Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: g0a5gzQccbDFDkakRglhIU95PAKUoO02f3L6jeng3xo=
Subject key identifier: DD:C6:C3:66:DE:F3:5C:D4:55:FE:84:C6:FF:EC:67:B9:C8:BD:0E:FD
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019DECA42684E3A23BB4762DBD60666D43C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 18EC
Signing time: Sun 03 May 2026 07:01:13 +0000
Manifest this update: Sun 03 May 2026 07:01:13 +0000
Manifest next update: Mon 04 May 2026 07:01:13 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: BUpPXyOfk0/zAqwKFpQaqTOkLWYtyWFkadL1vVheCJQ=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ec:a4:26:84:e3:a2:3b:b4:76:2d:bd:60:66:6d:43:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: May 3 07:01:13 2026 GMT
Not After : May 4 07:01:13 2026 GMT
Subject: CN=ddc6c366def35cd455fe84c6ffec67b9c8bd0efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d3:9e:41:d3:e3:95:61:33:0b:27:fe:05:b1:
19:ea:c7:61:18:af:0e:cb:5c:de:28:fb:85:1d:6c:
f3:ed:13:dd:22:38:d7:84:05:05:ee:b3:6b:71:ea:
ce:dd:05:59:a4:82:f3:43:6f:c4:17:ef:7e:bb:8f:
39:36:3c:00:f5:3c:de:22:5e:75:59:f6:7d:8d:66:
cf:84:92:cb:ad:22:a5:5f:ba:c8:79:cb:0e:4f:12:
e4:33:e2:d8:e6:2b:7a:64:29:79:67:19:98:db:e6:
d7:60:3a:1e:8f:c9:52:f7:f1:f1:5e:3c:1d:b5:32:
7f:db:3b:11:6d:00:a3:7d:2e:f8:d6:76:3e:7f:36:
f7:ac:ec:fe:25:f4:3e:2c:6d:ce:b8:65:64:57:55:
87:ca:ef:ef:75:69:99:69:fd:e6:28:35:eb:d0:68:
8a:f9:29:d1:e7:10:39:13:0e:e6:b6:c2:e9:04:00:
69:32:8b:1a:88:b5:65:0e:50:7f:5d:01:94:2e:1f:
35:fb:97:3c:20:55:10:42:cf:3c:12:69:ef:e5:4f:
92:1d:48:5a:5b:ce:d3:ef:d1:00:1b:53:11:e2:1b:
9e:1d:7d:c1:81:99:fe:ef:3b:b1:5d:ed:7f:c7:dd:
8c:99:de:8e:4f:9b:7a:c1:68:d0:cb:35:a9:22:84:
b8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C6:C3:66:DE:F3:5C:D4:55:FE:84:C6:FF:EC:67:B9:C8:BD:0E:FD
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:a4:30:26:25:3c:2c:6c:39:9c:5f:8c:b5:06:ec:6a:f1:b5:
2b:e8:30:78:5d:63:6c:3f:20:b7:1f:4e:f0:bd:64:d5:ac:99:
ad:5b:29:ca:64:6f:21:39:ca:ec:9f:7f:97:cf:a9:4e:e3:67:
6c:38:18:b7:ad:11:d5:3e:61:79:2f:bd:57:50:ab:65:c4:3d:
cd:ff:ce:c3:3a:5b:f5:ef:98:9d:90:38:6f:e7:ab:9c:15:02:
80:91:4b:cb:0d:10:99:c0:52:33:fe:de:d0:0d:55:0a:67:95:
42:1a:48:6d:91:66:ee:78:8e:85:76:f2:b3:87:14:b7:e0:72:
2a:f4:16:95:70:cc:39:4e:08:52:f6:bb:78:77:26:b1:78:1e:
77:5a:36:38:70:1a:95:f4:f1:66:cb:cb:a9:1d:f5:be:60:06:
bd:7b:9a:8f:2e:01:18:73:a8:0d:c2:fe:dc:bb:f7:c9:a8:6f:
c2:d7:92:b4:f6:72:05:7b:c4:86:bd:92:cc:70:00:40:16:0a:
6a:9c:f0:91:21:9e:2d:a2:b1:71:04:aa:e2:ce:52:d2:b7:8d:
72:e2:8a:8f:8f:15:b7:b6:9a:8c:44:22:10:78:65:60:93:cd:
9f:c7:d9:93:8c:58:70:0e:2f:32:e1:b2:66:44:60:d2:08:94:
5a:22:38:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 16:55:00 2026 by rpki-client