Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: 1usftKUeE4XqJelMtbbPZ7C7LxXvRN0lcjPMpbppj4M=
Subject key identifier: CC:E0:74:2E:3E:51:C4:A2:A3:C6:50:47:1F:0E:EC:CF:EF:52:D4:A2
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 019DCFAC16AF68C543DEC62641E1C77758B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 18E0
Signing time: Mon 27 Apr 2026 16:00:54 +0000
Manifest this update: Mon 27 Apr 2026 16:00:54 +0000
Manifest next update: Tue 28 Apr 2026 16:00:54 +0000
Files and hashes: 1: CbnygaBWTQeTgxo7VtHoGSI5Wjo.roa (hash: YABN8P02IK4MPeY+oFxkFQxQ2hLyZWLZEaI6zjoc+IM=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: YbEdIKBf4euFtqmSsDqQO5c1XH6IUYSZzsHTOY4QZyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:ac:16:af:68:c5:43:de:c6:26:41:e1:c7:77:58:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Apr 27 16:00:54 2026 GMT
Not After : Apr 28 16:00:54 2026 GMT
Subject: CN=cce0742e3e51c4a2a3c650471f0eeccfef52d4a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8f:7b:43:76:2a:56:c4:0e:e8:e3:5c:fc:61:
38:8a:99:7d:88:68:72:bc:68:ee:d2:25:5c:15:64:
ec:5f:17:e6:ad:57:42:04:59:f3:89:c9:84:3b:49:
76:0f:0e:f8:68:02:3c:6e:9b:1a:9a:d3:49:f8:9d:
b7:fd:d5:71:52:df:eb:ca:58:39:f4:9f:ec:38:e6:
d7:b9:07:96:3c:88:64:d5:7a:d4:7e:e6:aa:84:2a:
28:96:0d:2e:49:88:ad:2f:1e:ee:fc:11:79:7d:01:
c2:70:c7:74:0f:84:77:47:e1:31:1e:75:4d:de:6b:
2a:98:51:d8:4e:fb:da:9a:c9:5d:05:63:44:43:41:
70:97:b7:af:8f:e0:30:b9:26:e4:75:e9:c8:4c:b9:
ea:77:50:45:a1:91:12:55:6e:b7:7b:67:e7:9d:8f:
c1:6d:08:f8:56:1e:2c:62:4b:ca:da:00:55:7c:40:
10:48:ab:1b:2f:ec:49:a2:5d:e7:e5:3e:d2:f0:e7:
b6:2f:2f:e6:b6:85:b0:0c:91:85:c1:6d:a0:e0:75:
df:0d:c6:b3:72:d9:ca:78:df:02:d3:d9:84:b7:ed:
47:4e:90:1b:d3:42:b3:8f:70:e8:a4:01:b4:3e:e8:
98:cb:f9:3e:2e:99:14:76:4d:90:df:bf:d2:25:1f:
19:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E0:74:2E:3E:51:C4:A2:A3:C6:50:47:1F:0E:EC:CF:EF:52:D4:A2
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:d6:fc:30:ee:06:61:1e:ee:94:2a:3c:53:d0:57:35:1b:e4:
7a:00:57:dd:0a:60:6d:5d:8e:1e:86:4b:da:ce:ed:ee:db:97:
83:d2:34:8f:16:3e:ae:27:50:61:2d:e7:04:95:92:73:fa:db:
23:e8:ae:55:1b:06:ac:0b:60:cb:c8:3e:31:ba:ae:f0:70:b9:
ea:bd:e0:6f:bc:6f:2f:15:28:43:49:9b:43:93:1d:2a:77:5c:
e0:1f:a5:a5:e5:f0:64:2a:4d:01:5f:21:5b:2e:f4:80:d0:f7:
c8:85:62:27:89:89:44:97:79:7a:09:0a:fd:4d:87:6a:04:50:
47:aa:88:7e:1b:5c:1b:5e:a2:15:bf:ca:c6:03:f1:16:bf:eb:
b2:77:ec:4b:8e:c5:47:55:28:4a:00:3d:93:e2:43:53:77:0f:
13:7e:c3:05:3c:f9:b6:f7:53:d1:62:d5:99:a0:3b:20:65:7c:
fc:ee:60:04:a2:39:d0:5f:ea:77:a6:1f:fa:71:c2:4f:37:09:
dd:c3:8a:d3:6b:8f:62:c8:6a:26:a2:cb:15:06:78:e3:4b:fd:
c5:9f:9c:01:12:5f:e4:b7:6d:36:c5:ba:d0:14:af:7e:9f:e4:
9b:45:a8:44:f0:eb:7d:34:00:f0:05:66:27:48:53:78:62:6a:
92:31:55:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:06:08 2026 by rpki-client