Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
File: aesALwAL1CbkpkDHHWwCAbUFDjQ.mft (raw, json)
Hash identifier: DhTVAt3iTzVK+a4i18kYLjXarUDQfA0AeAkGDR5e1yc=
Subject key identifier: 66:B6:50:2A:65:F6:93:91:B5:A0:AC:62:27:82:19:7E:6B:A6:62:B5
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 019E20C8698C0A48E3C27FC77672DB24A1F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
Manifest number: 184D
Signing time: Wed 13 May 2026 10:01:05 +0000
Manifest this update: Wed 13 May 2026 10:01:05 +0000
Manifest next update: Thu 14 May 2026 10:01:05 +0000
Files and hashes: 1: Y8aRMIYRH1jVjryKKP1v8mGsOdc.roa (hash: 3j6bnXLc/3ckyPdMqKUjErtfoWBW1SDwWHfzwh4ftiY=)
2: aesALwAL1CbkpkDHHWwCAbUFDjQ.crl (hash: Z/Rt9hWOuFCrSx2jScB2+hsCgZmd8lokGDB16KkrNVQ=)
3: uFe4cVHbxr_G6s1--UuURiKCbYs.roa (hash: Fv5WNCecba9l/1dLNg+gP0QmW1CKOnk01tR8y8gBZWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:69:8c:0a:48:e3:c2:7f:c7:76:72:db:24:a1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: May 13 10:01:05 2026 GMT
Not After : May 14 10:01:05 2026 GMT
Subject: CN=66b6502a65f69391b5a0ac622782197e6ba662b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b6:7d:4b:c5:76:b5:12:c5:75:95:78:d0:52:
c4:fc:e0:73:19:78:7e:a4:32:1f:90:92:9c:48:31:
de:2a:8f:19:60:6b:59:a1:1a:4e:da:51:ed:64:c8:
1d:77:22:b3:64:0a:09:ef:04:ab:c0:5e:2d:62:14:
cb:94:53:9a:ab:90:49:df:ee:f8:e1:1e:51:0e:16:
fc:54:20:7f:0e:98:55:4f:07:e2:9d:97:8f:13:dd:
2e:d4:e7:8b:d3:d3:8c:56:81:1c:0d:d2:46:10:86:
29:14:b9:52:d6:3b:24:5c:1f:a2:60:d5:fa:6f:ca:
d1:19:b2:3a:58:0e:84:3f:29:a5:8f:96:b8:f3:b8:
b1:67:f6:26:5e:45:c7:52:05:39:04:9b:4c:88:e7:
04:ed:de:b2:d3:3e:3a:ca:6d:51:9b:53:93:4a:44:
14:85:c7:1b:9a:5b:56:c5:db:06:f1:e8:f4:2e:43:
ef:1d:65:d7:ce:4f:b0:f9:a0:f0:7a:79:b8:27:cf:
b1:f5:aa:f4:aa:81:38:40:9f:73:bb:e4:63:b6:9e:
30:f1:d9:d1:9c:ac:1a:ce:51:04:74:93:11:1b:51:
dc:dc:06:5f:02:b0:3a:51:8f:58:bc:4e:a6:0b:55:
4c:e2:9f:66:2d:2e:b3:4d:f1:4f:2c:fa:a0:bc:85:
80:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B6:50:2A:65:F6:93:91:B5:A0:AC:62:27:82:19:7E:6B:A6:62:B5
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:52:bf:6e:6e:df:eb:f8:4f:cc:0b:64:be:c6:45:7a:01:a7:
5a:11:25:af:33:79:25:b4:95:17:23:b3:bd:b5:31:cb:6c:96:
b9:21:b7:11:59:49:f5:cf:6a:9e:eb:6d:8f:19:04:26:26:2f:
1f:c5:c2:25:a3:f5:cc:ea:fe:83:b6:e2:a0:de:6a:0f:fc:bf:
da:6a:c2:f5:da:52:d7:2f:3d:b0:fe:a9:f9:0c:62:75:56:f6:
14:5b:16:10:15:c7:8e:d4:48:3c:0f:24:31:5d:23:ab:b8:8e:
fe:82:af:1c:92:22:e0:c2:32:6b:9c:c0:5c:e4:2d:c7:49:91:
b0:87:b5:9e:62:54:c0:99:70:73:f3:da:66:84:fa:d9:1c:32:
a7:e2:44:b5:a7:08:94:55:52:09:d5:48:e0:41:b2:1b:15:90:
49:08:00:5e:a6:ae:e8:75:2a:fe:52:ae:23:b9:cd:1b:81:c3:
b2:1f:6b:ab:8c:cf:9a:70:1c:d8:10:5f:71:70:34:af:2e:f7:
b1:04:c2:da:44:b6:6e:08:03:d7:6e:9f:34:1d:32:27:f6:e0:
6f:ad:16:91:3a:ce:bb:0e:66:8c:ca:ce:c8:43:31:95:a0:bf:
93:fa:d8:ce:26:e2:1e:d0:e4:1e:26:cc:24:67:13:50:48:d8:
a7:7e:66:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:39:16 2026 by rpki-client