Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.mft (raw, json)
Hash identifier: o+CrT1XdHKShQCqhYdF/CTMeKJheNRBpZUborxnf2fk=
Subject key identifier: DF:6B:84:E9:10:28:13:29:6B:4B:E6:FE:F3:5D:21:29:5C:2E:9E:BD
Authority key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Certificate issuer: /CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Certificate serial: 019E32298D58C3D7091198B6AB30DDF5C24C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
Manifest number: 162B
Signing time: Sat 16 May 2026 19:00:44 +0000
Manifest this update: Sat 16 May 2026 19:00:44 +0000
Manifest next update: Sun 17 May 2026 19:00:44 +0000
Files and hashes: 1: YlYRZ37O-pzL7R_8WiFUYYasSE0.roa (hash: pASfCwUDt1iiJW6IS3OTekooh+sWxZnThm/3hjuqE+0=)
2: aa24Jfn9vKDNfHkB3reiKuF5fAY.crl (hash: tdnPBntjMZwMUJYYWoQZJRb8sIONfCNWMO2T8uUYnMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:29:8d:58:c3:d7:09:11:98:b6:ab:30:dd:f5:c2:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Validity
Not Before: May 16 19:00:44 2026 GMT
Not After : May 17 19:00:44 2026 GMT
Subject: CN=df6b84e9102813296b4be6fef35d21295c2e9ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:06:d2:14:4a:1b:f9:b7:f6:44:b6:ab:dc:c0:
26:26:76:06:b3:fc:ba:2a:72:48:15:97:62:85:eb:
e2:ee:61:90:de:ca:a2:12:a7:df:5c:15:ff:81:60:
38:ec:86:3f:f6:d9:7c:9a:62:b8:01:1f:82:4c:be:
3f:4f:5e:10:f4:d3:5a:bf:0a:bf:dc:d7:a7:ae:25:
ba:35:77:0a:b5:eb:5e:ee:1a:7b:46:3b:ae:5b:77:
87:33:64:47:5b:da:c2:95:10:dc:b7:ae:4c:43:c8:
6c:7e:6e:8f:47:16:c1:37:9e:15:88:5c:32:01:1a:
c4:b0:e5:b0:7c:74:9d:41:b6:e0:91:1e:70:c4:ae:
0f:d3:eb:58:a2:b1:76:cd:0f:0a:cb:c7:31:31:96:
87:3b:5e:46:99:58:c0:b5:9c:8c:b9:c0:37:12:8b:
a6:21:be:f5:b8:66:c8:63:0e:3e:f7:52:5b:1f:9b:
5c:63:35:1f:f8:a4:c5:2a:8c:f0:0d:94:51:14:a7:
fc:c5:3d:f5:ed:e0:ed:af:1d:0e:bc:c3:20:44:58:
d2:e8:29:45:63:2e:aa:c8:8c:11:6a:d9:6a:0f:92:
cf:b8:40:ef:8c:66:9b:c3:cb:1c:3b:e0:47:88:52:
b9:b0:c0:84:e9:e1:1d:46:72:3d:cd:d1:33:02:f9:
97:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:6B:84:E9:10:28:13:29:6B:4B:E6:FE:F3:5D:21:29:5C:2E:9E:BD
X509v3 Authority Key Identifier:
keyid:69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:87:50:f6:bf:d6:f3:87:28:50:af:08:44:47:ff:60:82:e1:
b8:0c:36:4a:0b:0e:94:36:69:24:41:06:14:42:86:02:96:1d:
49:8f:29:90:4f:c1:7c:4e:f0:a8:58:2b:2c:a7:a6:da:7a:b9:
67:01:48:83:54:8c:cb:1b:04:d6:c7:01:3d:c0:bb:70:27:5f:
31:89:42:0d:d5:e6:18:cb:ce:7d:50:19:8b:07:8b:9c:00:21:
31:1a:c9:be:b2:5c:09:1c:da:c4:db:e4:a7:61:c5:aa:67:fc:
c6:6d:e1:59:90:c3:a2:a7:9f:8a:f1:1a:98:59:20:79:d4:f6:
2f:82:75:93:8a:f3:12:1e:a2:8c:b2:a2:79:02:fd:c3:f2:dc:
36:cd:b9:fa:4b:df:61:2c:36:14:6c:b6:cc:47:7f:80:42:20:
c8:48:80:47:e6:b1:5e:a3:b4:60:bd:ea:43:8d:1e:d9:4b:31:
dd:52:e3:f1:92:ce:37:be:61:a1:fb:c4:7b:46:8e:60:39:27:
fa:53:eb:2c:34:40:42:f7:4d:ed:12:ce:33:b6:7f:83:dc:fc:
8f:6f:d3:78:04:37:2d:a6:5e:88:e4:b6:03:e0:b9:bd:7a:b7:
c1:de:99:7e:17:9c:77:78:b9:e9:32:0f:d3:b2:2d:d4:ae:05:
a4:26:45:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:30:30 2026 by rpki-client