Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: CJRIGThvUme39EiawlUC+MXJQeHRreFFo1lsFDETa3s=
Subject key identifier: 1A:18:60:41:03:B6:3C:62:AF:B0:D5:FA:EF:C4:E1:61:F3:E1:9A:24
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019CBBBA4E54E3F2C57B2A9329B7C26CC710
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 17E2
Signing time: Thu 05 Mar 2026 02:01:14 +0000
Manifest this update: Thu 05 Mar 2026 02:01:14 +0000
Manifest next update: Fri 06 Mar 2026 02:01:14 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: LJkzXC15jVgVkZtYH0axHf1iI8XlQHv8Wpe8lEvnY7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 02:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bb:ba:4e:54:e3:f2:c5:7b:2a:93:29:b7:c2:6c:c7:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Mar 5 02:01:14 2026 GMT
Not After : Mar 6 02:01:14 2026 GMT
Subject: CN=1a18604103b63c62afb0d5faefc4e161f3e19a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:50:75:c3:bc:1a:70:11:52:ed:18:f2:5b:13:
c2:29:80:8b:9c:61:35:ad:e5:d5:e7:ce:aa:d9:5b:
9d:fe:61:6b:d8:52:f7:85:d0:d9:34:83:d3:62:cc:
06:af:b8:8c:b0:46:fe:22:05:56:21:b7:30:ec:7c:
95:0c:5b:26:30:14:3b:e9:7c:27:38:38:0a:ab:34:
ea:bb:f3:85:3c:86:72:a7:76:a6:33:fe:4c:64:2f:
82:cb:b4:61:a2:3d:9b:1b:b6:c1:e6:d0:04:1f:7b:
6d:a0:58:97:38:e0:63:c9:83:ad:ba:cb:57:af:47:
6b:71:b5:a6:53:42:48:d5:06:1d:2e:a0:b2:4e:8e:
e6:37:70:23:65:0a:0f:b6:32:db:ee:dd:bf:7e:14:
6e:02:7c:4c:89:b6:46:53:6a:ea:57:7a:83:1a:7c:
85:bf:07:05:2b:fe:0a:6d:11:21:63:0f:f5:0a:55:
a5:18:f1:06:d3:81:d4:22:d8:9d:63:f8:7c:0f:e1:
c6:90:ce:ae:38:cc:80:03:a4:7b:d2:31:db:e6:66:
43:6a:93:98:90:70:da:9d:2d:f0:76:32:33:30:f1:
e1:65:d7:a3:fa:34:7e:ac:c3:b8:92:64:e3:81:5b:
05:cb:91:f1:75:09:c6:0c:76:b2:9c:d4:91:2f:42:
92:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:18:60:41:03:B6:3C:62:AF:B0:D5:FA:EF:C4:E1:61:F3:E1:9A:24
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f0:3f:9a:26:23:61:9f:51:0d:25:96:6d:54:04:8b:c7:4f:
1a:dd:24:fa:cb:09:cb:d7:be:55:5f:7c:68:c3:d9:f1:11:23:
70:21:95:89:0a:b0:c3:2d:66:fd:44:2d:ee:0c:1c:87:74:11:
a6:c8:c2:f2:33:02:cc:c4:d8:7d:c8:4b:bb:3d:ad:0c:c0:d6:
a7:a3:7f:9c:be:c4:0d:80:6b:bb:48:8a:f7:2d:36:a0:4d:f7:
ea:b7:9a:a3:5d:cd:a9:15:1d:d3:bc:e6:f1:bf:03:1c:a5:c9:
d9:83:fc:02:e2:42:9e:44:dc:06:77:24:e1:b4:69:31:ad:93:
7d:f8:a8:0b:a5:88:0f:25:1b:b9:08:9b:f9:70:b9:d7:ad:84:
2c:05:c3:d5:74:64:ec:b0:fe:ee:dd:bb:6e:34:a6:94:8b:76:
bd:3b:95:17:10:c8:0c:6a:23:0e:62:0c:a8:a8:08:53:87:5f:
bd:4c:d4:29:38:79:7f:b2:26:f9:f1:3e:73:fc:ee:12:4d:0a:
f0:b6:27:7d:c9:21:91:c3:1c:e6:ca:77:13:b8:1f:cf:68:da:
f4:a9:ce:10:96:d7:3c:90:fa:91:d3:00:8e:ce:bc:bb:e5:60:
32:6c:cc:c8:fa:21:50:17:b6:8c:46:41:9d:02:05:4f:94:03:
81:a5:32:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 10:32:11 2026 by rpki-client