Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: Vy5fwqH01T1d/n0OpDVXcPAlXNqE1Ny8qkB3WzCRE0w=
Subject key identifier: BA:E0:64:42:DB:ED:F1:C2:41:92:63:28:6D:C8:11:08:A6:57:ED:4D
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 019F178BA981B1A8F4ADA8738FA8EA3113C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 14C6
Signing time: Tue 30 Jun 2026 08:00:56 +0000
Manifest this update: Tue 30 Jun 2026 08:00:56 +0000
Manifest next update: Wed 01 Jul 2026 08:00:56 +0000
Files and hashes: 1: 6tZKYli0xFjSrMTaPxgthKbfu_g.roa (hash: lqL9qb+FKGUxGrpBLb7Tf9OnZbQiDT4OvdfFGjgah0c=)
2: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: LUatZrQQTVtqQt+WLXViyEvynpSdRG2bx8FENRCYOMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:a9:81:b1:a8:f4:ad:a8:73:8f:a8:ea:31:13:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Jun 30 08:00:56 2026 GMT
Not After : Jul 1 08:00:56 2026 GMT
Subject: CN=bae06442dbedf1c2419263286dc81108a657ed4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c4:71:dd:97:82:95:4f:c8:e0:9f:fc:fc:2c:
1e:a8:34:61:73:96:fb:8c:af:d2:ec:8e:47:ae:e4:
f2:8e:2b:f8:34:13:d4:c0:75:01:a9:9a:4c:04:71:
81:45:6d:8d:3c:34:73:19:1d:35:44:c5:70:e5:17:
5b:12:52:f6:7a:17:bd:7a:5a:ed:d3:b6:45:0c:5c:
69:b8:99:c3:02:41:57:47:fe:43:c8:68:c5:31:6d:
1e:61:20:b6:e0:6a:e2:64:60:ac:10:17:29:77:50:
55:5a:8e:b9:bf:8c:1c:e9:49:e0:d0:00:c2:ca:8f:
e6:28:41:26:0d:e6:20:63:36:9d:ee:c0:91:e5:57:
e0:b1:e5:7a:8e:80:04:4e:a2:9f:85:b7:c8:dd:0b:
2e:89:1b:49:57:11:1d:e7:38:c3:f4:0f:98:4f:dd:
d6:35:15:3f:cb:16:1a:bf:83:89:90:e8:fd:f2:ab:
1a:ee:4b:f1:5d:58:c7:e0:39:fb:0d:4b:1e:05:eb:
14:84:53:1f:06:63:6d:3d:01:74:2c:29:66:ad:3e:
1d:5a:48:34:c4:0f:d2:77:fe:30:7a:b4:1c:ee:05:
96:f5:05:c0:7e:2c:83:ad:92:e6:e4:1b:89:23:25:
8a:5e:f7:be:c3:61:24:5c:b1:36:37:54:8e:73:a3:
ba:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E0:64:42:DB:ED:F1:C2:41:92:63:28:6D:C8:11:08:A6:57:ED:4D
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:9b:13:2a:a0:52:44:99:2c:b5:5b:6e:9d:e4:48:24:c1:57:
89:43:a5:a0:68:4b:80:ad:83:5c:54:c5:e3:26:2c:89:f4:d1:
42:fb:e6:9e:27:49:03:bd:ed:5d:b6:b8:31:5b:09:8d:e9:f8:
56:e0:0b:bb:17:fe:3a:93:b3:81:32:87:8f:af:b9:00:27:a6:
6f:a1:bc:46:b2:f7:d3:7c:ce:f2:f6:45:a4:c1:52:81:2c:a0:
c9:93:d5:f3:78:f8:c6:64:64:c8:93:9f:6a:d3:61:8d:e6:eb:
f9:21:c1:9f:2d:d9:ae:ce:6a:02:56:bc:7d:42:95:f3:bc:6d:
4c:dc:6b:74:c8:aa:ba:ff:09:52:e9:d8:88:13:09:a3:27:a9:
d3:c0:f2:b3:1f:5d:d2:42:68:6a:09:fd:d8:f5:a6:1c:ed:38:
0e:b4:3e:64:3d:96:dd:9c:66:9a:c3:0c:a5:11:b3:9d:ac:a9:
7b:de:e6:26:3e:64:b5:1b:a6:51:81:3b:82:c6:55:28:2c:94:
e0:b3:10:70:07:cd:2a:a2:cf:99:ce:d3:f1:37:f9:1c:74:a7:
0e:70:30:0a:a2:aa:b8:ec:81:d2:42:af:c1:52:f6:ab:9b:53:
2c:b9:f9:71:87:5b:d4:a7:49:45:37:e5:5c:b0:e1:a6:ba:23:
c6:99:77:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:17 2026 by rpki-client