Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: Saks7KIUFTohjqwEZ6XNvK7MJJ3rnaMTRwoWljn10gU=
Subject key identifier: 58:60:7F:6D:B6:71:6F:5A:FF:50:56:57:CD:B6:B2:A9:35:EB:97:43
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 019D2AA932D3C4F972FC7CB02E77F40ED2E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 15CC
Signing time: Thu 26 Mar 2026 15:00:24 +0000
Manifest this update: Thu 26 Mar 2026 15:00:24 +0000
Manifest next update: Fri 27 Mar 2026 15:00:24 +0000
Files and hashes: 1: J8ydQUQXwbdeLKGsKIlOYLkn-2g.roa (hash: x5tw3RQ3h8IFbqDxJqbX4jZdtBMVMlLrubg1cBqUbGY=)
2: ZnincJbZ5PaTXoMonj_Ctiiqrus.roa (hash: isWE5Tfc29wZU5CXfTVoPdXm00k/FOrPBirq1sQW5u0=)
3: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: 3wXG+ttTe77MWKMxvX0i4Aq0GrpBqIM6ga1JiajiGog=)
4: djk33VTAFS7Xg0krsRI1T_nFwPA.roa (hash: 8hgR6br/pEJbt5XXEd2D/vHBDf8jYfgzmueO6ffVo28=)
5: knCed-keSzVEOPICx1gRMxep3OM.roa (hash: PwNnPjtHsrQvIYgK4ATN14eaGro5/ZgkqW0B/Ot+2cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:32:d3:c4:f9:72:fc:7c:b0:2e:77:f4:0e:d2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Mar 26 15:00:24 2026 GMT
Not After : Mar 27 15:00:24 2026 GMT
Subject: CN=58607f6db6716f5aff505657cdb6b2a935eb9743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:83:85:7b:d0:5e:f1:e1:77:e9:98:ec:85:ff:
de:1e:db:2b:8a:85:64:f4:d6:59:42:9d:79:30:95:
2d:1b:0b:a6:9a:70:53:40:fb:b9:41:e6:69:a9:42:
2e:87:fd:e8:20:9d:51:e3:ee:b5:ac:44:00:ff:c4:
ed:06:24:7b:38:86:85:46:89:00:cb:8b:3b:0a:93:
3a:4b:b0:04:a7:9d:aa:86:5a:71:91:f7:62:a6:58:
3a:85:68:19:f5:2c:a6:0d:d1:de:a6:ab:93:b8:4e:
1e:3a:b1:b5:2f:f2:cf:a2:8a:ac:2f:48:90:b1:84:
71:85:23:0f:f8:c9:44:ea:46:bb:1b:f8:2a:7c:a8:
7e:2c:29:92:40:0a:ca:d9:d9:48:e0:93:9d:27:3f:
a0:28:c9:c0:85:2f:a3:17:1e:ac:60:15:e8:03:5a:
34:2e:4e:38:ef:32:b4:4b:16:35:4b:33:e9:fa:ae:
5b:3a:91:d4:0b:d1:aa:98:b0:af:81:b8:da:89:77:
e8:7d:cc:b2:3c:d6:ed:9c:64:79:53:b5:83:61:50:
a2:20:24:f2:4f:8c:0b:a8:8b:52:4f:5e:3e:23:be:
46:3b:2f:03:67:77:df:7f:37:33:03:16:5a:e0:ad:
01:5d:ff:cf:cb:8f:3e:f4:f4:81:69:58:c4:a5:90:
07:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:60:7F:6D:B6:71:6F:5A:FF:50:56:57:CD:B6:B2:A9:35:EB:97:43
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:37:d4:67:14:fa:db:54:e6:4b:e5:a7:fc:b5:64:77:75:0d:
c9:4a:33:d5:fb:f2:ea:7b:4c:53:04:4c:95:8a:60:04:af:64:
37:67:2a:d7:98:1f:98:33:ce:81:64:0f:d4:9c:d4:3d:a3:b3:
40:f3:52:e8:5d:00:ab:cb:59:1b:4e:0e:7c:5e:a7:39:8b:1f:
32:e2:c9:6d:f0:d7:26:a1:25:8a:3b:0d:64:68:75:58:04:f3:
7d:e4:9d:ba:bf:0a:4d:c0:f7:7a:30:d4:dd:58:40:9f:14:32:
67:20:05:06:d5:8f:d2:a2:bf:11:e4:97:34:55:87:21:a9:1e:
2d:bb:2a:2f:ca:21:db:d5:3c:dd:1b:5d:24:e2:d9:34:05:da:
87:72:83:91:35:74:21:3b:1d:3f:9c:a4:69:49:65:b8:c2:37:
26:17:0a:0e:4c:df:a8:d9:e5:4c:0a:91:fc:71:f0:d4:b5:14:
42:75:20:8d:a5:2b:54:11:c4:68:2d:12:dd:9d:15:46:24:43:
5b:d8:b6:c5:51:e9:c7:40:c9:cb:5f:fa:32:6e:77:a4:82:21:
ed:d4:f6:2a:8b:0d:51:e8:e2:32:56:8b:7f:81:4c:e6:b0:26:
bb:4f:99:b9:df:07:79:d3:32:9c:0b:94:57:a5:1a:e3:7c:c2:
d4:b2:fc:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:45:32 2026 by rpki-client