Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
File: 1AjPCbarAFupM7KnpKbSfqa7cso.mft (raw, json)
Hash identifier: IHuNsagJ2UJMS2ddQtNmnc02AZNfaytjJgrWV4P4H1k=
Subject key identifier: 99:EA:D5:30:8C:7A:42:C0:40:76:F8:4C:44:C7:F4:59:31:64:C6:48
Authority key identifier: D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
Certificate issuer: /CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Certificate serial: 019E2F5FC001DFAEDF89158974779E4BBA2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
Manifest number: 0628
Signing time: Sat 16 May 2026 06:01:04 +0000
Manifest this update: Sat 16 May 2026 06:01:04 +0000
Manifest next update: Sun 17 May 2026 06:01:04 +0000
Files and hashes: 1: 1AjPCbarAFupM7KnpKbSfqa7cso.crl (hash: b24YYT1ZMCfANFXvxLmu/93QFgVW/T3CDFlkgDw0w24=)
2: tK1_7kYoh8HPJEz9gt6VcaD4nUE.roa (hash: S18bPoeACVyQQ3iZwMpVkRKWBkpl4d3ZgQ7DJM72ZW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:5f:c0:01:df:ae:df:89:15:89:74:77:9e:4b:ba:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Validity
Not Before: May 16 06:01:04 2026 GMT
Not After : May 17 06:01:04 2026 GMT
Subject: CN=99ead5308c7a42c04076f84c44c7f4593164c648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d2:14:8f:45:fd:a5:b2:e1:04:8e:93:0e:df:
58:c3:c5:ed:2c:51:5a:8c:a3:d1:f3:46:57:14:7c:
16:02:a2:f9:d4:d0:aa:8d:1f:df:ed:5f:f7:b6:c8:
77:ff:83:4d:ab:4a:c1:e8:a1:01:ac:88:98:2f:74:
c5:9d:7f:8c:67:0f:ed:a3:41:b2:3e:ff:40:79:26:
e5:fc:1f:71:2c:5a:45:b0:b2:31:2c:29:82:fa:7d:
cd:ce:ac:03:aa:cc:4b:6c:c3:83:a3:1e:01:e6:37:
59:39:26:1a:ae:9c:23:84:96:23:3a:3e:e8:6c:c0:
08:82:6b:9a:1b:90:2e:05:12:b8:7c:5a:95:d9:e5:
ba:cc:ae:4e:8d:d7:82:80:d5:9b:46:ea:ed:bb:9a:
09:11:56:42:39:d1:0e:57:c4:51:50:25:fc:7f:d9:
e7:2b:5e:13:15:6a:37:cf:4d:02:2d:7c:5f:73:8e:
09:f6:c9:56:84:0b:2a:4e:01:7b:0f:7b:2b:79:12:
76:50:9e:92:ec:2b:fd:d9:21:99:5c:84:6b:1b:da:
7a:5f:26:42:ef:d3:51:e9:e7:aa:c7:d3:7d:03:e3:
46:bc:58:0b:0c:e2:ef:07:b7:92:6d:07:3a:44:d4:
d0:00:99:ec:b0:60:db:8d:90:e7:6d:de:87:22:e2:
07:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EA:D5:30:8C:7A:42:C0:40:76:F8:4C:44:C7:F4:59:31:64:C6:48
X509v3 Authority Key Identifier:
keyid:D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:90:1c:09:5d:9a:bb:24:5d:d9:eb:be:04:53:0a:cd:04:39:
ba:7b:10:ec:ef:26:3e:bb:b8:4e:b9:86:e8:35:8b:13:2f:46:
1c:dd:32:2c:90:f8:7f:d7:9c:e3:89:c9:06:7c:03:2c:26:08:
ba:00:3e:01:3b:ba:24:65:8e:2d:ec:1f:dc:5e:94:86:21:a8:
4f:d2:d2:84:4d:e6:bf:fa:d1:ed:58:0e:d2:64:99:ee:c9:a0:
bd:e1:3c:3c:28:46:e1:3f:fd:fc:3a:6c:47:c6:95:39:2f:ac:
f8:0f:9e:5e:b0:9f:c5:45:5c:e5:80:7a:36:03:44:fb:7b:74:
98:6b:51:5a:b6:4e:e6:29:cf:2f:96:3a:47:a0:99:48:6b:f5:
ce:ff:cb:06:15:4e:7f:7e:39:3a:8a:ca:72:dd:fb:da:76:ff:
d8:73:4c:1a:3b:33:96:a2:49:9b:e4:57:b9:ef:b2:e8:91:9a:
1c:79:9c:50:de:d3:ac:25:0c:42:5e:1f:ec:67:18:4e:3c:f6:
18:c1:72:c3:4e:a3:d2:04:87:0e:db:10:cf:3c:9e:e8:0a:91:
ca:18:84:48:6a:10:c6:12:3d:7a:45:75:8d:fe:1f:2a:18:27:
4c:40:a9:fd:dd:da:b7:98:bc:c0:bf:2f:32:46:4b:ca:16:b7:
29:a5:c7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:37:16 2026 by rpki-client