Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: 5XP79Wfg1agP6jbeWFVwQiZCtsMkja1a5pvqVnqnXHQ=
Subject key identifier: 71:17:AA:7D:BB:DB:4B:85:31:AB:3A:0D:F1:56:0C:35:AD:67:06:B4
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 019E3004FA517ED4C86FA0614A7D2FA05519
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 190E
Signing time: Sat 16 May 2026 09:01:33 +0000
Manifest this update: Sat 16 May 2026 09:01:33 +0000
Manifest next update: Sun 17 May 2026 09:01:33 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: RBvNDYvOA2dmpAucYvtApagpXU1Mmd4nixDlQzbM1Fo=)
2: _ERGoNtkfCnC57fEn319xuy5MH0.roa (hash: Wq3TColJj1+ZOwaQJ2+Hu8QnMsklYvCOvDExQBnwEXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:fa:51:7e:d4:c8:6f:a0:61:4a:7d:2f:a0:55:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: May 16 09:01:33 2026 GMT
Not After : May 17 09:01:33 2026 GMT
Subject: CN=7117aa7dbbdb4b8531ab3a0df1560c35ad6706b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5a:e1:3c:9b:0f:24:e8:b7:15:2f:7e:ce:b1:
d1:b5:d9:dd:f8:f7:39:33:79:82:2f:2a:7c:f2:cf:
2d:a8:40:57:94:ce:ec:83:70:2b:32:f2:e9:3d:eb:
9e:36:7f:2d:28:57:a1:07:bd:fe:ba:53:7d:61:17:
38:d0:e1:15:74:c9:49:50:72:70:cb:ff:46:b0:84:
09:c3:57:69:10:66:c4:67:70:dc:e3:5c:53:70:c1:
0c:e4:e6:ff:05:2d:93:3d:62:b1:bc:9c:32:45:07:
d0:ab:f1:98:8f:65:80:55:0c:9d:f0:cb:ee:91:a6:
6c:44:22:e6:66:b9:3c:7d:4a:92:9f:ef:58:31:5e:
28:30:7e:ea:c1:a0:c0:d7:68:8b:3f:a1:bf:92:8e:
18:1c:00:61:b2:5e:b2:af:9a:d8:94:6c:ff:c7:04:
73:03:e1:16:65:97:9e:91:e3:1e:34:4a:7d:20:77:
08:cb:d3:28:12:3e:f0:2d:e5:63:c8:bd:7f:54:46:
f2:c9:03:29:d4:0c:7d:db:11:7c:bf:16:69:e0:da:
d6:66:e1:c4:f0:e0:86:6f:f2:e9:d5:41:36:6c:0a:
25:9b:e9:cc:39:b8:b6:0d:74:6c:20:46:74:7e:10:
7f:ec:6e:7c:11:32:7e:cf:0b:6e:c7:56:8e:de:45:
6d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:17:AA:7D:BB:DB:4B:85:31:AB:3A:0D:F1:56:0C:35:AD:67:06:B4
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5d:82:72:4e:97:48:1c:65:1d:3f:75:51:4e:7c:97:aa:e3:
6f:ac:7d:2c:f4:44:d7:67:1b:a9:06:01:15:c0:b0:34:e7:c3:
9f:8b:44:a2:21:90:b4:ca:56:13:8d:ec:88:cc:e2:57:4c:6a:
89:4d:fa:39:65:75:c5:d3:f8:5b:b1:9d:50:3d:85:ad:2a:12:
0c:16:f3:69:97:9f:b9:87:f2:43:b0:41:9b:f8:21:fd:d7:97:
a7:1f:ba:14:35:7a:db:34:0a:dc:6f:bc:78:2b:0a:d1:ca:e9:
99:b8:a9:33:07:c5:d4:3a:0d:8c:75:76:4c:e2:e1:a4:f4:27:
5b:2f:0a:d8:31:80:39:91:23:e5:bc:55:20:5f:aa:be:d8:b0:
10:6d:52:99:80:11:cb:63:e5:e7:b6:f3:63:ce:99:1b:3e:2f:
b0:d0:e2:02:21:78:e9:f9:a3:f8:03:04:37:20:85:c8:d4:da:
b6:90:69:34:b7:19:44:57:65:6c:f7:6d:92:fe:26:47:4b:1c:
2c:73:f4:df:87:1b:68:08:3a:9c:05:c3:6f:00:d1:e7:15:ad:
2d:fc:7b:40:a0:5b:a0:05:c2:cf:34:1f:e5:f3:c8:67:85:f4:
23:a4:fa:e8:06:6d:df:8d:0f:84:98:ae:41:dd:9b:d6:49:dd:
81:0d:4f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:13 2026 by rpki-client