Manifest next update: Sun 17 May 2026 20:01:35 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: l5IgbEzBhk3xiIBQ61JZ4tFo0OLQgiDldbVaEqyn0tI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 20:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:61:43:c8:b7:4e:e8:68:7c:5d:38:5b:5d:ff:12:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: May 16 20:01:35 2026 GMT
Not After : May 17 20:01:35 2026 GMT
Subject: CN=e0d020b22808e630b2eb8114d4ca488e45cc4e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:46:8f:eb:4e:df:2b:af:8f:2f:f5:bc:37:cb:
97:40:4d:4f:67:84:5e:d7:20:8f:8d:4e:db:60:65:
0c:99:69:0e:3e:68:28:65:f3:2e:35:b1:22:04:fa:
bd:80:8c:0f:b9:e5:cd:f5:62:ba:74:8d:74:da:3f:
11:20:1e:54:18:69:84:3b:85:27:b5:52:f7:00:0e:
be:63:76:ca:db:65:59:96:23:03:6d:4c:99:9c:8c:
2c:64:5f:10:d7:0d:15:ef:f5:b2:52:0c:2b:fa:59:
fe:e3:0d:4e:2a:b7:3a:13:4e:49:5f:c2:f2:2c:b4:
9e:3b:69:cb:15:82:7a:4f:3d:dd:44:ee:13:dd:e2:
c7:32:77:9e:22:74:73:2d:62:fa:c4:0e:83:3d:39:
3c:be:1f:2a:98:85:8e:90:77:03:67:0a:5b:13:7a:
7f:4a:8a:c6:12:e5:7e:29:8d:d9:2f:90:a9:85:22:
4a:ba:48:9b:bf:21:38:56:1b:7e:58:80:42:50:d8:
9a:e4:c2:88:0e:33:55:f6:f4:d1:83:59:74:1e:4e:
f6:10:06:52:8c:5d:ae:2b:01:5b:f3:43:f4:fb:81:
5c:ab:ea:b3:c7:5d:d6:4e:86:eb:9e:f6:40:1f:b9:
e2:ed:e6:55:a9:aa:33:31:83:0c:6c:2a:60:4a:d8:
c1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D0:20:B2:28:08:E6:30:B2:EB:81:14:D4:CA:48:8E:45:CC:4E:38
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:85:74:67:e7:21:1b:b9:e1:03:2d:3a:3f:2d:21:30:9a:10:
92:c1:76:f0:fc:4a:2b:a1:90:55:fe:2d:21:78:de:84:4f:5a:
28:15:4f:e4:cf:b8:fb:da:a5:d1:46:d5:f9:c5:2c:15:5a:79:
34:74:d3:46:bb:70:13:c1:2a:8f:ff:c5:af:5b:c3:46:49:b8:
09:da:69:7d:dd:df:f4:94:ed:bc:18:b8:b7:b0:6c:7b:b4:ea:
de:41:c7:ba:24:91:6a:19:02:4b:cb:74:25:56:10:94:0c:95:
7c:e2:bb:ac:36:f9:4f:82:eb:ce:fa:f0:35:33:e0:ad:f5:3d:
29:d5:23:b8:c7:db:15:97:3b:17:f8:e5:a2:c9:db:c3:d4:17:
9c:a4:d5:91:39:fa:08:c0:0f:73:29:83:c4:3e:82:29:36:ab:
05:86:47:1a:d3:b1:91:d5:b2:ae:4e:f8:45:00:f3:35:f2:02:
db:42:51:f5:35:1c:82:58:64:5b:c5:f5:e0:d2:6e:d8:6e:a2:
60:86:b8:bd:d5:43:35:d8:20:d0:bb:21:87:01:07:75:05:13:
63:14:f2:5f:57:18:c6:da:fd:74:99:57:ec:c0:e4:a4:a9:40:
86:62:96:10:95:02:05:70:24:2c:94:62:47:89:6d:11:c5:3c:
d4:c6:7f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 06:54:00 2026 by rpki-client