Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: mEU+ZmMJc8pxyFiDDqwou1e5kutzILyRTn8kHtYQ1N4=
Subject key identifier: 53:1C:A0:AE:BC:E2:14:55:50:6D:3C:FC:44:1D:FB:5A:02:07:33:50
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019E30A978AC2312E91A4538C4CA471F181A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 138B
Signing time: Sat 16 May 2026 12:01:13 +0000
Manifest this update: Sat 16 May 2026 12:01:13 +0000
Manifest next update: Sun 17 May 2026 12:01:13 +0000
Files and hashes: 1: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: JEu1r3a9haA+9E6wyAg5nraj+2BdhEnZcpRWQuCGjv4=)
2: qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa (hash: fcQ2Ei/HI72zlpQU19GPaQ5DdqwsBsYj6lbFhVkHW2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:78:ac:23:12:e9:1a:45:38:c4:ca:47:1f:18:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: May 16 12:01:13 2026 GMT
Not After : May 17 12:01:13 2026 GMT
Subject: CN=531ca0aebce21455506d3cfc441dfb5a02073350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:44:d1:79:cd:2a:e3:a4:20:b2:1b:05:44:c6:
d9:f6:8d:91:f1:56:2c:ca:76:26:37:00:82:a3:7b:
28:a7:b9:78:18:60:42:9c:62:b5:55:93:bc:fc:62:
49:48:f9:e2:4a:42:47:f1:82:0d:7a:82:1a:b5:50:
e2:5c:b3:5a:6e:0d:85:ce:09:33:65:56:45:f8:9e:
07:92:2a:4d:0f:be:00:f0:45:01:3d:a1:aa:44:af:
60:8f:b8:b1:4e:c6:8c:41:37:1a:dc:8a:62:d0:e8:
14:eb:76:cd:df:0c:4d:9f:31:fa:92:0a:72:7b:cc:
98:72:9f:d2:03:8e:0d:1f:ce:74:2d:2f:78:47:f6:
d1:a8:ee:f9:38:ea:6c:53:1a:8e:00:01:ab:6e:1e:
18:14:f1:7c:83:4c:31:ed:62:16:7a:d5:d1:7f:49:
9f:cd:31:81:f9:a8:b5:5e:c7:2f:af:a9:29:94:ab:
e3:35:aa:80:0f:a6:88:c7:f9:1e:26:01:5a:f3:6d:
6a:3e:20:ca:5f:a2:aa:6f:54:d9:83:5d:c7:a7:e7:
2c:3f:6b:09:37:15:86:70:66:06:eb:98:32:25:0d:
a2:08:8a:91:35:c3:76:75:31:26:eb:cc:10:fb:79:
88:34:8f:8c:de:6d:a3:77:50:31:0b:cc:af:ea:c2:
83:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1C:A0:AE:BC:E2:14:55:50:6D:3C:FC:44:1D:FB:5A:02:07:33:50
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:e2:60:7d:32:1b:36:98:c4:4f:d0:14:4c:56:72:67:94:00:
91:52:01:9f:b1:95:a7:f2:38:0f:09:7a:ac:50:b3:dc:91:4c:
1c:82:0f:48:e0:f2:cf:20:8e:8c:74:94:de:63:7f:47:e4:64:
3a:ce:66:6d:af:ad:37:41:f0:5d:47:8a:46:30:dd:20:ab:43:
19:be:e9:24:78:5c:4c:76:f2:97:0c:02:05:2a:94:49:39:15:
c6:88:ff:8c:7f:99:36:fb:bf:3f:6f:5b:62:1c:bf:75:32:36:
33:d4:f1:f4:83:c3:a2:a6:49:32:88:2e:91:ca:6a:7e:71:2b:
10:7e:97:49:bc:18:ad:0a:c0:bb:39:b4:27:60:51:a3:05:b8:
05:52:3f:8a:43:be:8f:9c:21:10:c3:96:f5:51:69:57:f8:3d:
98:e6:4f:3d:14:07:7f:77:60:7f:97:1b:af:cb:ca:f1:83:fa:
dd:5f:83:0c:b3:c4:a6:e7:d4:e9:5f:2d:29:c3:cb:91:a4:90:
ef:47:ac:69:ee:7e:2a:1d:ce:7c:bf:2f:92:68:6c:20:1e:35:
d0:39:db:67:42:49:b4:7d:b3:33:1e:bd:71:ba:14:8a:ed:85:
02:a5:a1:df:be:fb:be:0e:a6:ee:29:cb:ae:c9:3e:86:15:68:
61:51:ad:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:55:22 2026 by rpki-client