Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json)
Hash identifier: +dijB7jJakgvzBYT3iLFqy5r9VP0Bt+HPdtGgbWYERs=
Subject key identifier: 19:A4:D1:4E:BA:BA:55:66:58:5B:CB:A8:CD:E3:A9:C1:03:84:9D:D9
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 019E1F47FC775FB9F2BD62F6FD4466CC2687
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
Manifest number: 189A
Signing time: Wed 13 May 2026 03:01:11 +0000
Manifest this update: Wed 13 May 2026 03:01:11 +0000
Manifest next update: Thu 14 May 2026 03:01:11 +0000
Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: VP8ldu8+W3l3jzHNr3MtL+nTuMe8UHhZKMgdBVeRj6k=)
2: pwbWCuGOLTFOrJupg71uoibxjHU.roa (hash: AW3hofHwJcZNnJFiGJ8uTdZk7az4nc9IpPWU/+dKm48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:fc:77:5f:b9:f2:bd:62:f6:fd:44:66:cc:26:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: May 13 03:01:11 2026 GMT
Not After : May 14 03:01:11 2026 GMT
Subject: CN=19a4d14ebaba5566585bcba8cde3a9c103849dd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:99:b9:4a:67:f1:61:ea:dc:82:85:dd:93:1b:
c7:dc:fb:4c:7a:79:61:20:b7:c9:1a:85:70:68:67:
0d:33:3e:3b:1c:6e:3e:73:0c:d8:4a:5c:a2:54:0a:
3a:c8:d3:08:85:48:5b:ab:d0:48:27:0f:e5:ee:81:
f6:1d:02:95:e7:55:6f:d8:23:95:78:62:7c:cd:e8:
1a:49:d0:2f:1a:67:5b:a5:3e:9b:25:cb:84:08:27:
b6:61:3d:32:04:12:47:8a:35:be:7a:c0:79:47:4c:
8a:b0:3e:e7:88:ce:2f:e7:80:7f:e2:6c:97:4f:bc:
53:71:a4:15:2f:e9:ff:7e:2e:ae:aa:67:4a:ce:dc:
31:5a:5c:ff:81:04:c7:f7:84:26:41:53:64:24:92:
bd:e0:bd:9f:b9:ef:e8:75:a4:79:a8:35:38:cb:f3:
7e:aa:e2:90:12:31:23:d7:ba:22:d1:7a:71:ad:ed:
9f:c7:c6:bb:06:39:e1:69:e4:ca:a5:a1:34:eb:2e:
a9:4c:ff:af:67:e3:07:85:93:42:d1:1d:78:d0:54:
14:4d:01:b1:e0:24:d4:b0:55:09:57:89:b1:55:0a:
b0:0a:cd:db:8f:84:bd:d7:77:38:9b:5b:bf:44:85:
a5:67:25:21:6d:c5:b7:cb:d8:c5:8b:f3:55:d2:90:
8a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A4:D1:4E:BA:BA:55:66:58:5B:CB:A8:CD:E3:A9:C1:03:84:9D:D9
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:67:05:b9:fc:dc:ea:f3:38:2b:c4:ef:e8:2d:f1:42:8d:86:
3e:42:0c:b0:b9:8f:40:fb:4d:51:5f:3e:94:3d:6f:87:85:19:
d9:6e:5e:17:a2:2e:4f:a8:84:de:b4:03:bd:14:e3:bd:c5:e7:
84:b3:e9:60:59:35:42:f5:2c:3b:4c:8a:86:ad:9e:4e:e0:7d:
43:8e:dd:0d:28:e9:c7:ac:2b:c0:31:30:1a:30:53:76:4a:d6:
b1:e3:75:ec:99:65:de:73:d7:84:88:eb:b9:a7:39:03:bd:39:
2f:b3:4f:f7:bb:bb:d3:90:c2:7c:ed:8a:4f:0d:ad:9e:77:20:
74:0b:2a:11:b0:53:de:4d:40:7e:93:7d:89:c0:f9:0c:02:89:
f8:46:e3:b0:d3:79:c9:38:7f:d8:50:ac:dc:84:91:e3:d3:5e:
e5:b5:14:f6:3d:29:f3:4f:55:f8:76:92:13:0b:0b:17:5f:b8:
49:5d:4e:97:46:e2:23:1a:f2:1f:15:c9:56:b2:18:e1:a5:ee:
7f:0e:8b:f9:1d:30:f5:7e:50:2b:6f:8f:bc:68:f2:3e:6a:9f:
ec:0d:72:fc:8e:b3:3f:17:c7:bb:6b:26:1a:8f:7d:67:65:7c:
5e:eb:f0:79:c4:3c:63:75:4e:d4:ac:d5:0e:21:6e:be:21:52:
17:14:21:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:49:40 2026 by rpki-client