Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json)
Hash identifier: awkK9E4Ul/DuJiRjNUtAumBKtMW+QCdNIPC11rJuyz4=
Subject key identifier: 04:A3:81:1C:E8:20:8B:AD:50:21:FF:38:BA:82:CB:FE:D6:8D:B8:9E
Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Certificate serial: 019E1DFEA7188469D7537B51D977ACAF0163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 21:01:28 +0000
Manifest this update: Tue 12 May 2026 21:01:28 +0000
Manifest next update: Wed 13 May 2026 21:01:28 +0000
Files and hashes: 1: a1IDt2xomxWARvsJeU8MLNXS4IU.roa (hash: 426ydjesv20i56PFyO1tKmNiavKTm2qYefp1CVawqKM=)
2: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: BAYSjlmlQocaHX+x1p83K8MJe3pYpwUtCvEPTtNsuaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:a7:18:84:69:d7:53:7b:51:d9:77:ac:af:01:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Validity
Not Before: May 12 21:01:28 2026 GMT
Not After : May 13 21:01:28 2026 GMT
Subject: CN=04a3811ce8208bad5021ff38ba82cbfed68db89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cb:44:d8:08:02:25:4d:ba:88:aa:b8:e7:15:
52:16:be:88:f8:08:a3:71:94:76:23:3e:bc:9b:81:
a7:86:fd:d9:50:83:43:59:b4:c2:c1:bb:c9:83:11:
fd:4f:60:6f:92:f1:34:31:5b:7e:2e:5b:1d:64:16:
f3:23:a7:39:77:28:b1:92:21:53:e3:9c:35:b2:ca:
02:da:12:02:1f:ec:61:b8:c6:ca:e8:0f:17:e9:04:
95:09:fb:10:3a:77:a1:c8:ed:71:ff:9f:0b:1f:16:
98:e4:b2:27:73:90:e9:40:ee:31:80:bb:13:d5:58:
4b:4e:79:29:23:0a:89:2f:45:c8:f4:30:5a:6f:e6:
15:1c:5a:1b:34:de:a0:13:fe:ce:41:49:d0:1b:53:
58:27:94:30:68:78:46:ac:50:ff:5e:d0:04:2f:3b:
dd:f4:ee:74:15:1a:cf:57:9c:f8:98:48:a7:a1:a9:
54:ca:2c:59:bd:89:a0:5f:db:d0:d0:64:3e:45:ce:
eb:10:90:2e:3b:9d:55:d5:5e:04:4a:4a:ba:c2:eb:
4c:b9:92:1d:00:32:4f:9a:a4:4a:90:1e:eb:7a:09:
f6:7e:5d:02:60:6b:eb:c8:f9:33:bb:19:ce:d6:02:
ff:3b:fa:ed:aa:af:43:af:83:fa:5c:e5:94:6c:d1:
af:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A3:81:1C:E8:20:8B:AD:50:21:FF:38:BA:82:CB:FE:D6:8D:B8:9E
X509v3 Authority Key Identifier:
keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:77:8a:2b:ef:9b:32:da:55:a3:ca:3e:e2:e6:ef:6a:cf:cb:
a6:d6:7d:1e:07:32:96:be:5d:4c:0b:4b:11:f8:9c:5b:f2:92:
4b:4c:41:9a:a6:36:f7:db:35:96:8f:b2:df:8a:60:89:12:38:
20:3c:60:82:e5:ec:5c:16:2b:95:d7:3f:5f:9a:cd:b7:b9:f6:
56:87:e6:28:a4:4a:2f:12:2d:8e:56:0d:2d:68:0d:df:5b:ec:
bf:a3:12:e2:50:9e:a5:f8:e3:c4:13:8b:16:1c:2b:aa:6f:1f:
c4:2a:e4:8b:7f:7c:9d:61:d0:a0:d5:e5:ed:be:fc:7c:96:36:
45:47:e5:b0:68:dc:ee:65:d9:3b:d0:57:d0:d0:36:45:07:53:
ae:49:b9:14:50:e4:bd:e8:85:ab:20:2a:0d:40:f1:8c:ad:63:
46:2b:37:81:14:37:38:87:46:eb:df:c5:42:ac:d7:cc:fc:eb:
c8:83:14:2e:d2:c4:09:19:c5:71:7e:2e:14:11:41:2b:84:66:
fd:61:06:9c:b5:c2:5d:d5:39:15:85:eb:fe:eb:ad:eb:b9:08:
cd:3d:06:ec:9a:f7:e4:6b:32:9c:f5:0d:8f:2e:a1:ba:fc:33:
db:a5:bd:d0:cf:38:0c:62:cc:b2:38:93:9a:12:14:6b:fc:68:
c4:7a:94:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:08:17 2026 by rpki-client