Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: 6WcTTVMoZz6Irg4Adma3kF4yp8piMdw+IMGC1wjc/Ao=
Subject key identifier: 9E:93:DB:F3:6A:C8:61:13:1F:AA:DF:24:A8:47:D9:48:E1:2D:01:EC
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 019E1CEC08437B1B670FD6C3D73C67A0ACCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 16:01:30 +0000
Manifest this update: Tue 12 May 2026 16:01:30 +0000
Manifest next update: Wed 13 May 2026 16:01:30 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: vvwSlWzib8/EX7Ma+hlr3G6gc6Sk3TIR3NRoAyFnk3Y=)
2: GSCpplFtfkTN5C3emWdSBHM2s_U.roa (hash: uafjHLArE68enYzHEZipyUcJy+2TVAQsxPWk3VzbutI=)
3: T4PSpNaqkAOQJjuBdAFdx3zKgyY.roa (hash: sU9bxlF1T+hrGzv9LaagfpQyLm85yMt1O7DFm4yEcJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:ec:08:43:7b:1b:67:0f:d6:c3:d7:3c:67:a0:ac:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: May 12 16:01:30 2026 GMT
Not After : May 13 16:01:30 2026 GMT
Subject: CN=9e93dbf36ac861131faadf24a847d948e12d01ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3f:b1:af:10:52:30:c3:0a:e0:21:6b:d4:7a:
c2:67:a5:56:94:7f:c7:85:7c:e4:2e:77:4f:a5:90:
34:60:c5:72:38:5b:50:67:ba:b4:a9:c0:80:3f:db:
24:91:5a:e2:12:c0:de:d2:86:56:b9:77:46:e7:10:
e3:5a:ba:c1:4e:0a:4a:62:ec:96:97:31:37:e1:38:
cb:9e:66:f1:cf:a4:bb:70:f0:b2:c9:40:01:b9:19:
d3:1c:e0:56:7a:bc:97:56:5c:c7:88:13:a8:d9:7a:
0a:71:d9:8e:84:47:a9:1d:63:06:f2:dd:2b:f8:60:
14:28:b4:14:ad:e1:fe:97:0b:b7:0f:11:ef:39:b8:
d3:d2:61:dc:d2:eb:04:3c:04:a7:95:dc:87:1f:7c:
46:ca:28:b8:2a:4b:83:80:ed:de:55:06:97:d7:8f:
eb:8c:43:22:f4:ef:68:2c:18:81:72:de:2a:02:da:
36:77:92:e6:67:ad:c1:03:d6:18:9a:47:30:f0:ba:
75:ba:a0:85:bb:bd:91:14:6f:30:47:4a:b1:dc:45:
b0:e1:39:68:25:c4:c4:f3:f1:ee:31:b0:4f:b6:5f:
49:84:5e:48:d8:4a:a2:58:0c:6e:4e:d5:65:a9:9e:
dd:79:9d:e0:cd:e4:87:44:da:97:2d:2b:07:c3:d4:
a0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:93:DB:F3:6A:C8:61:13:1F:AA:DF:24:A8:47:D9:48:E1:2D:01:EC
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c0:f0:5f:b9:73:b4:59:c9:ce:f5:e5:5c:de:01:54:63:71:
b8:39:55:f9:cf:4e:3d:d9:5a:97:e1:c8:06:38:87:05:45:6e:
51:49:e6:4d:7e:f4:74:6b:f0:3b:52:f1:9f:49:c5:06:5c:95:
1f:6e:a2:76:e5:05:97:50:20:85:db:a9:17:a8:2f:f9:fb:e4:
1c:b4:08:fc:5b:ff:26:ed:88:7c:b6:61:d0:c5:80:3b:07:78:
da:cc:f2:66:9b:32:34:ae:13:7c:13:c9:5b:10:0f:24:d2:25:
f4:76:9e:a8:c2:d3:41:0d:f4:df:5f:fa:16:e3:14:a6:c7:8a:
f3:db:dc:b6:29:f2:bb:18:24:db:14:5a:23:4c:2c:1e:a7:f0:
a1:f7:a4:ab:f0:46:1e:16:53:e0:0c:3f:06:a2:bc:8a:e1:13:
cc:1e:99:d0:54:ac:92:47:00:e3:38:01:9b:d3:48:95:ec:a8:
c4:4f:e5:9d:b3:ab:25:17:b1:ed:35:c6:f1:2c:5f:9a:dd:50:
a3:7f:54:de:79:43:e7:f5:13:74:69:73:b4:e6:4a:d1:2b:77:
ed:4a:70:e8:43:9c:a8:a1:c2:d3:25:a0:09:0e:7e:50:f5:85:
13:16:7e:60:8b:a9:8f:7e:97:3a:ea:44:35:53:4c:74:86:3d:
2f:91:77:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:43:57 2026 by rpki-client