Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: KQ17QR5UZfmrbpSgTEIn0YchdNUHqZceW0u5xeLwKp4=
Subject key identifier: 1C:F2:16:C8:9B:36:C0:FF:D7:0C:76:83:32:FB:96:BD:B7:F8:93:EB
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019D63BD33C4BF7DC3FFC87471F4187EA9B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1839
Signing time: Mon 06 Apr 2026 17:00:37 +0000
Manifest this update: Mon 06 Apr 2026 17:00:37 +0000
Manifest next update: Tue 07 Apr 2026 17:00:37 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 4jXKEa0oYqJESRaDW+jP8vfUT+KEsEGFHEFhGUR8cJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Apr 2026 10:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:63:bd:33:c4:bf:7d:c3:ff:c8:74:71:f4:18:7e:a9:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Apr 6 17:00:37 2026 GMT
Not After : Apr 7 17:00:37 2026 GMT
Subject: CN=1cf216c89b36c0ffd70c768332fb96bdb7f893eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:28:d0:e8:71:77:20:1e:78:66:4f:1f:38:63:
46:de:62:ef:69:3f:0b:67:be:3d:35:b7:2e:0e:e4:
78:04:18:cb:3a:c6:ec:2d:28:82:76:a6:2e:e2:c5:
a2:24:45:0b:06:79:01:50:33:f3:a5:32:65:92:4e:
e0:0a:ea:ae:ec:63:07:88:c4:9c:18:2f:60:e0:3d:
7a:ba:ef:b6:d9:0a:75:59:95:1b:a1:23:ad:cb:1b:
7b:bc:c9:fe:c1:d8:de:d9:a7:e0:39:9d:fb:03:89:
f1:f7:cf:2d:b1:1b:df:c0:d1:e4:e2:ca:8a:81:20:
fd:34:24:b0:41:b9:40:01:92:e6:bd:29:d0:3c:8a:
13:de:66:33:95:86:55:fe:e1:46:9d:6f:62:52:0b:
dc:78:7f:02:0f:10:12:f9:71:19:1d:72:ef:cf:6c:
5d:7b:dd:0f:d9:b9:74:5a:02:4d:43:3b:78:ac:e1:
aa:81:c8:99:9d:3c:20:71:ee:7b:28:9a:cd:ab:b7:
07:ac:56:37:76:20:21:d0:e5:90:46:0c:ce:29:e6:
f9:f2:e5:09:d6:ce:65:2a:67:2a:53:9c:61:dc:dd:
1b:d6:36:36:83:cb:94:b9:dc:05:18:98:3f:59:0c:
22:5d:b9:95:af:a9:e5:c1:fb:ea:64:ad:e2:8b:31:
5c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F2:16:C8:9B:36:C0:FF:D7:0C:76:83:32:FB:96:BD:B7:F8:93:EB
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:44:e8:e0:30:d8:9d:4f:ff:91:62:67:92:55:07:0c:26:94:
fc:e2:70:f0:16:93:df:4d:0a:9f:ca:29:55:d1:ad:4b:a1:57:
31:2f:f4:fc:ba:cf:1f:fb:8e:e8:fd:6c:12:da:07:19:98:7f:
c3:96:cc:6c:80:43:c3:94:20:46:dc:a6:2a:30:f2:79:c1:2e:
00:35:e1:ff:69:a3:89:44:62:09:fd:4c:cf:2b:fc:66:6e:2b:
be:48:2c:f5:84:07:6d:11:bc:aa:dd:d9:62:99:c5:9f:f3:ba:
73:b9:f3:ea:56:86:ac:8f:35:2b:1c:c3:44:8b:1d:31:73:50:
5f:68:05:da:bd:40:0d:ee:f7:a0:7a:c7:8c:33:65:6f:54:ad:
1d:24:70:65:a0:da:be:ff:9e:5b:31:5a:f6:da:df:a3:d5:67:
f4:2d:b8:89:5a:71:f2:32:95:e5:aa:98:16:fc:28:75:1b:ef:
0a:da:ec:90:43:1c:56:11:f9:bf:65:cd:de:3f:15:dc:e0:20:
5f:24:f7:9c:62:db:4e:62:52:0f:22:9f:a7:d1:47:0a:8d:19:
f8:db:9c:ab:da:98:9d:bb:93:c9:e6:8a:7a:ab:d3:a0:9e:55:
ec:b9:42:db:aa:ff:7c:99:64:ba:6c:99:1d:7e:26:a1:56:63:
09:62:6c:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ1jvTPEv33D/8h0cfQYfqm2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwNDA2MTcwMDM3WhcNMjYwNDA3MTcwMDM3WjAzMTEwLwYDVQQD
EygxY2YyMTZjODliMzZjMGZmZDcwYzc2ODMzMmZiOTZiZGI3Zjg5M2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyjQ6HF3IB54Zk8fOGNG3mLvaT8L
Z749NbcuDuR4BBjLOsbsLSiCdqYu4sWiJEULBnkBUDPzpTJlkk7gCuqu7GMHiMSc
GC9g4D16uu+22Qp1WZUboSOtyxt7vMn+wdje2afgOZ37A4nx988tsRvfwNHk4sqK
gSD9NCSwQblAAZLmvSnQPIoT3mYzlYZV/uFGnW9iUgvceH8CDxAS+XEZHXLvz2xd
e90P2bl0WgJNQzt4rOGqgciZnTwgce57KJrNq7cHrFY3diAh0OWQRgzOKeb58uUJ
1s5lKmcqU5xh3N0b1jY2g8uUudwFGJg/WQwiXbmVr6nlwfvqZK3iizFcLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBzyFsibNsD/1wx2gzL7lr23+JPrMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAETo4DDY
nU//kWJnklUHDCaU/OJw8BaT300Kn8opVdGtS6FXMS/0/LrPH/uO6P1sEtoHGZh/
w5bMbIBDw5QgRtymKjDyecEuADXh/2mjiURiCf1Mzyv8Zm4rvkgs9YQHbRG8qt3Z
YpnFn/O6c7nz6laGrI81KxzDRIsdMXNQX2gF2r1ADe73oHrHjDNlb1StHSRwZaDa
vv+eWzFa9trfo9Vn9C24iVpx8jKV5aqYFvwodRvvCtrskEMcVhH5v2XN3j8V3OAg
XyT3nGLbTmJSDyKfp9FHCo0Z+Nucq9qYnbuTyeaKeqvToJ5V7LlC26r/fJlkumyZ
HX4moVZjCWJsAw==
-----END CERTIFICATE-----
Generated at Mon Apr 6 21:05:37 2026 by rpki-client