Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: bSG+DosTPAxeDdeDPgsySkiomdpELkLRCrYwibocblg=
Subject key identifier: BA:91:7F:02:3C:5D:D8:63:D0:5E:FB:67:AD:53:4F:7E:58:0E:35:A0
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 019E2F602C44E0303C9B1A04CE4747EA7841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0BB4
Signing time: Sat 16 May 2026 06:01:32 +0000
Manifest this update: Sat 16 May 2026 06:01:32 +0000
Manifest next update: Sun 17 May 2026 06:01:32 +0000
Files and hashes: 1: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: c9ZfDU7o2A2mtT2UAoQ9Zxnf4IpijMlS5ipq/rk8oPg=)
2: MaRtt04jowFFk86_uuutN8hcKss.roa (hash: fZU76DAwqdxnrxuVOqFEOQy5RWDLvAlUDG+K/0ngLTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:60:2c:44:e0:30:3c:9b:1a:04:ce:47:47:ea:78:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: May 16 06:01:32 2026 GMT
Not After : May 17 06:01:32 2026 GMT
Subject: CN=ba917f023c5dd863d05efb67ad534f7e580e35a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:60:6b:8e:2f:eb:a2:ae:05:b6:a3:c0:ce:fd:
46:e7:5b:89:6d:a0:07:3f:d5:8c:60:a5:18:31:8f:
56:62:d3:07:44:20:44:8f:aa:d6:0f:35:a6:da:f6:
7a:bd:cb:c1:be:a4:59:b5:aa:36:c7:4d:0e:ad:01:
56:f1:c4:d2:2d:f4:bd:02:1d:57:89:a1:89:a8:54:
17:08:c4:d6:1c:e1:e9:f6:cb:52:ee:51:d4:02:62:
a8:44:fc:45:32:09:c5:f2:8c:28:a9:93:00:99:7e:
4c:59:00:9b:ac:2b:43:86:98:c8:09:6e:9c:98:a6:
4e:11:3f:a7:06:a8:57:77:36:01:a7:23:83:be:17:
a8:c7:42:85:eb:59:08:46:b1:4b:8f:e4:99:05:41:
93:05:37:5c:b1:00:a9:27:58:4e:17:87:2f:41:ab:
1e:1a:57:b6:54:e3:aa:ef:ff:f0:a1:9a:a3:44:ed:
07:ee:0e:19:9c:b8:bd:9f:93:1f:ab:32:c4:a4:ec:
60:3d:e6:0d:5d:4b:40:ba:2a:67:7c:52:93:c4:49:
a2:93:ea:38:4f:7f:54:82:db:90:1b:0a:52:cf:05:
71:36:6a:6a:2b:d0:75:0f:a5:2e:8d:71:22:f3:99:
aa:fc:cb:d3:8b:96:21:42:af:77:bf:62:bd:9c:27:
9b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:91:7F:02:3C:5D:D8:63:D0:5E:FB:67:AD:53:4F:7E:58:0E:35:A0
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:71:b6:c6:ae:9b:19:d7:2b:87:b2:40:d4:50:0d:76:5a:e7:
76:5f:d1:d6:ca:d3:75:fe:60:6e:4b:ef:ef:f9:5a:f3:ba:10:
de:76:e5:c4:7c:e2:a9:63:ab:d6:2c:e2:be:4b:08:90:ae:17:
76:fc:d7:60:ef:46:eb:82:05:19:35:e3:3f:e1:7a:e5:76:07:
df:e6:07:ee:33:cb:35:0b:7d:cf:66:39:5e:f7:5d:7f:b9:5a:
74:67:e7:6e:4c:40:f8:17:45:2e:09:ab:87:6b:8c:db:3c:97:
ef:d6:a4:86:0f:2f:77:ca:9e:2f:ae:0e:b7:43:17:46:29:f0:
2e:b8:6e:3a:db:a1:10:3a:40:7c:47:3b:bb:9f:20:61:e4:52:
e3:1e:7b:30:09:c8:59:c1:c1:c5:90:88:7d:cc:c4:94:9e:fa:
04:c8:7a:8f:24:9e:73:7b:6b:7c:3d:64:af:57:d5:6b:10:09:
09:62:61:5e:57:dd:ce:2f:84:3f:5e:9f:cc:eb:63:27:08:4b:
b7:b4:4e:bc:68:64:65:a9:6d:6d:e4:88:a9:93:05:e2:15:c6:
54:18:2b:5f:83:50:2f:d9:f4:6f:8c:02:0a:8a:d1:5c:e4:b7:
64:a3:68:d1:52:48:c1:e2:56:57:cf:86:e4:b5:cb:3f:e9:6a:
41:92:fa:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:44 2026 by rpki-client