Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
File: AoNhMH79nzq-_mm9FN4OG9YLbmo.mft (raw, json)
Hash identifier: +YBoyHCgg6TaOzS0d679TSdi30akRTaCq0+PrbpP3D8=
Subject key identifier: C8:3D:69:F7:CC:98:A2:25:57:3F:74:98:D5:7A:AB:A4:F9:69:41:6D
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 019E1D59343C1A29FE6D4EF63460E7F8F729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 18:00:45 +0000
Manifest this update: Tue 12 May 2026 18:00:45 +0000
Manifest next update: Wed 13 May 2026 18:00:45 +0000
Files and hashes: 1: AoNhMH79nzq-_mm9FN4OG9YLbmo.crl (hash: xpBO1q0vGhT17wgwSOqE1RbBd+senR28pkHuR/Egjlc=)
2: _xkuMQSwRHi0DljPKAluJEXoLPg.roa (hash: EUEHOabmEGDXpaBHpO2MNJv0dJd+g7oEzMzEMIadnt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:34:3c:1a:29:fe:6d:4e:f6:34:60:e7:f8:f7:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: May 12 18:00:45 2026 GMT
Not After : May 13 18:00:45 2026 GMT
Subject: CN=c83d69f7cc98a225573f7498d57aaba4f969416d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3b:eb:b4:55:d5:55:50:c2:eb:01:45:a7:70:
5f:0e:cb:cd:09:34:a3:eb:61:81:25:e9:80:f6:92:
80:f5:53:94:76:e4:9f:81:1b:7b:ee:dd:17:b7:b9:
2c:47:f4:73:7d:e5:84:0a:ff:02:c8:50:77:54:83:
f0:58:b1:30:68:f3:04:93:42:27:c7:11:77:40:31:
63:76:ef:5e:8a:e6:92:7a:46:aa:84:98:c4:a2:8a:
1a:c7:d6:ef:e0:ec:82:d9:1f:65:bc:36:32:ea:4b:
3d:33:0f:2e:06:ef:dd:70:43:a4:17:24:08:31:59:
e3:e0:7e:51:b0:ab:25:24:20:2a:fc:19:c4:fa:eb:
40:2c:ca:a5:14:7c:bc:0e:a6:07:40:79:65:74:85:
fe:0d:57:f5:a3:59:a6:78:73:99:4a:43:9a:d8:8f:
df:8a:4b:c9:6e:f9:2b:fc:67:5a:d7:af:ed:9d:70:
4e:bd:8d:43:da:6d:ec:13:a2:bc:52:03:fd:8b:65:
31:c9:76:ba:97:40:04:f2:86:37:59:da:3f:19:58:
9d:6a:b7:a0:b3:a5:bf:c0:04:ed:57:80:2a:b4:d9:
a6:0d:b5:43:10:29:15:f3:ec:89:75:e5:0c:78:83:
77:1c:ba:e2:95:e2:7d:6e:95:a8:e9:85:3a:98:e5:
00:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3D:69:F7:CC:98:A2:25:57:3F:74:98:D5:7A:AB:A4:F9:69:41:6D
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:fc:5f:8c:93:45:a4:35:31:2b:7a:aa:c7:16:19:93:cd:83:
3c:73:f3:7c:f6:6d:7f:52:02:e7:52:b4:94:61:58:0b:3b:2b:
b6:2d:ee:76:89:05:42:96:f1:39:b7:0d:45:f5:67:47:97:e0:
82:c7:25:a0:d0:0e:d5:cd:0d:e0:49:ed:f3:25:13:c4:33:a5:
da:9e:7d:c0:4b:65:c0:1a:32:35:00:07:60:dd:e6:5a:3f:87:
27:73:47:9b:31:4e:f0:64:f5:7b:7f:98:15:12:c7:b4:81:96:
f2:61:89:cb:ff:c9:50:7f:f1:b8:42:47:5c:fd:8a:90:bb:55:
c8:be:ea:a3:90:39:ca:ac:79:16:53:19:fc:5f:3e:5f:99:6e:
59:87:ef:df:77:99:03:d7:1a:9b:56:cb:ca:e2:8c:d2:40:9a:
b4:9c:51:15:33:d8:b2:60:c6:7a:cd:8b:9c:18:34:3c:d0:23:
91:de:7e:e7:f0:49:64:1c:67:e3:c7:09:08:8e:e9:3c:cf:38:
ce:5e:4a:48:3a:0d:d7:ba:83:39:28:9d:df:d2:af:b0:5a:26:
52:e4:9a:8c:7c:2e:b8:62:c6:ff:1c:47:cf:fb:88:ac:c2:10:
99:a8:15:9f:a5:03:0f:61:d8:c4:1b:f6:74:6b:ea:f3:da:ca:
9e:b9:22:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:51:52 2026 by rpki-client