Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: GXGpaklY0Au8ObttwCnbx58ULZi9hVO2s972RIUXeFw=
Subject key identifier: B4:77:82:86:FC:8C:21:98:E5:97:DA:AC:56:BB:06:2C:C7:51:79:5F
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 019EB5E921D7204C4C0E0256C6B1CFE7DE65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 1818
Signing time: Thu 11 Jun 2026 09:00:15 +0000
Manifest this update: Thu 11 Jun 2026 09:00:15 +0000
Manifest next update: Fri 12 Jun 2026 09:00:15 +0000
Files and hashes: 1: WiR_mQTYvksNuDh5PyOkyT_J_1s.roa (hash: zaouvXmVUtph8h3UF1IqoXJQFtK55FqMyr4EuKbD7oI=)
2: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: jtR0Xe1ZPpFv0zxHzUMb1958do87fThRzBlPhEJ8h4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:21:d7:20:4c:4c:0e:02:56:c6:b1:cf:e7:de:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Jun 11 09:00:15 2026 GMT
Not After : Jun 12 09:00:15 2026 GMT
Subject: CN=b4778286fc8c2198e597daac56bb062cc751795f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ae:09:60:ca:e4:d7:d2:ad:62:48:95:9c:9d:
78:15:60:1d:95:f1:1b:f8:30:12:5f:f3:5a:dd:d3:
14:e7:7a:c5:c3:5b:c1:0c:80:53:f7:1c:a5:a1:a0:
3e:41:99:7b:31:4c:ed:32:21:c5:02:94:50:17:31:
e2:98:e7:b2:02:7d:84:d1:a0:0c:6a:4f:68:f1:13:
c9:b8:13:ac:d2:3e:49:b9:0f:c7:04:41:db:c1:dc:
96:dc:7c:68:f2:6f:6d:98:cf:76:68:e3:0b:cd:7c:
e4:b8:c0:25:73:d9:ec:8f:b6:1f:01:0b:be:41:bb:
ea:b8:35:9c:02:2b:39:69:99:13:fe:4d:59:ff:7e:
5a:09:ca:0e:b8:fb:81:e9:6a:9d:04:9e:2e:e6:45:
38:4c:0a:d9:a0:84:f3:b0:37:b6:4a:af:67:de:df:
80:95:7c:b0:90:0a:4d:1f:35:ea:6e:49:aa:7d:6f:
74:07:10:1d:0c:a8:d5:68:d7:cf:c6:7f:b2:d9:71:
e8:07:38:8b:84:f2:8c:91:4f:39:33:9a:2d:72:a2:
93:40:49:6a:ed:8e:cf:5c:1a:f2:23:27:f3:51:73:
e0:56:38:f3:95:aa:6b:69:27:27:b7:ff:dc:cc:3a:
6c:b2:49:d9:79:96:f6:dd:43:90:8a:62:b2:73:ba:
b6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:77:82:86:FC:8C:21:98:E5:97:DA:AC:56:BB:06:2C:C7:51:79:5F
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:d4:2a:b9:9d:4b:14:20:ed:73:c6:dd:83:c0:ae:be:64:b1:
6c:7d:e5:14:d0:ed:d6:ac:a1:81:74:8e:01:06:2d:f6:a1:d6:
ae:d8:b0:eb:15:65:b5:be:ad:c9:53:36:3f:88:73:a2:ed:24:
59:21:c0:d6:33:17:af:83:31:3f:a4:06:f9:01:79:a5:2e:fd:
24:da:7d:ea:eb:d5:3d:5e:58:46:6b:4c:54:54:9c:2b:8c:6d:
93:9e:23:9b:05:87:ee:41:ca:74:67:ab:b6:ac:98:2a:c8:4e:
b2:26:a1:d6:a8:c2:5d:de:68:3b:5d:d9:c1:eb:01:17:20:17:
6f:2b:63:60:bf:09:da:c0:69:e6:1c:6c:a5:53:35:37:c4:e3:
2f:28:d9:52:88:03:48:7a:cf:a1:5c:b7:54:7d:26:9d:0e:16:
5f:af:ac:a5:12:cd:ac:7f:38:4e:96:43:1f:db:8e:d3:fd:bc:
52:a6:23:9b:cb:21:3d:6e:36:c9:66:be:5a:ba:e3:d8:15:28:
9f:13:8f:5e:6b:73:8b:c4:d9:75:7e:5a:b1:1b:15:87:b4:6a:
5f:cc:0b:82:5a:f5:6a:ad:cb:8a:ae:47:b0:cf:8c:e8:d4:10:
e0:73:70:43:41:d2:6f:8b:38:a0:a8:49:dd:fe:07:7f:81:72:
4b:33:d8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:43:06 2026 by rpki-client