Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
File: aAONTKy9QZGZUus3CcFlM4OJAOM.mft (raw, json)
Hash identifier: 3roW8TaDTo40kiTi/3SjZaMcZJdHQkpe32IZzGaQUdg=
Subject key identifier: 66:A7:1F:8A:F0:78:E7:AA:4A:6F:3D:F0:A9:47:86:EF:DF:03:B4:10
Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3
Certificate serial: 019E32612E9A2D44B4AE410BA513BBABD14E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
Manifest number: 1914
Signing time: Sat 16 May 2026 20:01:30 +0000
Manifest this update: Sat 16 May 2026 20:01:30 +0000
Manifest next update: Sun 17 May 2026 20:01:30 +0000
Files and hashes: 1: VUWyLZ0rJ2KWNFwxw_bl1XOWT5Y.roa (hash: h6fu2o5gEs54ynuGXWVxljJh43rB4bmU8/bT0YsjVoE=)
2: aAONTKy9QZGZUus3CcFlM4OJAOM.crl (hash: hP97w8xyUmlA7Fqtl8VuXgxz6o+EIAWUnrP94liKUnQ=)
3: tp0SOw0ReetfWj-1nSTTgqHkwxM.roa (hash: XzLhvr/WPwVDdpz3jGaEEAicJMQsJQFmkLSa5mS4sUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 20:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:61:2e:9a:2d:44:b4:ae:41:0b:a5:13:bb:ab:d1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3
Validity
Not Before: May 16 20:01:30 2026 GMT
Not After : May 17 20:01:30 2026 GMT
Subject: CN=66a71f8af078e7aa4a6f3df0a94786efdf03b410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:33:65:31:4d:42:d7:1a:95:eb:6d:33:04:8f:
b9:92:05:7e:13:d0:10:93:07:eb:69:69:14:8b:a9:
7f:83:c0:7f:a4:74:fd:f6:81:a8:71:a7:a6:c2:8b:
89:9b:04:f9:34:8a:bd:53:84:25:b1:99:35:4d:aa:
d0:28:c8:55:e7:17:8b:20:56:62:68:fb:6d:63:1f:
7d:9e:39:41:ab:ad:c6:fe:ae:27:97:27:42:72:03:
81:26:84:b6:9f:be:80:f2:42:2f:be:f3:61:f9:85:
00:c8:b3:6e:17:59:80:76:3c:41:ef:86:ab:1f:f2:
b7:ee:fd:99:a1:d2:d9:8f:1d:79:40:75:f1:4b:4d:
a0:77:01:05:60:47:0b:33:ce:24:73:98:46:06:36:
71:e3:d2:8c:d7:26:3d:b9:3d:13:00:7d:83:f1:a3:
dd:be:6a:fb:53:48:b8:a1:4e:9c:1b:11:89:5e:90:
dc:1e:d6:5a:d2:69:62:c8:97:59:dc:a6:04:c1:b4:
77:be:49:dd:91:15:51:6d:da:39:89:95:fc:94:64:
60:26:af:9b:08:b6:d9:98:51:58:ff:03:b9:04:a5:
f6:e6:1c:9f:db:09:32:ff:6b:21:03:62:a6:c7:45:
f9:b0:d3:9a:de:6a:51:ba:a8:68:8d:65:bf:05:72:
2e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A7:1F:8A:F0:78:E7:AA:4A:6F:3D:F0:A9:47:86:EF:DF:03:B4:10
X509v3 Authority Key Identifier:
keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:df:3f:e6:23:ff:c1:fb:3e:c9:10:fa:34:cb:a9:40:6b:fe:
16:9b:12:2c:97:be:32:31:95:55:92:ae:97:6a:70:5f:da:13:
01:c6:38:e3:53:b7:6b:31:a0:ba:db:02:4a:c9:67:7a:1c:e7:
22:3c:5a:53:ad:2c:0f:c4:f1:42:4b:9a:7b:cd:00:8e:6e:6c:
8a:26:27:6c:9d:db:f0:79:df:cf:58:16:49:c8:29:4f:90:86:
58:3b:dc:53:a6:88:a5:a4:60:6f:bf:47:93:ca:96:3c:bd:ef:
a3:48:88:62:ad:7a:77:15:9c:62:c9:03:67:42:9e:38:3e:31:
dc:1e:3c:48:b6:29:51:71:a0:d8:5e:be:a9:09:f6:f6:ca:6f:
b7:64:80:1c:d1:b4:f8:d2:88:19:b2:44:53:f8:0c:dc:ca:d8:
6d:da:6f:53:2b:9a:93:e2:d3:81:56:2a:c5:01:e4:56:05:34:
e4:fe:a1:fd:dc:96:00:42:4a:22:42:e0:b0:fe:96:b6:fb:0b:
e0:a1:3d:14:b2:79:2b:54:a7:75:27:fc:8d:ea:5b:5c:0c:1c:
b8:26:20:32:2f:d9:fa:56:8b:34:e5:58:06:e2:23:a3:b5:c0:
8e:83:5e:8a:81:c5:0f:15:a0:bf:ee:84:8e:b3:be:3e:c0:21:
17:dd:91:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 03:45:37 2026 by rpki-client