Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: SO7pvfd9Ec8Ut+pU6lSNPU8lZpYwtNxbk8iVQEC1UOQ=
Subject key identifier: 9B:27:BB:41:0D:E4:D8:FC:0F:8C:D7:3B:B9:70:CE:71:7A:27:1A:44
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 019E2881D25448F9D7DFFAAB4448B2620445
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 0A8D
Signing time: Thu 14 May 2026 22:00:57 +0000
Manifest this update: Thu 14 May 2026 22:00:57 +0000
Manifest next update: Fri 15 May 2026 22:00:57 +0000
Files and hashes: 1: 1-oVMePvmP_ShU4g9iq3PEMwk624.asa (hash: pi0ntWvCbn7cLEwUcdMKB4Mh3rw+t4rGo3pT9vesjgs=)
2: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: So8ZBUcuxiPK6hevivkf/XDKH34E8vQfBe3394jZnHc=)
3: JfiKnbeqPSQWrccipxHIV5asnZc.roa (hash: So58lqCsWHBSZ8BZGYVkNJbNtgNVSoZeRVERTPcUKB8=)
4: zWI51cMGq8NIsv4xHlGLcLlujuY.roa (hash: eQXeTCbeaOa+X96n8vuRc2zEoYqnb9UvGcseeMKxWrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:81:d2:54:48:f9:d7:df:fa:ab:44:48:b2:62:04:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: May 14 22:00:57 2026 GMT
Not After : May 15 22:00:57 2026 GMT
Subject: CN=9b27bb410de4d8fc0f8cd73bb970ce717a271a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:93:75:cd:b6:59:29:6a:fb:b3:31:87:9d:da:
74:5c:6b:c5:a9:54:16:dd:8f:8e:0b:48:3b:8e:f3:
b4:03:0e:0b:91:ea:4b:46:71:fe:b6:a0:25:97:de:
ff:cf:ea:04:df:45:c3:d0:d2:67:b7:86:25:af:c8:
b7:67:78:de:76:62:13:c4:79:73:38:04:65:f7:09:
7d:7e:e5:1e:51:70:cf:20:bc:9a:38:7a:3d:27:49:
85:9f:b5:5c:d5:cd:1e:f9:1c:16:b2:cc:f3:f4:e4:
41:89:d5:2f:db:79:ee:b3:e4:ef:7c:8b:6b:94:45:
7e:f7:15:c4:a5:ea:ac:6b:b8:34:3b:52:2c:cd:1d:
7f:e7:91:d0:f0:fa:59:aa:87:db:ce:d2:dd:67:7c:
2f:b0:37:73:7b:9b:51:5b:a6:1f:53:3e:04:cd:9a:
9e:98:e5:d6:be:86:bc:1f:56:84:35:55:4b:7e:0d:
9b:54:e8:8c:fd:af:5f:36:3d:7d:c7:15:1b:6e:b0:
7e:43:31:5d:89:cc:9a:ac:5b:c8:ed:d0:88:5c:95:
64:7d:f9:4c:67:70:c6:86:b6:2e:77:2b:51:22:7a:
eb:78:79:c0:5d:45:86:ae:b9:2c:10:6d:b0:a2:e2:
3b:d3:40:76:3a:c1:dc:44:aa:6f:33:43:96:55:0e:
f5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:27:BB:41:0D:E4:D8:FC:0F:8C:D7:3B:B9:70:CE:71:7A:27:1A:44
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:f0:36:f9:01:a5:12:aa:68:89:d5:a9:f2:03:68:8f:cd:3f:
26:9e:5c:f0:e6:aa:24:bb:84:b7:96:3a:c4:0d:90:8b:25:dd:
d8:d8:92:1e:e3:11:eb:f5:82:82:29:76:27:88:bb:45:05:4b:
ce:e4:42:99:05:ee:14:66:3c:7d:e4:88:c0:6a:f2:f6:ca:f1:
46:f8:c6:3c:a8:9a:3e:0e:06:bc:51:c9:06:1f:e0:37:4b:13:
91:4c:47:d2:84:d8:b3:75:98:2a:5f:80:37:ac:b6:96:b9:04:
3b:5e:bb:3b:7f:33:ee:a6:1e:b4:7c:53:22:17:f1:cf:6e:a2:
08:bc:83:2d:b8:73:fb:ef:37:b9:c2:9f:d4:56:3b:62:87:4d:
2c:f5:37:e1:2e:c1:cc:72:9c:d2:ea:99:16:e7:a6:19:f0:fe:
40:4e:cf:e9:33:bb:85:55:d2:75:c5:09:11:5f:42:d4:b9:d3:
48:5a:d0:be:b8:2d:6f:dd:91:af:ad:b4:ee:6a:b0:ec:8b:fc:
ee:b3:ea:ef:83:32:48:0b:da:6e:95:ef:89:2d:71:8d:e3:df:
1c:e9:23:a9:50:d7:58:69:bb:22:bb:ed:53:b5:d3:c3:a2:d7:
0e:15:8c:b1:51:18:f2:19:43:ce:da:24:07:95:04:41:be:92:
28:fd:af:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:20:49 2026 by rpki-client