Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: nJ98wdVgxa3TQI1Qa7KsW2+fgi6EoTAZgA0JBpnYKAI=
Subject key identifier: A6:4D:C6:FB:90:1D:D7:CB:90:F6:64:CE:C8:63:47:F3:33:3E:08:2B
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 019E31173FF5597505F6C484B8C5022E9B14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 1864
Signing time: Sat 16 May 2026 14:01:07 +0000
Manifest this update: Sat 16 May 2026 14:01:07 +0000
Manifest next update: Sun 17 May 2026 14:01:07 +0000
Files and hashes: 1: HqknbCtl1Axe3TPw1P6jDONpLVc.roa (hash: ZnfnJYZ+e5B0J97RREAVHfbNjcFtOONy33iXAx75Pag=)
2: XUSo3Kod1tZHWF61VODjOx3wrpM.roa (hash: QhGQD15vAX85W4GYn0mpZU7ZappGzzCqkYs2qWxrAto=)
3: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: Omz9sJj68iNbiRTbJHrCfaKgTbSyFzOMOoDmaSeg7vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:3f:f5:59:75:05:f6:c4:84:b8:c5:02:2e:9b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: May 16 14:01:07 2026 GMT
Not After : May 17 14:01:07 2026 GMT
Subject: CN=a64dc6fb901dd7cb90f664cec86347f3333e082b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:83:36:81:f1:28:77:03:34:1f:a7:5d:ee:1e:
cf:a2:d5:7a:d1:61:35:ed:af:6c:16:ad:90:43:90:
d1:5a:63:82:fd:3f:22:1b:ca:4f:ee:0c:22:bb:43:
0b:6d:5c:c5:72:1c:82:ea:3f:52:7b:f3:d8:26:3c:
0f:6f:41:a9:85:fb:1f:f6:47:db:e7:52:a3:3d:ef:
23:a6:ee:f0:e6:c1:8f:30:9a:e3:69:cf:a9:96:1a:
47:28:4b:7a:86:55:5c:51:fc:a7:3e:df:8c:ea:21:
16:af:b6:92:3c:cc:78:26:dd:c1:76:5c:ab:e1:79:
79:d7:4d:59:e0:64:a9:04:81:dd:d2:0e:8d:ce:a2:
87:61:59:7b:42:72:70:e7:ef:0e:64:75:1b:13:af:
33:59:9a:55:e9:12:30:8b:54:ab:59:4e:8c:20:98:
af:4e:d3:c8:2f:fe:48:be:c1:63:f0:89:e1:01:b6:
30:65:8f:f4:9a:ca:aa:b9:6f:8d:3f:e4:d7:26:98:
e6:15:bf:a2:41:b9:c6:c7:3c:6b:17:c8:6f:1b:d0:
9b:c0:93:4f:50:13:ed:a7:62:3e:36:21:e6:af:6d:
cd:38:de:24:b5:bc:7c:eb:81:53:7e:3e:95:09:a1:
ab:3f:8c:38:5a:3a:26:10:42:e4:97:67:45:c3:a4:
70:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4D:C6:FB:90:1D:D7:CB:90:F6:64:CE:C8:63:47:F3:33:3E:08:2B
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:69:cd:96:9d:67:1d:1d:ef:aa:24:40:36:1e:66:17:74:84:
0e:8c:64:cc:aa:f7:4d:79:41:c2:35:7f:10:9e:0c:fb:c8:22:
d0:94:77:12:67:da:8c:08:0a:b6:4c:d1:17:96:7b:3b:60:b6:
ce:1d:c4:76:80:5c:73:6c:ef:7b:8a:70:b0:4e:96:e7:65:fe:
a4:88:72:c9:53:7c:42:b2:57:6b:da:bb:76:05:cd:f3:92:cb:
34:1f:b1:86:f7:e3:8b:c8:46:d7:07:66:1a:40:9c:91:c9:81:
d7:88:84:54:2a:fe:3b:0e:95:95:e7:04:ca:76:ce:70:bb:56:
72:85:e6:27:8c:3a:d5:7b:71:8b:be:44:ae:03:95:a2:06:f2:
8a:79:15:11:c2:b4:5b:8e:dd:e7:6f:49:0e:90:9e:d4:b0:b5:
9d:3a:27:a9:3d:a7:5e:ef:d6:1f:ea:98:5b:14:8e:4c:d0:57:
eb:20:5d:2c:15:d1:11:2c:4d:0a:de:6a:3d:59:7f:fc:66:2b:
f1:dd:d6:0c:20:4b:3f:87:0b:60:a1:30:2f:f3:03:f2:e6:29:
0f:c2:d1:45:9a:77:b9:80:16:d4:3a:4e:cf:07:ad:8f:a6:4e:
a6:a0:28:db:db:bc:c8:ba:a2:78:ba:3f:b2:05:c8:3e:c0:b1:
2b:2b:c2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 00:30:47 2026 by rpki-client