Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 7Tav+bF8bZmqxLTev3CpyhE0UWudC9KFO4t7KDFmlaQ=
Subject key identifier: 1D:B6:1D:45:1B:56:C1:0B:75:28:4B:A4:22:02:91:66:94:FD:30:98
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019D7330BEA544CAD88D9B99B90038A8F16D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1841
Signing time: Thu 09 Apr 2026 17:01:07 +0000
Manifest this update: Thu 09 Apr 2026 17:01:07 +0000
Manifest next update: Fri 10 Apr 2026 17:01:07 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: WU3Q4wXjQstojGS4hTOzNJ7gM3VYRWNgBeuDpYI5HAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 Apr 2026 14:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:73:30:be:a5:44:ca:d8:8d:9b:99:b9:00:38:a8:f1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 9 17:01:07 2026 GMT
Not After : Apr 10 17:01:07 2026 GMT
Subject: CN=1db61d451b56c10b75284ba42202916694fd3098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:5c:36:5e:8a:0b:65:92:38:27:3e:ad:dc:
e9:9a:76:76:ad:ea:a1:e7:4a:99:84:05:38:6a:8d:
44:9d:5d:c2:b9:3b:bc:d4:3a:ea:06:2e:67:f5:0f:
c5:04:43:4c:2b:fb:30:7c:c0:84:0f:dc:cf:ce:b3:
fc:53:9c:a4:71:d4:08:ab:01:4b:d0:24:d7:8d:49:
53:85:7c:00:07:25:85:5d:2c:5b:27:3a:24:56:c7:
20:be:21:e9:d4:a6:42:5a:ad:7a:ce:f9:fd:c7:0c:
73:54:12:bb:9a:7c:90:65:24:fa:39:ba:8d:6e:17:
23:c8:c9:30:92:8f:4d:97:c1:15:57:be:1d:55:56:
44:0d:b3:d7:2d:78:1f:de:0a:7a:9c:66:79:c1:ce:
85:81:a3:9f:8a:22:aa:de:23:cb:1d:85:76:89:dd:
73:f0:fb:5c:fc:5b:0d:72:9e:0d:1a:d4:30:36:ca:
8b:1c:43:6a:cf:45:11:6e:8a:49:13:cd:68:0f:47:
a9:5e:da:a3:da:8f:37:b8:dd:f4:80:0e:c7:01:9f:
1f:5c:1f:6b:36:5e:be:0f:f6:44:b2:7b:52:6e:e9:
78:4f:c8:29:89:13:6c:02:54:e8:19:0e:a1:6a:a9:
9e:a6:87:5a:39:0c:66:b0:c6:27:c9:49:53:0c:ba:
46:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B6:1D:45:1B:56:C1:0B:75:28:4B:A4:22:02:91:66:94:FD:30:98
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:db:cd:5f:fb:52:c3:a1:4f:c3:9f:6a:50:05:1c:05:2b:d0:
5b:a9:1b:4c:7e:04:69:b8:ba:6f:0e:25:74:9a:38:e6:d2:e4:
e6:38:d9:fd:72:61:7b:fc:0c:27:0e:85:31:a2:d3:89:4f:42:
fc:f7:56:25:c6:24:4b:57:0a:0c:ac:3f:7c:9f:5a:a1:f7:07:
e4:de:c5:d8:ad:90:8b:1d:48:4a:9a:59:3a:7a:13:12:2f:46:
48:a8:2b:86:de:39:08:2f:c1:5a:56:79:6c:c2:ca:d8:c5:97:
17:b6:cc:0f:53:a5:a7:ee:60:5a:db:e4:b1:79:ae:77:7a:d0:
1d:f3:d9:73:0c:9e:18:5a:42:84:cf:01:cf:3c:0a:4e:6e:4a:
f9:df:ae:6b:12:3b:a1:78:ec:cb:38:57:e2:6f:7e:4a:fa:9a:
75:f1:fc:e5:cf:8c:16:a3:ec:20:c0:a6:3e:8c:f5:c1:fe:c0:
1a:3b:54:eb:ac:72:fb:ab:21:29:6a:dd:63:50:45:d1:ed:ce:
91:3c:d3:af:6c:40:ce:5c:d2:0b:2d:9f:98:c1:41:28:ea:d0:
1f:a3:2a:9c:d0:62:3b:32:c0:ad:09:13:2c:46:fc:3f:59:8a:
d7:20:8c:e4:25:cb:b3:b7:eb:ad:0f:ed:bf:09:80:cf:d3:70:
59:69:35:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ1zML6lRMrYjZuZuQA4qPFtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwNDA5MTcwMTA3WhcNMjYwNDEwMTcwMTA3WjAzMTEwLwYDVQQD
EygxZGI2MWQ0NTFiNTZjMTBiNzUyODRiYTQyMjAyOTE2Njk0ZmQzMDk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro9cNl6KC2WSOCc+rdzpmnZ2reqh
50qZhAU4ao1EnV3CuTu81DrqBi5n9Q/FBENMK/swfMCED9zPzrP8U5ykcdQIqwFL
0CTXjUlThXwAByWFXSxbJzokVscgviHp1KZCWq16zvn9xwxzVBK7mnyQZST6ObqN
bhcjyMkwko9Nl8EVV74dVVZEDbPXLXgf3gp6nGZ5wc6FgaOfiiKq3iPLHYV2id1z
8Ptc/FsNcp4NGtQwNsqLHENqz0URbopJE81oD0epXtqj2o83uN30gA7HAZ8fXB9r
Nl6+D/ZEsntSbul4T8gpiRNsAlToGQ6haqmepodaOQxmsMYnyUlTDLpGKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB22HUUbVsELdShLpCICkWaU/TCYMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAktvNX/tS
w6FPw59qUAUcBSvQW6kbTH4Eabi6bw4ldJo45tLk5jjZ/XJhe/wMJw6FMaLTiU9C
/PdWJcYkS1cKDKw/fJ9aofcH5N7F2K2Qix1ISppZOnoTEi9GSKgrht45CC/BWlZ5
bMLK2MWXF7bMD1Olp+5gWtvksXmud3rQHfPZcwyeGFpChM8BzzwKTm5K+d+uaxI7
oXjsyzhX4m9+SvqadfH85c+MFqPsIMCmPoz1wf7AGjtU66xy+6shKWrdY1BF0e3O
kTzTr2xAzlzSCy2fmMFBKOrQH6MqnNBiOzLArQkTLEb8P1mK1yCM5CXLs7frrQ/t
vwmAz9NwWWk1kA==
-----END CERTIFICATE-----
Generated at Thu Apr 9 21:24:47 2026 by rpki-client