Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: bvwWuKv94f8NAsb+0eSGAYH40C+fXp5dt8Dni8vRkaE=
Subject key identifier: 6A:91:EF:90:2B:D8:52:4E:55:44:0A:9D:36:B9:9D:E8:91:87:96:84
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 019D25BA93BB9E7FBAF912697E6CE225032B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 0AE5
Signing time: Wed 25 Mar 2026 16:01:17 +0000
Manifest this update: Wed 25 Mar 2026 16:01:17 +0000
Manifest next update: Thu 26 Mar 2026 16:01:17 +0000
Files and hashes: 1: 1QpbjmDLVcUMqnNrCbGP4FA5FaY.roa (hash: 5prhYgOZoGVGdhCQditPaOssQQZBoW2n1oXkHDCQF6E=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: iiSsGbzwJKOjk4+zsc2TximBBWLTWLecETFYld/MCL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:93:bb:9e:7f:ba:f9:12:69:7e:6c:e2:25:03:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Mar 25 16:01:17 2026 GMT
Not After : Mar 26 16:01:17 2026 GMT
Subject: CN=6a91ef902bd8524e55440a9d36b99de891879684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:54:d5:b4:9a:3a:af:09:5e:3c:38:3d:82:5f:
e5:8e:64:60:3c:7c:30:7f:e9:a5:be:4a:44:62:1a:
32:38:b5:69:85:02:fd:fa:fd:a4:bd:90:d2:16:6f:
a1:64:d8:bd:36:bd:f5:a8:3e:3b:ce:73:5f:d0:e9:
f0:03:12:22:dd:84:1a:b4:1b:2e:93:55:2c:1e:3a:
a1:5e:4e:64:46:7d:34:b6:d0:51:f3:22:39:ab:3c:
99:c7:d9:e3:d5:33:21:92:35:e7:06:ae:8f:6a:f7:
de:65:54:20:8f:0b:01:59:0d:ce:6f:f1:22:e0:09:
f1:7e:a1:ea:60:69:84:28:19:db:73:ab:65:16:37:
a7:63:1c:a6:22:2c:b3:5e:84:ad:62:55:7a:a7:71:
ae:eb:68:a2:45:fe:68:9f:c0:f4:ef:f2:31:6e:04:
b6:f6:e3:a7:8c:2d:53:de:e0:2d:22:56:56:79:aa:
b3:99:ed:a8:c2:50:33:b4:04:1c:18:1b:48:d0:eb:
a3:05:9f:07:72:0c:bb:40:1c:43:2c:f7:75:01:e5:
d7:c6:e4:17:5a:ab:43:fb:0e:cd:d4:0c:c7:34:9f:
aa:c9:ed:a8:b5:8b:8c:90:fb:a6:49:30:b9:e6:50:
11:95:36:78:07:24:ce:25:37:92:96:ea:b9:d9:87:
28:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:91:EF:90:2B:D8:52:4E:55:44:0A:9D:36:B9:9D:E8:91:87:96:84
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e5:24:f0:de:37:25:0f:55:53:bb:96:7a:73:94:6a:d3:1a:
70:aa:38:dc:ce:35:c7:1c:dd:0a:2e:d3:32:7d:c8:79:77:0e:
1b:7d:cf:3e:b7:05:32:c5:01:3b:9e:b7:a1:7d:ac:ff:7f:ad:
bd:e7:da:04:a6:93:a0:4e:63:03:6f:bf:5b:10:59:09:bc:89:
40:ac:50:c6:f8:f2:75:bd:6f:8d:03:f0:dc:63:94:c4:2a:68:
27:6c:4f:ee:9b:7e:bd:60:3b:10:58:46:35:a1:a3:77:b3:43:
11:2d:9e:f2:0f:1e:fb:1f:c9:93:94:59:87:7d:71:3e:9e:c8:
c1:1f:c0:6b:41:b0:68:55:66:e7:4a:fc:37:8b:f7:a9:8e:6c:
dc:7e:86:e8:bc:a0:2f:ea:fd:47:cd:08:7b:0e:a4:c3:3f:b5:
3c:bb:10:4a:7b:19:cf:10:5a:3a:66:5c:4c:3b:a2:cf:9e:84:
f6:6b:b0:a1:85:ae:3a:ed:90:6d:b5:db:8c:33:6d:ef:44:75:
39:d9:d5:9d:38:38:98:12:d3:b9:68:86:d1:25:b7:31:43:1a:
f6:50:0d:aa:93:a1:b8:3b:c3:18:cc:6e:77:a1:b5:de:4a:ec:
31:96:1b:71:c3:53:c8:70:52:18:0c:dd:89:1d:56:cd:1d:2b:
1a:cf:27:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:11 2026 by rpki-client