Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json)
Hash identifier: DEICMjzNQhDnLhl/yLoamNJJxQOJTjAFDGMqERLiOqs=
Subject key identifier: 28:68:95:98:41:01:04:57:CA:A3:E0:36:EC:ED:66:29:20:6D:18:2C
Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249
Certificate serial: 019EB958982F302FFCB9E16700BAD604EE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
Manifest number: 1959
Signing time: Fri 12 Jun 2026 01:00:51 +0000
Manifest this update: Fri 12 Jun 2026 01:00:51 +0000
Manifest next update: Sat 13 Jun 2026 01:00:51 +0000
Files and hashes: 1: MB0uTApSO8m5vg_bm9trr3XpjgU.roa (hash: 2eNykuyF9+3yCGYPE8lH28bjQtkNd0f4qvsTFx03Ijs=)
2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: Zb/GIhXJNclZPIXHqRqG7jAy957SWX7c2P4OW12iL80=)
3: xg2vmPZnFpWKOjIR5eQ7FMGT8aE.roa (hash: hPOQooNWczBMB25D+ekEfhNU7YNSFMQ+pTU+YyTaGew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:98:2f:30:2f:fc:b9:e1:67:00:ba:d6:04:ee:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249
Validity
Not Before: Jun 12 01:00:51 2026 GMT
Not After : Jun 13 01:00:51 2026 GMT
Subject: CN=2868959841010457caa3e036eced6629206d182c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3c:80:95:b6:89:20:f5:4a:06:46:19:25:a3:
6d:b3:1f:66:b6:4c:da:dc:aa:9c:31:48:7b:6b:b9:
36:40:52:1a:ce:a6:cf:80:f0:c6:77:3d:9a:13:bc:
c9:80:eb:e7:ca:ce:91:89:57:72:19:3a:bb:05:33:
c3:90:47:14:39:94:e0:81:19:a0:ef:3c:11:70:79:
e0:44:8b:53:05:5d:9d:ec:73:22:d5:c3:2c:3d:19:
81:1a:aa:ca:f1:a7:e0:a2:5e:8d:a5:94:0e:58:6a:
13:b7:ad:7f:d3:7f:a3:70:7e:88:af:1b:3f:26:e1:
38:74:5d:a7:74:71:6a:e3:99:af:7f:f5:4d:b2:fb:
87:12:43:a0:12:72:5c:0e:e4:b2:aa:26:56:4c:1f:
0c:77:a3:d3:95:5b:d5:98:9c:d0:13:6c:00:1f:7f:
07:bb:ee:58:9b:a1:3e:33:45:48:70:51:44:96:65:
e4:a1:cb:e8:53:0c:90:86:56:61:05:d0:19:a2:93:
2c:31:f5:90:2c:6d:07:43:b7:22:1b:5d:65:68:aa:
2d:f6:d0:88:80:4d:d0:1a:ab:a4:af:e2:f1:f5:8d:
a6:91:4a:7f:be:57:e2:6f:eb:19:f8:62:f9:5b:9d:
df:9c:14:35:1e:a2:27:07:fb:55:02:e6:3a:75:8b:
44:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:68:95:98:41:01:04:57:CA:A3:E0:36:EC:ED:66:29:20:6D:18:2C
X509v3 Authority Key Identifier:
keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:2f:41:fd:a6:fd:59:b6:60:ea:09:56:26:c8:a8:51:f7:a7:
28:c1:63:c1:c8:c2:95:09:29:5d:44:53:34:1a:db:ff:13:24:
0e:46:28:d3:8b:42:05:ec:48:44:16:13:1f:e7:cd:66:1d:90:
3a:05:0f:64:28:a0:00:b5:c5:ef:8a:6e:5b:46:7a:c8:5e:bb:
e9:d6:a4:b9:3c:2c:0a:10:08:25:07:72:eb:d4:50:74:5f:36:
53:55:74:96:3d:89:e1:21:81:c0:34:5e:93:06:ec:3a:3f:65:
df:9c:19:eb:8a:53:f0:c9:70:68:7e:5c:97:7d:a8:ac:6d:05:
7e:fb:d3:fb:e0:19:89:ad:f2:bf:d1:81:06:9a:79:55:3b:c4:
7d:26:c3:4c:ab:8a:ac:52:e6:64:88:de:13:17:96:77:64:e4:
56:dc:b9:ad:b1:58:cf:f3:6a:66:e4:c8:df:22:ad:e1:e1:8c:
86:76:b0:bb:da:83:93:fd:20:da:8b:ce:b6:69:34:69:db:59:
45:68:3b:69:ae:77:a5:5c:ae:5d:d6:c1:e2:89:03:f2:1f:2c:
18:5a:99:c2:52:60:89:8e:fc:e2:6b:e2:b6:81:08:c0:37:48:
be:0d:2f:47:0f:c0:fd:a5:fa:db:54:9a:03:5d:40:3d:d9:10:
b9:1e:5f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:52:37 2026 by rpki-client