Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: TSStVznc6vodM/sP70OCDSKJpyPJSNPtjNYgTqUGWjw=
Subject key identifier: EA:85:16:3E:9A:DB:4F:63:2F:0E:7C:14:67:4A:82:03:C1:9F:3F:3A
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 019E1EDA2F1B44A02221ADC436B3EA9AC96E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 0B66
Signing time: Wed 13 May 2026 01:01:15 +0000
Manifest this update: Wed 13 May 2026 01:01:15 +0000
Manifest next update: Thu 14 May 2026 01:01:15 +0000
Files and hashes: 1: 1QpbjmDLVcUMqnNrCbGP4FA5FaY.roa (hash: 5prhYgOZoGVGdhCQditPaOssQQZBoW2n1oXkHDCQF6E=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: oZFOKGTIUlFxHZaSgdTGG3Ohmoy3ILO3biqaFlo0e/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:2f:1b:44:a0:22:21:ad:c4:36:b3:ea:9a:c9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: May 13 01:01:15 2026 GMT
Not After : May 14 01:01:15 2026 GMT
Subject: CN=ea85163e9adb4f632f0e7c14674a8203c19f3f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:54:09:cc:99:d2:4a:19:53:6f:2f:fc:78:5b:
3d:70:fc:0b:1d:ef:10:1c:60:84:5b:34:4c:09:d6:
68:54:38:00:46:f6:8c:c6:67:79:11:70:4a:65:d3:
f1:0d:f9:76:64:bc:76:20:aa:f5:af:f6:c1:c0:3d:
c4:42:84:2d:ee:70:4e:90:6d:4b:72:85:ea:58:b5:
9b:96:46:f6:04:c3:e7:e9:37:5a:6e:3e:c6:d6:03:
8e:cb:2c:9e:1e:b3:64:b5:14:c7:60:22:00:3f:f0:
d7:7a:74:55:58:2d:85:10:55:fd:2f:bb:64:40:b7:
17:6d:86:b4:b9:a7:82:54:25:af:44:b1:cd:84:53:
0b:58:fb:64:99:c5:fc:27:0e:f6:49:5d:15:42:c1:
90:b2:68:43:aa:a0:12:ce:91:10:62:68:cf:d4:8a:
32:d0:5b:4d:f4:45:3b:0f:ed:b2:ff:9e:df:d2:d1:
8a:a2:5d:dd:b2:da:6e:f4:1b:05:b4:11:60:e2:a4:
a5:bd:48:01:43:40:e4:4d:03:77:57:2b:d6:6c:9f:
63:08:dc:3c:04:b6:3c:24:f2:2f:91:95:8d:5c:79:
98:0d:1d:6f:dd:e3:97:29:ef:64:4b:c8:c6:02:78:
cb:84:76:af:4d:9d:3b:ab:f9:55:64:8d:24:54:5a:
e0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:85:16:3E:9A:DB:4F:63:2F:0E:7C:14:67:4A:82:03:C1:9F:3F:3A
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:8b:57:4b:ce:e1:a4:96:d6:ea:74:9f:be:f2:02:55:3c:d9:
dc:cb:e7:6a:2f:1f:d1:e0:d8:51:49:2e:5f:3d:7d:5e:46:55:
3d:2a:cc:5d:01:a8:b7:b5:e5:15:04:35:2e:c3:65:81:21:75:
cb:21:53:be:99:7b:bb:24:a3:af:81:af:af:2a:f0:4b:bb:31:
b7:7f:d0:93:8a:7b:e3:b9:57:ac:fe:d8:3a:64:c3:e5:11:10:
4a:44:b3:82:d7:fe:a3:68:83:3c:de:fa:ab:96:8c:03:a3:32:
08:82:5e:e6:7f:49:37:7b:43:68:8e:ad:bf:ae:b1:99:34:fb:
3c:9f:f4:ff:ee:0c:5b:03:df:64:8d:f1:18:41:74:13:02:7d:
ff:a8:8f:ad:39:62:b3:27:df:67:a9:35:2f:09:ad:77:a0:a0:
00:b6:9a:05:02:ad:ec:31:31:01:34:66:c5:a0:9d:12:f8:bc:
96:51:75:d5:e1:e9:02:ad:d2:a8:4f:22:c1:7d:fd:50:7b:d6:
6b:16:c4:82:6f:8a:e7:40:82:fc:a8:f2:5c:07:54:4c:f8:14:
1b:b0:06:35:69:e6:ba:ae:7c:45:df:53:28:c2:3c:20:14:15:
b5:f0:05:86:55:a3:22:bc:76:5d:b6:77:06:5e:51:d8:df:6b:
79:ea:50:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:37:20 2026 by rpki-client