Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: x9fNmZXHjDc2Xp9iShriQbSrJcQeSokdd40MvM42grc=
Subject key identifier: 40:92:9B:CE:7B:21:F2:6F:06:94:BD:2B:11:55:E5:D4:65:A4:3D:34
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019EA262C11EA4AB09FFACEB14BA9A6A20B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 18DE
Signing time: Sun 07 Jun 2026 14:00:41 +0000
Manifest this update: Sun 07 Jun 2026 14:00:41 +0000
Manifest next update: Mon 08 Jun 2026 14:00:41 +0000
Files and hashes: 1: a3vqBzTeMihaLI7nX3YXTwT9QXM.roa (hash: YtcSgTlR3L7xs2ulbON7vgzLF5ftnMrGCR+z8FjX7OE=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: 2pjLmU0LM9Geluc3LyI75S+Ef8fybZIP9H/f0ttINJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Jun 2026 12:28:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a2:62:c1:1e:a4:ab:09:ff:ac:eb:14:ba:9a:6a:20:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Jun 7 14:00:41 2026 GMT
Not After : Jun 8 14:00:41 2026 GMT
Subject: CN=40929bce7b21f26f0694bd2b1155e5d465a43d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e9:cf:7c:5a:87:5b:e6:c3:d6:41:b1:65:28:
27:2d:8d:11:02:c1:5b:28:d9:82:67:12:c9:0a:6f:
c1:58:37:c5:ee:19:9b:be:53:1d:24:20:b2:27:a4:
1b:00:9e:eb:33:65:b5:db:5d:4b:cc:f7:78:ee:37:
83:ef:f3:ba:c3:9e:06:76:59:d7:0b:88:ae:5d:04:
ed:ac:98:88:7f:20:8d:ad:53:ad:58:ea:71:be:d3:
02:64:71:2f:5e:c6:19:e5:c5:ca:ff:55:47:2f:ea:
d3:51:44:8a:40:64:bf:5a:12:44:02:0c:06:26:ec:
aa:75:4e:20:ac:93:4f:a1:36:7d:fb:ae:79:a2:ce:
26:c6:4a:f9:9a:e3:c2:7c:b9:b6:b0:6b:75:3a:97:
6a:d5:b5:1a:bc:a0:5b:a8:ed:c5:72:07:ca:46:e3:
60:f6:e3:c1:aa:96:97:3a:96:74:6a:2d:b3:1a:0c:
11:ce:ac:4d:0d:b9:69:5b:13:ff:4e:c1:ab:51:2b:
71:96:e8:11:35:53:99:d6:df:d4:4c:93:bc:1b:b8:
86:c3:bd:f6:38:ac:e7:bf:ec:14:b4:e5:92:b0:75:
4c:77:bd:25:92:48:cf:5f:14:05:c7:30:74:b7:b0:
d2:e4:1c:9a:ac:89:8f:c7:8a:f3:4f:61:18:62:63:
8e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:92:9B:CE:7B:21:F2:6F:06:94:BD:2B:11:55:E5:D4:65:A4:3D:34
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:c6:ed:9f:56:b8:e4:2c:57:14:76:92:a0:cf:39:1a:3f:01:
ae:9a:66:9e:51:32:15:9a:5b:7b:01:d3:7e:dc:53:bc:9b:83:
c7:4d:b8:bc:67:b1:bb:6a:b2:f5:91:13:1b:95:4a:b7:80:39:
4d:bd:58:65:76:3c:d9:97:f5:6e:d8:bf:ed:19:b5:38:4b:0c:
19:7f:33:a7:fa:6e:b6:78:ff:9a:dc:0a:c5:56:2a:43:b8:fc:
e5:f1:51:8c:24:9b:5a:57:5b:02:7a:83:0c:c4:09:40:fa:dd:
f3:22:1e:ba:bd:4d:b4:a9:2d:6f:90:9d:51:2c:9e:bb:48:51:
d7:cb:b5:95:aa:a3:d6:d4:a0:c4:72:91:03:00:39:76:90:0f:
cc:b1:5e:41:95:e4:c6:0f:bd:13:39:6a:0b:40:f1:fc:e3:fb:
19:da:1b:88:0b:73:22:aa:18:2d:f2:50:a0:56:6c:31:49:47:
af:db:74:55:fb:dd:19:12:68:bd:64:b1:84:c5:56:26:93:92:
14:b4:96:d8:8c:ab:37:41:f4:e2:d7:54:b2:31:c6:f3:b3:7a:
e2:48:f6:f5:06:f0:b0:65:de:07:12:ad:51:f7:b4:d4:dd:82:
8b:6f:5b:85:7d:f6:06:3c:ac:20:66:f2:cb:55:04:b1:d0:d9:
ba:0e:d6:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6iYsEepKsJ/6zrFLqaaiCwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjYwNjA3MTQwMDQxWhcNMjYwNjA4MTQwMDQxWjAzMTEwLwYDVQQD
Eyg0MDkyOWJjZTdiMjFmMjZmMDY5NGJkMmIxMTU1ZTVkNDY1YTQzZDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1enPfFqHW+bD1kGxZSgnLY0RAsFb
KNmCZxLJCm/BWDfF7hmbvlMdJCCyJ6QbAJ7rM2W1211LzPd47jeD7/O6w54GdlnX
C4iuXQTtrJiIfyCNrVOtWOpxvtMCZHEvXsYZ5cXK/1VHL+rTUUSKQGS/WhJEAgwG
JuyqdU4grJNPoTZ9+655os4mxkr5muPCfLm2sGt1Opdq1bUavKBbqO3FcgfKRuNg
9uPBqpaXOpZ0ai2zGgwRzqxNDblpWxP/TsGrUStxlugRNVOZ1t/UTJO8G7iGw732
OKznv+wUtOWSsHVMd70lkkjPXxQFxzB0t7DS5ByarImPx4rzT2EYYmOO1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECSm857IfJvBpS9KxFV5dRlpD00MB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAacbtn1a4
5CxXFHaSoM85Gj8BrppmnlEyFZpbewHTftxTvJuDx024vGexu2qy9ZETG5VKt4A5
Tb1YZXY82Zf1bti/7Rm1OEsMGX8zp/putnj/mtwKxVYqQ7j85fFRjCSbWldbAnqD
DMQJQPrd8yIeur1NtKktb5CdUSyeu0hR18u1laqj1tSgxHKRAwA5dpAPzLFeQZXk
xg+9EzlqC0Dx/OP7GdobiAtzIqoYLfJQoFZsMUlHr9t0VfvdGRJovWSxhMVWJpOS
FLSW2IyrN0H04tdUsjHG87N64kj29QbwsGXeBxKtUfe01N2Ci29bhX32BjysIGby
y1UEsdDZug7WsQ==
-----END CERTIFICATE-----
Generated at Sun Jun 7 22:56:22 2026 by rpki-client