Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json)
Hash identifier: 84c9H7Dlyc0FQbUstqP7eILCRIheCtqO9rTeLwSoh3Q=
Subject key identifier: 64:F8:66:74:FF:D2:32:14:F3:C4:F4:EF:14:58:F4:4C:76:83:06:38
Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Certificate serial: 019D2AA94D1597A59664E8ABFA153E7D247D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 15:00:31 +0000
Manifest this update: Thu 26 Mar 2026 15:00:31 +0000
Manifest next update: Fri 27 Mar 2026 15:00:31 +0000
Files and hashes: 1: a1IDt2xomxWARvsJeU8MLNXS4IU.roa (hash: 426ydjesv20i56PFyO1tKmNiavKTm2qYefp1CVawqKM=)
2: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: +ISnoPnET66lg6T2k3yenDgiuxmZCs13o1uehNK0yxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:4d:15:97:a5:96:64:e8:ab:fa:15:3e:7d:24:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Validity
Not Before: Mar 26 15:00:31 2026 GMT
Not After : Mar 27 15:00:31 2026 GMT
Subject: CN=64f86674ffd23214f3c4f4ef1458f44c76830638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:13:5e:be:c8:82:fb:38:c2:6a:5e:d7:db:ea:
08:db:60:5f:a1:6e:6c:0c:00:82:c1:7a:e0:ce:14:
a8:d6:b5:26:60:8c:ef:81:8d:1f:3d:e0:29:70:5e:
f0:c4:41:51:af:1a:f2:74:25:99:38:bd:e6:da:a7:
d6:9b:41:ba:f0:99:d4:fb:44:c5:eb:26:2f:1c:4a:
89:85:0a:9e:f5:49:fd:a6:19:32:b2:f9:23:3a:28:
d9:4f:d3:24:4b:f7:ea:62:eb:d1:23:7c:4a:1b:3d:
a7:66:c1:f0:b9:0e:45:2b:41:c8:38:38:ef:98:9a:
65:50:e4:8e:3f:1f:44:38:4e:a5:a6:0a:92:29:10:
9d:58:00:7d:cf:c5:a3:a2:82:e5:f7:62:73:4c:30:
7f:35:e2:84:28:3f:68:cf:6f:9a:3c:b5:aa:09:0e:
88:09:31:6e:f6:b6:ca:52:9f:c7:61:42:b0:c9:b8:
fc:ea:05:b0:f1:25:0d:c5:df:89:d6:e1:aa:c5:af:
fc:cc:b6:c7:49:b3:ba:c6:82:e8:a6:d4:c5:99:8f:
f8:ad:e6:14:84:7f:44:fc:ac:a6:d9:51:c0:0c:66:
b4:13:35:68:72:79:29:39:ce:ae:a8:55:37:36:47:
1b:67:89:38:6e:e2:f0:0e:db:f7:77:3d:98:9e:e5:
b3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F8:66:74:FF:D2:32:14:F3:C4:F4:EF:14:58:F4:4C:76:83:06:38
X509v3 Authority Key Identifier:
keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:70:61:95:0e:d4:5a:14:f0:d2:bf:97:25:2b:52:cf:f3:9b:
71:b1:89:bb:d2:e7:7b:c8:e6:be:e2:9a:b3:b6:2e:6c:ec:1c:
9a:51:57:a1:28:b4:84:4d:9f:b8:e6:43:27:ea:ac:b5:3d:5c:
3c:6e:5b:a3:d1:33:3f:31:b5:8f:b0:74:97:e6:ad:ef:17:34:
c7:38:33:7c:16:de:68:67:fa:ad:7e:35:f5:7d:34:6f:e6:bd:
0e:e6:11:9e:92:05:cf:e6:2d:04:5f:2a:74:a9:95:b6:35:5e:
a0:58:bb:21:be:95:d0:05:38:50:a3:91:ca:04:db:ec:4f:d8:
3b:44:41:00:ad:a7:db:f8:1e:cb:58:3e:95:cd:96:07:b7:3a:
ae:f2:1d:3e:8d:b2:c9:76:2f:2a:46:dd:18:e8:b6:40:ef:cc:
ce:3d:d4:f5:ab:24:13:32:8d:f0:de:11:a7:d3:7d:e7:4b:9b:
a6:79:91:34:2f:d9:8f:c9:75:e5:e0:cb:9a:b3:8c:13:20:d9:
d2:7b:ec:50:a4:c1:be:61:db:a2:64:74:3a:97:f5:a3:b9:38:
87:c5:1e:ce:18:8d:fd:58:2d:87:73:3f:76:85:4b:52:48:e6:
31:d7:67:13:ec:f7:f5:73:af:a4:cc:92:d2:2c:04:44:85:e7:
13:02:88:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qqU0Vl6WWZOir+hU+fSR9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhkYjdlNjk5MTI3ZGE0YzFjNWE1ZTkzZjQ0ZjMwMmI2
Mjg2M2IwHhcNMjYwMzI2MTUwMDMxWhcNMjYwMzI3MTUwMDMxWjAzMTEwLwYDVQQD
Eyg2NGY4NjY3NGZmZDIzMjE0ZjNjNGY0ZWYxNDU4ZjQ0Yzc2ODMwNjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5BNevsiC+zjCal7X2+oI22BfoW5s
DACCwXrgzhSo1rUmYIzvgY0fPeApcF7wxEFRrxrydCWZOL3m2qfWm0G68JnU+0TF
6yYvHEqJhQqe9Un9phkysvkjOijZT9MkS/fqYuvRI3xKGz2nZsHwuQ5FK0HIODjv
mJplUOSOPx9EOE6lpgqSKRCdWAB9z8WjooLl92JzTDB/NeKEKD9oz2+aPLWqCQ6I
CTFu9rbKUp/HYUKwybj86gWw8SUNxd+J1uGqxa/8zLbHSbO6xoLoptTFmY/4reYU
hH9E/Kym2VHADGa0EzVocnkpOc6uqFU3NkcbZ4k4buLwDtv3dz2YnuWz+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGT4ZnT/0jIU88T07xRY9Ex2gwY4MB8GA1UdIwQY
MBaAFGg4235pkSfaTBxaXpP0TzArYoY7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQt
MmY5Y2FjNzAwZmE1LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQtMmY5Y2FjNzAwZmE1
LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbHBhlQ7U
WhTw0r+XJStSz/ObcbGJu9Lne8jmvuKas7YubOwcmlFXoSi0hE2fuOZDJ+qstT1c
PG5bo9EzPzG1j7B0l+at7xc0xzgzfBbeaGf6rX419X00b+a9DuYRnpIFz+YtBF8q
dKmVtjVeoFi7Ib6V0AU4UKORygTb7E/YO0RBAK2n2/gey1g+lc2WB7c6rvIdPo2y
yXYvKkbdGOi2QO/Mzj3U9askEzKN8N4Rp9N950ubpnmRNC/Zj8l15eDLmrOMEyDZ
0nvsUKTBvmHbomR0Opf1o7k4h8UezhiN/Vgth3M/doVLUkjmMddnE+z39XOvpMyS
0iwERIXnEwKI/g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 22:05:09 2026 by rpki-client