Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: 8K2JbLwCCT8dFoJyY+snH1GB5KAKXHlcSfIMD5BRoo8=
Subject key identifier: 51:D5:77:C1:86:D0:4C:A8:C9:65:6F:9D:EA:E1:D9:40:B4:79:76:28
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 019E303BE2DA4F608CA9129AF36DDB91D917
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 10:01:31 +0000
Manifest this update: Sat 16 May 2026 10:01:31 +0000
Manifest next update: Sun 17 May 2026 10:01:31 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: kI0VyPab7fmyRUhg6LoaR0zUde6dDxyHGSI1g2U5n9I=)
2: GSCpplFtfkTN5C3emWdSBHM2s_U.roa (hash: uafjHLArE68enYzHEZipyUcJy+2TVAQsxPWk3VzbutI=)
3: T4PSpNaqkAOQJjuBdAFdx3zKgyY.roa (hash: sU9bxlF1T+hrGzv9LaagfpQyLm85yMt1O7DFm4yEcJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:e2:da:4f:60:8c:a9:12:9a:f3:6d:db:91:d9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: May 16 10:01:31 2026 GMT
Not After : May 17 10:01:31 2026 GMT
Subject: CN=51d577c186d04ca8c9656f9deae1d940b4797628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:78:ca:87:d6:f5:62:e7:66:26:2a:34:a4:08:
84:f5:84:c1:92:f6:aa:68:74:2a:c0:05:94:29:76:
97:b4:c2:81:44:83:08:d6:ae:8a:a6:7a:54:95:86:
ea:58:25:76:d2:41:b6:3e:4e:15:68:3e:9a:0b:e5:
6a:5d:b0:85:c9:42:91:0a:56:50:12:3c:ce:94:5b:
26:19:e0:f6:85:ff:3f:47:fc:fa:9b:b8:1a:58:3b:
43:05:76:ea:99:12:0b:dc:1e:2d:a2:72:e7:45:41:
f8:41:e7:52:32:da:a8:70:41:64:75:86:d0:74:d7:
e6:54:48:3c:3d:6f:08:d5:1c:93:53:91:45:79:52:
09:ed:f8:b1:91:9d:c2:f7:32:8c:60:f5:e0:94:db:
52:f9:7d:c2:41:7a:d1:9b:07:4b:09:b3:f0:45:30:
a6:78:85:1c:8b:74:53:9d:94:54:17:fc:8e:b7:03:
a2:48:07:04:76:7d:1b:cc:1a:fa:f2:70:8c:f3:3f:
44:82:4e:42:80:28:f7:66:00:63:2a:5a:7c:a6:ee:
d5:07:15:38:d5:9b:16:3b:34:a9:47:04:2a:fc:fa:
d0:cf:04:f4:6a:ee:3e:61:22:4c:56:5c:aa:60:24:
e5:94:5b:4a:dc:82:56:12:e1:15:3b:37:ae:8c:5a:
fe:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D5:77:C1:86:D0:4C:A8:C9:65:6F:9D:EA:E1:D9:40:B4:79:76:28
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:6c:9f:e8:ad:45:52:05:f6:5c:03:d4:91:ed:4f:98:3e:59:
26:74:4b:88:d0:ef:6f:d5:5d:62:87:1b:95:a5:5e:b2:97:83:
fb:15:57:5b:29:36:7b:8b:48:73:b1:4b:1d:56:90:85:89:1e:
6b:50:dc:d6:bb:ae:89:f4:6e:3d:ef:59:20:33:20:2e:30:f0:
66:9f:6b:7e:bc:c1:d6:b7:91:31:8c:0d:26:28:4d:c1:f3:1b:
47:15:7e:c8:4d:cc:62:36:94:d4:4d:bb:a4:19:01:e2:31:bc:
ec:36:63:e5:24:a8:95:de:26:07:51:ec:7b:db:37:51:af:c0:
68:25:56:9d:bd:e9:0f:47:ca:68:0c:0a:26:c1:f9:c8:ec:9b:
60:f3:9a:c6:0b:73:39:88:fb:30:7d:eb:ca:c6:03:62:2b:b6:
fc:01:a0:c9:b9:5e:7d:e6:7c:95:f0:13:4a:49:c8:62:71:12:
df:94:b4:2c:a6:ed:7e:bd:af:ed:2f:a4:79:9d:49:bc:ab:2d:
c1:18:76:2a:82:16:0b:bb:5a:1b:ad:19:16:2d:c2:9f:96:75:
20:7b:25:ef:5a:ba:ef:65:2d:11:85:df:9c:4d:f6:9d:ed:df:
86:12:6a:64:07:a3:1d:7f:39:7f:6a:b3:cc:2c:41:3b:3b:6f:
ef:f7:c8:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:11:55 2026 by rpki-client