Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: KykM1S+o6uyaTTh0iIzyJ7zpcA3G/ch4FWnALYpDJG4=
Subject key identifier: BC:44:89:03:9A:2B:81:55:96:D2:E3:99:18:5F:98:86:54:BE:18:89
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 019E1D907C7DE395B316CB4EB8D011FED351
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 161F
Signing time: Tue 12 May 2026 19:01:08 +0000
Manifest this update: Tue 12 May 2026 19:01:08 +0000
Manifest next update: Wed 13 May 2026 19:01:08 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: 3/fVCJ10g9o1IvuhMCUPX7r8ljQ50NOdjcFJFLdh7wg=)
2: c0z-_U_7s_3lnaiWBwRIuVlkh7c.roa (hash: EAYr21bopytQdXh3mLIBfLUMzK/qGgq6jONJ7Pmqm+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:7c:7d:e3:95:b3:16:cb:4e:b8:d0:11:fe:d3:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: May 12 19:01:08 2026 GMT
Not After : May 13 19:01:08 2026 GMT
Subject: CN=bc4489039a2b815596d2e399185f988654be1889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:24:bf:3a:bc:25:f4:e1:fb:bc:d4:6b:fc:
01:01:12:99:57:61:1c:21:82:7a:7c:9c:19:b4:76:
66:c8:3b:ee:f6:35:10:c8:95:f1:da:55:f5:5b:43:
a0:14:66:ff:75:72:59:27:f9:ea:e1:cd:5b:a8:7f:
81:9e:e8:a5:29:da:17:d2:16:fb:74:79:5e:f5:d3:
3c:42:ce:77:f3:80:f6:e5:79:6b:fa:74:2d:c4:b4:
d7:93:1a:6c:5c:60:82:ae:24:2c:c4:c0:3c:95:f8:
47:25:07:4e:15:34:25:95:0d:1c:54:27:60:1d:11:
16:4b:f1:bc:1f:9e:d8:eb:87:ef:1a:f3:9a:08:a3:
f0:db:a3:44:4e:51:18:4c:73:d6:c6:82:4c:dc:9f:
07:c1:00:5c:82:7f:12:ea:e9:96:48:15:98:55:90:
a2:8f:88:65:fa:bf:38:db:39:b2:57:7c:83:2e:30:
34:31:70:f5:e5:cd:8e:37:db:be:33:96:1e:07:70:
ce:56:ea:5b:70:7d:12:18:9d:a5:35:ad:42:59:62:
55:9b:dc:c4:95:bb:97:40:97:a4:fe:90:88:16:df:
f3:5f:b0:f6:1d:b7:89:0e:e1:93:32:05:6f:e0:d1:
8a:fc:f8:dc:03:e3:9b:44:cc:39:da:02:d0:3c:fb:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:44:89:03:9A:2B:81:55:96:D2:E3:99:18:5F:98:86:54:BE:18:89
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:2c:95:0e:f2:46:52:7e:cc:15:28:bc:9d:7f:26:f2:f7:8e:
41:e8:34:ff:1b:24:ab:e2:4a:6f:c5:81:61:a4:25:d6:1c:11:
29:c9:20:b7:86:bc:8f:0b:89:3d:44:69:aa:e4:2f:48:20:fc:
d4:33:21:ad:ca:7f:e8:d7:dc:44:09:a9:0f:5c:a3:f0:41:b0:
d7:fc:3a:17:1c:32:8f:f1:10:76:9b:b3:86:41:8a:2d:1a:1a:
10:28:18:95:16:2d:d2:a5:fe:83:75:4d:73:25:e9:13:11:88:
75:41:64:b3:34:6a:d5:ad:5a:40:25:65:89:0f:ea:cf:27:ef:
8f:be:88:0e:67:56:9c:9e:1d:4c:59:f0:18:0f:6a:7e:ce:9b:
ff:bb:3f:76:b5:8a:72:31:82:13:05:4a:5b:9d:86:17:30:16:
d2:08:6e:0f:92:96:dd:87:11:e8:c5:f6:c1:9a:f6:39:57:93:
7a:46:dd:70:5a:ca:35:2b:eb:74:23:78:3d:84:92:91:df:2a:
e9:99:99:de:31:20:37:c7:88:7c:07:3e:de:0d:36:32:08:4f:
23:70:ef:ac:92:e4:34:7f:94:0d:ab:d9:5d:6b:71:c3:b6:46:
02:ae:ea:15:45:86:87:37:83:b1:57:b1:26:1d:6a:de:f9:10:
6f:af:d2:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:45:06 2026 by rpki-client