Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: soWCS400oBHRZ4cnL9zgqRprN6TeGmb+ueVaoS9B9BQ=
Subject key identifier: 3E:CD:F6:28:CA:DA:43:90:F7:AF:BB:C5:95:00:00:53:5F:C5:AD:EB
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 019E1FB581DA4BDD1320AA6E6B6A853957A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 185B
Signing time: Wed 13 May 2026 05:00:49 +0000
Manifest this update: Wed 13 May 2026 05:00:49 +0000
Manifest next update: Thu 14 May 2026 05:00:49 +0000
Files and hashes: 1: HqknbCtl1Axe3TPw1P6jDONpLVc.roa (hash: ZnfnJYZ+e5B0J97RREAVHfbNjcFtOONy33iXAx75Pag=)
2: XUSo3Kod1tZHWF61VODjOx3wrpM.roa (hash: QhGQD15vAX85W4GYn0mpZU7ZappGzzCqkYs2qWxrAto=)
3: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: 2mzxtuz1dpvBQ3yIP1ANGk5DlYS0CHp8rOLcWt9s8z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:81:da:4b:dd:13:20:aa:6e:6b:6a:85:39:57:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: May 13 05:00:49 2026 GMT
Not After : May 14 05:00:49 2026 GMT
Subject: CN=3ecdf628cada4390f7afbbc5950000535fc5adeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:31:41:33:a0:96:ce:ba:d0:37:f0:68:e5:63:
52:99:5c:a7:4b:9e:30:b7:90:d1:b4:6b:9a:a5:97:
59:5f:3c:5a:0c:06:81:dd:2c:43:9b:68:b3:18:56:
4a:db:fa:41:89:72:4f:5a:75:f3:c5:aa:a5:40:f7:
2c:36:09:b3:90:b7:1a:6d:01:73:72:0c:cb:33:20:
93:40:44:dc:e3:2e:8f:8a:59:35:75:05:f5:dc:e9:
18:37:33:71:4b:89:10:48:56:93:e6:df:71:bd:37:
ce:03:f4:67:b2:4a:6f:b3:77:a0:50:12:bf:d8:45:
5a:da:1e:0e:34:1c:19:1b:b0:50:44:30:b3:b7:32:
e2:ae:b2:f1:1c:2d:dd:bc:37:3f:18:d2:1f:59:06:
34:89:97:02:89:58:50:41:97:5b:12:9c:24:8a:b5:
2a:20:65:90:d7:f8:e0:33:d7:23:b2:e1:31:45:86:
a2:73:b7:a0:9a:30:16:9c:7b:4b:55:86:25:49:e1:
00:02:d9:50:bb:f0:36:30:90:0e:6a:d9:8d:4e:37:
2d:0f:b8:9a:d3:9a:c4:1a:16:81:18:71:57:85:50:
69:3c:6a:d7:31:fa:ce:7d:51:36:49:ec:37:51:bf:
36:6b:32:5f:85:1e:68:04:90:0d:c6:6f:6b:39:81:
e3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CD:F6:28:CA:DA:43:90:F7:AF:BB:C5:95:00:00:53:5F:C5:AD:EB
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e6:66:ad:54:fc:1a:69:14:92:14:f7:44:c0:1a:df:14:3c:
44:f1:ea:30:97:b1:75:73:18:49:e8:36:b4:ce:bc:77:3e:af:
95:6d:8a:f9:cf:af:4f:e3:ee:79:4d:02:d0:92:0c:aa:e9:cf:
48:4c:0c:bb:83:e0:a8:7c:3d:36:ef:3e:92:5a:4b:b9:fa:12:
d1:db:93:43:80:c7:81:43:b3:84:c4:84:41:f3:5e:68:07:e0:
7c:68:57:fd:4f:d1:12:0b:e7:4d:ad:9a:3b:51:ec:76:04:7c:
22:0f:67:4a:27:aa:8f:68:5c:da:69:d4:12:93:e0:93:c8:89:
f9:2b:8f:96:2c:e2:73:2c:73:f7:90:a9:90:97:f6:3e:e1:9f:
6a:23:6c:04:81:d8:a5:a3:6f:b1:ba:55:9e:a4:75:dd:f1:b1:
b9:6d:79:3b:04:e7:0d:a7:08:58:d7:f2:ab:e3:ff:2d:4f:a7:
48:23:16:61:b3:df:be:b5:27:b6:03:45:03:9b:27:49:8a:30:
30:44:38:e6:04:42:46:d8:97:35:fd:28:be:1d:f2:a9:c8:56:
e4:1c:53:90:81:a6:87:2b:f8:77:4f:1d:3e:f9:03:bf:4f:97:
1d:8e:e6:72:de:53:cc:57:ab:cc:e6:99:d9:fa:e5:9d:50:c4:
1e:9a:e0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:43:15 2026 by rpki-client