Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: H4QjiHC4J/tdHxegUP1QxRioSI8nVgka18uTEhOPBbQ=
Subject key identifier: 49:2D:0A:A3:7E:5E:78:77:CD:FC:48:EC:5F:8C:4E:F9:CF:DF:A8:48
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 019E1E3510DF8601D889A6B136E1989AAF5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 1912
Signing time: Tue 12 May 2026 22:00:54 +0000
Manifest this update: Tue 12 May 2026 22:00:54 +0000
Manifest next update: Wed 13 May 2026 22:00:54 +0000
Files and hashes: 1: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: ettQS2/3CijO3VlMWXaFoOqaNteScyDf/pJ5X97qQqI=)
2: bKFR-ExETl9kc_NczqQy1RxK9rs.roa (hash: plcIB/DfvBpq4QLItxVjsjUSKb2BA3Zq8rL1ma4T6FY=)
3: pRSgM7v51dj4_nnKyTIe5vKbqck.roa (hash: zoPAj53DpixsBYDFs95Rz1APyotRYxKBCaNS8cQmVuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:10:df:86:01:d8:89:a6:b1:36:e1:98:9a:af:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: May 12 22:00:54 2026 GMT
Not After : May 13 22:00:54 2026 GMT
Subject: CN=492d0aa37e5e7877cdfc48ec5f8c4ef9cfdfa848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:0b:a3:0a:73:7e:86:3d:39:d1:72:27:b7:
a8:6b:a7:1f:b1:d4:7a:09:ee:7b:70:eb:79:25:13:
8c:b8:1f:77:bb:b6:5f:36:9f:12:07:bc:c1:dc:da:
cd:9d:33:1a:ee:70:a7:20:38:c6:e6:e9:2f:d5:6d:
40:ac:7e:c2:ab:69:c1:21:be:14:83:18:d1:09:52:
7c:0a:e6:74:90:e0:85:af:a5:ac:d5:db:43:b2:50:
56:e0:5a:c4:fe:2d:fe:58:61:3e:05:75:f7:c5:78:
f3:e4:a6:6d:1c:4a:1b:aa:17:a0:a2:2d:bd:fb:47:
b8:9c:b0:f4:0e:62:ea:6a:ed:23:dd:8b:7f:51:c2:
cd:f7:88:1b:5a:b6:3e:9b:d0:87:df:d5:2b:f0:47:
09:78:27:4a:2d:fb:dd:7d:7b:7f:ff:6e:d2:64:e0:
0b:50:8f:99:e0:63:51:83:21:24:79:ff:7c:62:f0:
b4:af:b9:78:ed:b5:dc:76:53:e8:99:d8:5d:81:10:
6e:5f:b7:55:f6:27:04:52:ac:33:c9:57:5c:13:3f:
65:a0:04:96:9c:c1:0d:36:ba:ab:8f:3f:60:e9:c3:
ef:c7:b6:14:20:a4:d5:62:f7:76:8d:4c:8a:d6:0e:
b0:8e:cb:9f:83:13:de:cb:be:18:15:0c:c9:ad:ba:
3f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2D:0A:A3:7E:5E:78:77:CD:FC:48:EC:5F:8C:4E:F9:CF:DF:A8:48
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:2a:bb:6a:ad:9e:a1:5a:28:aa:dc:00:fe:1a:87:a0:06:3d:
ba:5b:34:2b:b3:aa:91:7f:7a:53:23:b2:e4:35:1b:03:d0:b9:
b8:03:cd:f9:dd:b5:3e:b5:60:c3:40:88:8a:26:f5:f1:a5:f1:
e5:97:cc:55:d9:62:3a:f9:76:4e:de:ed:43:1f:fc:cb:3f:e7:
53:33:fe:44:8e:7e:2e:cc:5f:ef:2d:fe:57:7a:c1:4e:05:3c:
32:ea:9e:83:19:93:3b:2a:87:ce:c8:c2:6a:42:7d:29:78:b5:
1b:82:a4:6e:09:90:87:0e:29:4e:89:64:8f:ee:f1:68:7d:d7:
a1:e1:02:8c:3e:5c:04:14:fd:63:36:6a:95:5e:79:e3:e3:de:
94:01:ed:14:aa:37:b8:2a:f3:9f:c8:a8:6a:d6:89:ba:32:8e:
69:94:30:d7:e8:92:7d:15:d3:ca:d0:9f:a5:a0:9e:8c:54:42:
2a:2d:5b:b3:dc:f6:be:09:62:ef:83:ae:f2:e8:ef:0c:1a:c9:
8a:ac:43:86:1e:31:e5:e8:03:df:42:19:34:ea:42:90:11:42:
5c:fb:e9:9b:fe:eb:a6:c0:13:8d:ab:cc:89:f0:8e:05:e6:02:
b0:df:86:a3:a7:d4:2c:16:85:3b:8e:96:59:1b:b7:4c:3f:12:
fb:8a:cd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:56:39 2026 by rpki-client