Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: 7cJUKU3yMtzK7Zy43zbVunVJKZOXNsb8r07ofzfLw5E=
Subject key identifier: 41:0F:62:FF:24:07:60:F3:8A:FA:DB:F9:9B:71:33:DA:05:1D:91:70
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 019E1DFE1496B08494D4D49D2654FCAFFD31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0BAB
Signing time: Tue 12 May 2026 21:00:51 +0000
Manifest this update: Tue 12 May 2026 21:00:51 +0000
Manifest next update: Wed 13 May 2026 21:00:51 +0000
Files and hashes: 1: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: nZ8Z+zNv3oZLePaZKTFC5LQiwyH3OIxGsMEOY3Qx3Xo=)
2: MaRtt04jowFFk86_uuutN8hcKss.roa (hash: fZU76DAwqdxnrxuVOqFEOQy5RWDLvAlUDG+K/0ngLTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:14:96:b0:84:94:d4:d4:9d:26:54:fc:af:fd:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: May 12 21:00:51 2026 GMT
Not After : May 13 21:00:51 2026 GMT
Subject: CN=410f62ff240760f38afadbf99b7133da051d9170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ef:ea:e3:53:6f:f7:ce:3c:3c:5c:ef:77:34:
81:eb:4b:94:82:90:20:59:6a:57:fd:46:7d:50:e9:
0f:75:30:4f:15:ee:17:36:4c:64:6b:69:10:22:60:
28:61:0d:1b:42:93:d8:c4:fa:bb:71:f2:de:a4:22:
2b:52:9b:a9:63:8a:1d:e9:f2:88:8e:50:8f:00:fb:
31:95:e2:d6:f4:03:5f:64:3f:15:dd:bf:c2:56:25:
2c:79:64:62:5c:9c:57:df:03:a3:dc:11:80:db:dc:
08:e5:00:72:2e:e2:ec:55:81:02:72:42:cb:ae:c2:
bf:9a:1b:11:55:1b:19:dd:54:a0:cf:eb:e6:36:5d:
55:f0:db:89:6b:e7:23:d2:b7:d1:98:98:6c:d2:c3:
b2:6c:a5:d5:47:a3:46:2c:cf:a3:71:de:4c:13:fe:
75:8b:6f:ee:96:ee:46:9d:f7:2a:25:f6:f5:83:47:
eb:06:49:ed:1c:b4:5f:b2:59:15:42:dd:f2:2a:0e:
b9:f6:5b:d8:60:e1:2f:0c:43:a0:51:69:fc:7f:8c:
58:3e:62:f3:94:18:47:03:29:7d:b3:6e:7e:9b:e9:
f6:21:12:9f:58:b6:97:ab:13:92:07:fe:56:df:21:
66:20:20:e0:51:33:47:65:e5:e5:95:1a:7f:43:71:
f1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0F:62:FF:24:07:60:F3:8A:FA:DB:F9:9B:71:33:DA:05:1D:91:70
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:65:97:02:a0:8d:ce:10:a4:64:6c:9e:59:7e:1d:23:28:51:
60:16:db:22:08:cc:cd:f1:3f:b9:c7:5f:fe:bc:76:3e:1c:fb:
6e:86:2a:86:99:ac:05:f9:45:68:79:7d:a5:42:a3:30:73:fb:
6e:0d:d1:d4:50:2b:63:d6:4b:60:39:06:60:07:c4:91:68:45:
0b:c2:57:47:31:5c:2e:d6:e6:68:ee:63:a0:87:60:1b:f5:db:
91:80:42:e4:fa:9d:e6:d1:8f:e5:0e:3e:5e:90:64:7e:6f:59:
2b:57:7f:f4:4f:a1:7f:88:f9:e8:0a:5a:fc:29:b6:3d:7c:b4:
c1:dd:ce:45:b2:45:3a:e8:c5:d8:96:85:f2:f6:51:07:97:6f:
92:59:9d:2a:ce:15:3e:86:ca:98:c5:9f:b5:ed:1e:0a:06:76:
f3:3a:5e:c8:4d:51:24:b7:6c:a3:f9:a2:d8:2c:5d:96:d3:d6:
99:ac:44:26:ad:79:d1:ad:50:5f:cb:41:c7:9f:0e:65:68:ab:
c5:cf:8c:dc:28:c1:a6:2d:83:a0:c2:b4:9b:96:50:f1:33:51:
70:33:65:f0:fb:af:87:db:cf:64:37:0f:e7:7a:d5:ca:de:9c:
ef:df:f1:b6:2b:f9:69:99:34:0e:8f:bb:bd:89:c2:79:bd:e4:
c2:46:2d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:20:27 2026 by rpki-client