Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: bEfrugb3eLbglViFXss18GIcmQejTQBF3ZmYoDPDiIc=
Subject key identifier: FA:CB:52:9E:3F:71:50:48:08:FC:30:70:00:96:40:8E:27:10:C1:82
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019E1D90C91BC0EDC87139A728DCB2D247BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0AA4
Signing time: Tue 12 May 2026 19:01:28 +0000
Manifest this update: Tue 12 May 2026 19:01:28 +0000
Manifest next update: Wed 13 May 2026 19:01:28 +0000
Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: YhTUqB/ZXIF8I7dT6vtecpN7nKcQY2ayIECjWPRODxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:c9:1b:c0:ed:c8:71:39:a7:28:dc:b2:d2:47:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: May 12 19:01:28 2026 GMT
Not After : May 13 19:01:28 2026 GMT
Subject: CN=facb529e3f71504808fc30700096408e2710c182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d4:2b:89:1f:57:5e:f1:39:19:07:cb:76:62:
34:c8:a5:ba:1c:1e:a5:d9:9c:e1:dd:fa:e9:36:ff:
72:7d:cd:71:25:7a:dd:68:73:3a:38:b6:bc:ed:60:
48:8f:85:30:61:79:5c:1c:6e:00:bc:e7:d6:38:6b:
10:c5:61:e5:ff:c2:7d:d6:bd:b0:10:52:ad:f9:ca:
2d:76:e2:ac:00:b7:fa:c1:2e:63:7a:21:5f:4b:6f:
6c:7b:80:00:aa:0b:47:25:cc:9d:09:80:5a:02:11:
11:9d:79:99:fe:d3:41:74:da:a5:6b:12:52:24:5e:
4b:36:f2:76:09:92:9a:84:5a:77:e9:73:37:d7:e1:
1d:24:d4:44:47:c3:e2:55:63:e2:c8:06:d0:d6:fc:
a1:6d:da:08:55:30:ec:21:99:03:46:d9:d5:6c:3b:
3c:86:d7:e4:13:66:f7:cc:e2:fa:b6:4a:a3:d3:b8:
fb:c2:9c:4c:a2:72:5b:c3:d1:1e:0d:1c:a2:63:d0:
71:e8:bf:23:fb:c9:ed:85:7b:47:58:2d:17:c8:73:
1b:f4:e7:b8:ea:91:d3:9b:b1:37:fa:76:2e:38:3d:
e1:0e:3b:6e:c8:51:d9:69:8c:dd:50:a3:f8:a8:22:
bc:e4:56:71:f0:33:15:03:b6:de:d4:3a:8c:fa:8a:
90:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CB:52:9E:3F:71:50:48:08:FC:30:70:00:96:40:8E:27:10:C1:82
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:26:69:5e:d3:2e:91:b7:88:0f:d9:2c:2b:94:50:4e:bf:e8:
00:20:37:bd:9d:a5:6f:45:fb:a0:2a:f4:58:79:13:24:29:aa:
ed:c8:5f:7c:9d:a3:06:13:6b:4d:5f:39:8f:77:f6:7a:34:8f:
f7:ec:e3:bb:1b:ec:e7:c2:e0:f0:c4:b8:c8:54:47:84:94:52:
ae:ca:c3:c9:b3:2a:52:20:0b:0d:71:88:93:ab:dd:6b:c7:5f:
41:0a:2e:b4:59:0e:0a:45:38:26:ad:26:61:f2:be:5a:b4:81:
0b:b0:3e:67:7b:a0:80:e1:dc:e4:bc:7b:c7:a7:cf:dc:b4:06:
b4:5d:60:57:51:e8:8e:f0:e0:3b:25:09:4a:9f:98:8d:20:9c:
3a:b4:a3:14:2f:a1:82:b0:bb:44:4b:d6:7a:2d:73:c5:56:3c:
4b:93:6f:fe:5d:70:97:24:9d:d2:40:f8:be:a3:60:82:eb:1c:
65:cf:d0:75:e6:49:e1:50:9f:71:32:ef:98:76:6b:48:33:27:
45:6d:6d:97:d4:1a:37:7f:58:fd:13:49:14:46:b2:63:6a:90:
c1:f2:9a:4e:3f:2f:dc:01:0f:3e:8a:a2:fe:d9:93:27:e0:ee:
c5:f0:db:70:7c:10:20:76:47:51:6c:ec:14:dd:ae:77:e8:5e:
f6:ff:fa:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkMkbwO3IcTmnKNyy0ke9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj
OTllNGUwHhcNMjYwNTEyMTkwMTI4WhcNMjYwNTEzMTkwMTI4WjAzMTEwLwYDVQQD
EyhmYWNiNTI5ZTNmNzE1MDQ4MDhmYzMwNzAwMDk2NDA4ZTI3MTBjMTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudQriR9XXvE5GQfLdmI0yKW6HB6l
2Zzh3frpNv9yfc1xJXrdaHM6OLa87WBIj4UwYXlcHG4AvOfWOGsQxWHl/8J91r2w
EFKt+cotduKsALf6wS5jeiFfS29se4AAqgtHJcydCYBaAhERnXmZ/tNBdNqlaxJS
JF5LNvJ2CZKahFp36XM31+EdJNRER8PiVWPiyAbQ1vyhbdoIVTDsIZkDRtnVbDs8
htfkE2b3zOL6tkqj07j7wpxMonJbw9EeDRyiY9Bx6L8j+8nthXtHWC0XyHMb9Oe4
6pHTm7E3+nYuOD3hDjtuyFHZaYzdUKP4qCK85FZx8DMVA7be1DqM+oqQwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPrLUp4/cVBICPwwcACWQI4nEMGCMB8GA1UdIwQY
MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt
MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5
LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVCZpXtMu
kbeID9ksK5RQTr/oACA3vZ2lb0X7oCr0WHkTJCmq7chffJ2jBhNrTV85j3f2ejSP
9+zjuxvs58Lg8MS4yFRHhJRSrsrDybMqUiALDXGIk6vda8dfQQoutFkOCkU4Jq0m
YfK+WrSBC7A+Z3uggOHc5Lx7x6fP3LQGtF1gV1HojvDgOyUJSp+YjSCcOrSjFC+h
grC7REvWei1zxVY8S5Nv/l1wlySd0kD4vqNgguscZc/QdeZJ4VCfcTLvmHZrSDMn
RW1tl9QaN39Y/RNJFEayY2qQwfKaTj8v3AEPPoqi/tmTJ+DuxfDbcHwQIHZHUWzs
FN2ud+he9v/69Q==
-----END CERTIFICATE-----
Generated at Wed May 13 05:07:37 2026 by rpki-client