Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: YI07heJIwhyASfXDs/Inf2spcaBVzkdBEvcXf8zvuE0=
Subject key identifier: 79:1F:B6:93:E4:C8:CD:34:2E:11:7A:3D:C6:C9:89:B6:34:64:48:6D
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019D04E6100E20E552F08868029483D0156C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1874
Signing time: Thu 19 Mar 2026 07:01:19 +0000
Manifest this update: Thu 19 Mar 2026 07:01:19 +0000
Manifest next update: Fri 20 Mar 2026 07:01:19 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: tjiXFzbVquA0JDnJt36ScaWMVOqRqrKDK9QUruQdz20=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:04:e6:10:0e:20:e5:52:f0:88:68:02:94:83:d0:15:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Mar 19 07:01:19 2026 GMT
Not After : Mar 20 07:01:19 2026 GMT
Subject: CN=791fb693e4c8cd342e117a3dc6c989b63464486d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fd:ce:03:34:88:53:3a:bc:02:7f:54:35:06:
94:ac:77:de:91:50:d9:81:d5:2c:90:79:28:9b:91:
02:8e:af:3a:7d:29:53:b8:c2:69:69:e5:0b:50:62:
5e:2d:49:e9:e8:e8:66:59:fc:61:8f:7f:e9:ba:5e:
f2:e6:e8:77:76:6a:f2:61:23:eb:2c:e5:d7:00:26:
bf:09:03:f8:b2:8a:04:31:50:8f:6f:a3:af:cc:6b:
19:88:8c:b4:eb:98:64:4d:64:86:82:95:8d:5b:10:
1e:cd:05:02:97:24:50:ac:d7:dc:76:22:3c:ea:f8:
ee:10:ac:89:4a:f6:d9:b8:aa:a0:49:78:09:31:08:
2b:e1:17:d7:17:1e:d0:75:ac:4b:01:9d:6d:1e:5b:
05:08:3a:a8:23:01:e3:9b:36:b4:83:ee:27:23:39:
f7:2e:11:53:54:aa:fb:21:cf:45:a3:68:03:9c:03:
dd:9f:d1:de:48:89:a4:3e:64:1f:62:aa:04:83:eb:
10:ce:f5:0d:56:54:a0:d1:ef:b3:aa:34:b9:f9:a9:
7e:74:2f:3f:c5:9a:a1:28:23:76:aa:78:45:de:d8:
43:e6:e6:cd:43:e7:6c:1d:15:6b:bc:94:bf:04:f1:
4b:55:92:dc:40:59:92:ec:02:70:13:59:94:e7:89:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1F:B6:93:E4:C8:CD:34:2E:11:7A:3D:C6:C9:89:B6:34:64:48:6D
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:4b:60:f3:8d:49:55:7d:b0:8d:c4:f2:1c:a4:69:48:32:de:
66:25:da:15:d0:44:03:71:d6:4b:21:48:26:cc:e2:cd:7a:a4:
d9:52:a1:cd:3f:f1:24:d3:9a:bc:5f:03:23:65:ce:1a:72:60:
91:50:e3:06:6b:09:52:d4:57:a2:de:2d:23:7c:1d:39:55:e9:
1d:10:c8:bc:fa:5c:30:05:7e:e9:5e:91:3f:d3:cd:47:91:ae:
eb:80:74:c6:44:26:c7:bd:b8:8e:aa:a7:34:b2:43:7d:ff:51:
ec:9d:6a:4d:50:86:a8:ff:f4:b0:49:b4:d1:da:22:21:2e:4a:
88:c2:8f:4f:59:0a:a4:4a:9d:1c:c7:6a:5d:01:0f:04:db:f8:
c6:c1:62:65:47:61:2f:bf:94:45:41:50:0b:80:fc:8f:9a:b8:
6f:8d:c0:3c:0b:93:7e:e0:8b:47:fc:5f:b6:fb:cd:49:49:b4:
5e:d3:c0:2d:ed:30:a0:01:51:82:fc:96:dc:28:3a:db:a4:6c:
47:1f:83:97:0f:b3:b5:92:df:fb:80:5d:00:65:b3:42:49:3c:
8e:9b:51:fb:9b:30:b5:2d:d2:41:11:42:e2:55:54:f6:30:39:
a3:a6:25:9f:60:39:04:cf:bb:b9:2e:50:21:c3:54:ed:c6:3a:
9a:bd:89:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 19 13:43:56 2026 by rpki-client