Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json)
Hash identifier: AzlgayQ5Pac68RYnP2Z0jpg9SUXsIMBqSj888xB8x+o=
Subject key identifier: 41:54:6C:A8:7F:C9:D1:BF:C7:A8:20:A2:AC:B3:00:49:B4:6B:81:8F
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 019E1DC71E6071FFDB9F290A5A1C7789721D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 20:00:49 +0000
Manifest this update: Tue 12 May 2026 20:00:49 +0000
Manifest next update: Wed 13 May 2026 20:00:49 +0000
Files and hashes: 1: 9V6-AqA_4zEech3d9e-zrslLlYg.roa (hash: 2ZWDpKA0ocbpi4aN6axitNn05JRLFs0cLkW8mMIC92U=)
2: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: KzvzoD6syyVMnzPla8LQ/ySWCEAodkrg8TIoHmEeLEg=)
3: s_Oj6JBKTNB4x3fb0XdQ9zvwP1o.roa (hash: 0jQdDlhdIZaz2WGN97YHIXqbtv/kRGloASKQBe2397Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:1e:60:71:ff:db:9f:29:0a:5a:1c:77:89:72:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: May 12 20:00:49 2026 GMT
Not After : May 13 20:00:49 2026 GMT
Subject: CN=41546ca87fc9d1bfc7a820a2acb30049b46b818f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9c:80:24:d9:27:3c:e1:76:c8:c3:ee:9f:93:
d0:aa:9c:14:05:04:e5:74:21:7d:94:40:02:90:47:
d1:84:56:c7:01:62:b3:76:42:f5:e0:ad:95:e9:36:
9c:15:30:60:9f:93:fe:42:6c:ec:23:24:fe:d5:38:
70:53:fb:ca:2f:5c:40:d8:da:43:4f:5d:75:34:45:
50:cf:00:47:6f:b6:1d:f2:38:53:33:72:7e:19:be:
62:86:73:b0:b9:7e:b3:8d:13:d3:9f:d5:e9:c1:b8:
66:b3:f2:6f:cc:fa:2e:62:47:d8:4e:9c:f1:fc:3d:
43:ad:81:57:a9:6a:e3:1e:4f:2b:cf:44:4e:bb:31:
f6:27:de:a3:5f:51:7a:49:64:ba:c7:28:be:6e:82:
48:ce:8a:e9:ca:d2:a9:61:19:77:79:19:09:31:9b:
a0:d4:d4:c4:85:be:59:4e:80:04:f0:53:c6:ed:1e:
2c:0c:b4:fd:d0:38:29:ab:05:84:e9:da:d6:b3:1a:
d4:8e:3a:f1:96:da:8d:40:df:99:cb:b6:d3:59:a2:
69:87:15:4f:c8:9d:fb:18:77:55:95:4b:90:39:e6:
0f:4c:5a:63:8e:e4:be:e1:37:65:1c:11:01:bd:91:
34:36:1f:15:77:ad:e0:a7:5b:70:37:39:c6:12:8b:
02:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:54:6C:A8:7F:C9:D1:BF:C7:A8:20:A2:AC:B3:00:49:B4:6B:81:8F
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:91:9e:18:2f:92:cd:31:77:6e:86:42:ad:0f:bd:84:54:8e:
d9:a4:dc:a1:f3:fc:a3:a1:5f:68:60:be:1e:e0:01:47:83:0b:
e1:ad:45:4a:2f:5d:f9:e7:69:de:62:40:2e:da:4a:a1:55:2b:
53:29:04:65:0f:4e:8f:c7:35:df:bf:e8:29:0d:72:3b:6b:0e:
c5:e1:7e:74:1f:ca:11:10:2a:fb:2b:6e:d7:b2:73:34:5d:28:
81:1c:fa:51:82:29:9c:0c:1e:50:0e:ab:d1:9b:4f:2e:5b:84:
74:c2:8b:0b:e4:df:2d:46:a7:50:9d:2c:04:02:92:70:48:98:
c7:99:a4:ba:de:da:89:c6:66:be:49:8f:69:a3:33:51:ee:bf:
3c:a7:02:a2:a0:cd:bb:0d:e3:25:20:5a:ff:3e:50:71:69:ea:
e9:73:ee:88:7d:67:d1:f2:fe:86:20:15:56:ca:6f:6d:77:13:
37:af:83:82:4a:47:a8:cf:b7:57:c6:0b:2a:99:d2:79:18:7f:
d0:2d:41:75:c4:25:51:c3:45:64:5c:f4:9c:ba:e5:2e:91:d0:
e6:b5:df:3d:a1:ae:89:ae:bb:1f:40:ca:24:b4:7b:c9:43:3e:
83:a4:8f:b7:eb:9c:c9:93:7c:4b:3c:89:1f:36:18:42:98:30:
9e:56:03:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:35:14 2026 by rpki-client