Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: P+TD8YQRpnjXYdoyHvc1yNtuzd85wFspv+niQdRf+To=
Subject key identifier: F5:F4:D9:39:FC:A9:CC:48:19:D5:E7:91:E2:BA:21:90:2B:FB:51:3A
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 019E216DAA42D4CE78CD5AF596E19D5F0A83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 13:01:35 +0000
Manifest this update: Wed 13 May 2026 13:01:35 +0000
Manifest next update: Thu 14 May 2026 13:01:35 +0000
Files and hashes: 1: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: gEUQK+tdeiIvnHGKOg3lhu3ahk4KXFsLYuYR97c8yEg=)
2: hnuU_eck5x_jb8etQeMJYN7agCw.roa (hash: WjEdC6KQw2C4VlNncqPImg4Zkitm7oOt+PVE/RuPsE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 13:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:aa:42:d4:ce:78:cd:5a:f5:96:e1:9d:5f:0a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: May 13 13:01:35 2026 GMT
Not After : May 14 13:01:35 2026 GMT
Subject: CN=f5f4d939fca9cc4819d5e791e2ba21902bfb513a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:87:d3:d2:4e:b6:30:68:30:d7:80:6b:51:17:
32:93:53:da:b0:97:7a:37:2b:18:60:1c:35:c1:e7:
34:5a:5a:dc:c9:ca:cb:5f:dd:09:cd:27:5f:f0:e9:
64:be:e1:3c:dd:d4:5c:dd:28:f7:39:e9:18:35:93:
87:dd:6c:1d:18:8e:51:02:67:ab:83:64:51:f6:2e:
87:bf:6a:73:f1:ec:29:a2:42:46:5b:57:ae:4e:1f:
4b:98:9e:a4:7c:89:1f:ae:36:2a:62:4f:ce:ad:67:
02:3f:14:28:76:be:f3:9b:50:39:f8:60:d2:bc:2c:
85:93:72:22:20:de:2d:2e:11:a6:90:53:c0:78:4a:
0b:18:8f:14:13:42:71:91:0b:32:f3:7a:14:94:4c:
62:01:ca:a8:5e:47:84:50:41:6a:45:db:1f:96:ee:
39:e2:fa:d2:d3:ff:4f:04:5b:59:ea:09:9a:65:af:
84:24:1e:9e:18:42:85:e6:cc:a6:33:cc:18:6f:a1:
ca:83:be:e7:0b:83:d6:0a:69:66:24:13:70:9f:9d:
3f:d2:53:bd:03:c0:49:67:20:55:a9:14:72:49:6d:
a5:03:15:af:80:e3:45:e8:72:ae:06:d1:f0:e1:a7:
87:95:40:d6:09:d6:75:9b:09:28:95:3b:12:97:fb:
ff:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F4:D9:39:FC:A9:CC:48:19:D5:E7:91:E2:BA:21:90:2B:FB:51:3A
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:60:ae:ed:36:99:5d:b7:e0:38:f8:9c:90:5d:75:b7:0a:ea:
dd:9c:90:32:46:db:4c:ef:6c:bc:bf:d5:e3:34:14:89:c4:e9:
96:1b:48:28:5c:e8:98:8a:93:26:24:f2:3f:bf:49:fb:2f:aa:
f2:13:91:5b:5e:7e:75:56:53:e7:65:62:d4:7c:5e:9f:84:6f:
05:cb:8e:f8:a1:8d:55:00:88:5f:86:3e:fa:a1:ae:ac:e2:bf:
7c:3e:a7:a5:97:44:0d:18:05:84:4b:1b:95:08:1c:6b:49:41:
cc:1b:6c:f9:ef:eb:78:2c:db:c3:c2:5a:93:87:15:19:d3:df:
44:6c:96:91:7c:6a:dd:10:a6:84:00:46:53:7c:e2:67:69:03:
5f:29:cd:8b:1c:b1:36:ed:2b:50:67:6c:12:31:37:80:4c:0b:
26:86:5a:d2:ee:88:5e:dc:59:06:d3:9f:46:7e:c9:af:43:a2:
44:4a:12:3f:12:07:d0:9e:cb:db:4a:5f:2c:88:fa:33:28:cf:
0a:ee:da:86:3f:ea:e5:e6:e4:22:d0:19:15:09:7e:73:b5:b4:
2f:d1:6d:f3:e4:f4:84:00:1c:2d:1b:85:60:48:95:64:af:15:
97:1b:ec:4d:2d:93:c2:0b:ac:93:83:cc:39:10:6e:ec:71:fb:
a4:e2:92:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:15:52 2026 by rpki-client