Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
File: AH5rWqQ302kxUVAqIRSW431K4sU.mft (raw, json)
Hash identifier: NL4m1BNpoOHb2/sAYQaIoRA6dQVVcSvvFI15U67Mjck=
Subject key identifier: B8:99:EE:56:1C:0C:6E:F6:81:AA:AE:ED:EA:06:05:D4:29:F9:27:7E
Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Certificate serial: 019D3940927FE10A07864A35372FFE3D8BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
Manifest number: 160E
Signing time: Sun 29 Mar 2026 11:00:26 +0000
Manifest this update: Sun 29 Mar 2026 11:00:26 +0000
Manifest next update: Mon 30 Mar 2026 11:00:26 +0000
Files and hashes: 1: 0UtZJpaH9ZhWJzvOUmqS1m2r370.roa (hash: UdeibxbzHWRgn3KJEu2PyWPjfgCf2fUauCUDT1MFzeU=)
2: 2i6ET0xmeFNNwjckPtEiXMzR1A8.roa (hash: RMMo6cNDlmb7w7WUvvn6btB8oEeGkC5RlJSJmweHPSg=)
3: AH5rWqQ302kxUVAqIRSW431K4sU.crl (hash: YPStODDFrEgXljxTqoAvZQBgQj0bi7QJ8UEJFqvuUBQ=)
4: R1KgvQsI1PNvvWsNYjSHXjmCUko.roa (hash: eSfdxnu6Fm6Qr8tRqOcchhcxy/tWOkcHERSE8N3r8uI=)
5: XdtoN-G6_JHehbj0D7l71OQKEXE.roa (hash: bDoA0XebMdpMlFP6CJH1fk3V+NG+IRgcZpROF4NtHwY=)
6: Yx7l960TQn9HM_7QR6gs0XY-qcA.roa (hash: O+2F1pg3A5EVSk1DJbaRJDwXaNusK4Cx5sLgaLCJXdM=)
7: vV4kfM7-tPnyYx_K2ljxEExtxso.roa (hash: iQoz4P+KRDJgWwM5+v9IkBekoevvl7t44wSOdaiYAvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:92:7f:e1:0a:07:86:4a:35:37:2f:fe:3d:8b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Validity
Not Before: Mar 29 11:00:26 2026 GMT
Not After : Mar 30 11:00:26 2026 GMT
Subject: CN=b899ee561c0c6ef681aaaeedea0605d429f9277e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:f5:9b:fc:46:c5:12:17:df:04:4f:27:3b:
2d:35:b6:99:f1:d7:78:26:97:30:03:f5:ec:7c:a9:
80:ed:97:7d:f2:3d:d6:08:80:47:37:5e:f4:be:11:
ce:3b:d6:9d:a6:4d:88:3e:42:16:e1:a9:70:46:bc:
35:4e:b7:c7:a8:33:a5:b0:35:69:e1:7a:87:fe:41:
c7:bb:91:69:a8:5e:8d:05:3b:c3:58:56:f7:40:52:
67:aa:50:73:6a:aa:b2:18:a2:91:44:cb:22:1a:fa:
3a:0d:bd:ad:28:35:3d:55:4d:af:31:8a:1d:ff:9d:
5a:43:24:75:52:f9:64:b5:33:b0:fd:e0:3b:80:fe:
8c:40:2a:63:f9:3c:9e:ac:0f:cc:26:2b:ac:15:f1:
09:db:38:6f:64:d8:7f:9b:88:8e:d0:f5:24:24:c6:
cf:6e:13:0d:d9:82:79:6a:95:72:c9:fd:fc:c1:6e:
af:fc:a6:98:e7:55:73:a1:0e:4d:fb:ec:d0:ff:58:
79:bd:91:02:89:23:c1:ed:93:b1:7b:ca:7b:3c:2a:
97:3b:2a:d9:4d:f3:10:c5:ef:97:99:4f:6f:46:39:
08:89:ee:69:fc:28:51:3e:cf:82:fc:74:52:87:59:
2e:8c:ef:df:d8:e1:67:7d:57:da:62:c8:7a:50:49:
65:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:99:EE:56:1C:0C:6E:F6:81:AA:AE:ED:EA:06:05:D4:29:F9:27:7E
X509v3 Authority Key Identifier:
keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:96:87:d7:6f:62:5f:78:22:02:14:5c:94:93:d7:52:9e:49:
96:20:42:9f:16:63:d3:d6:80:d3:75:eb:0c:8c:06:4f:23:c4:
96:20:a0:9f:f8:ec:f3:68:5a:c8:93:20:e1:a1:e6:7a:f5:84:
98:f8:7e:72:dc:c3:f5:7b:3e:3f:22:16:a2:45:f9:7e:1a:8a:
af:04:37:cb:03:47:2e:52:23:bf:63:51:2e:18:f6:5a:a8:8d:
34:47:94:90:d0:01:bf:c0:2c:5f:ba:ac:7c:99:bd:57:bc:66:
db:be:1d:3d:33:87:2b:9e:e9:3d:0f:09:51:80:64:94:29:d2:
c7:b8:49:12:d6:fa:ff:a6:3d:dc:87:45:1b:1b:26:cf:c7:28:
98:e6:cd:ba:89:db:a6:ca:72:72:99:47:d2:d7:4b:99:75:02:
73:8e:55:ea:f5:67:68:f9:d7:21:80:17:70:42:fe:a1:a9:ad:
67:38:99:f9:3c:bf:7e:a0:c7:38:13:30:32:3a:80:d7:b9:7a:
5b:8e:b9:4a:04:ac:42:8b:1d:f1:63:ef:78:90:a1:b7:2f:50:
3f:4f:46:d5:ed:b0:aa:88:fe:67:85:44:02:6e:6d:85:18:53:
35:af:16:fa:e3:cb:d1:77:ba:47:c3:c1:b4:67:d4:0a:ac:3d:
c4:47:96:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:12:07 2026 by rpki-client