Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: V1mG6xqrfTw8a5Nng9ZryU/LPYOKL/DrCNxUesRLjtA=
Subject key identifier: 4D:20:82:59:44:88:E2:17:3A:2F:20:A7:62:49:3B:EF:85:07:B6:56
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 019EC36DFDE11005D32136D853E39BA5B679
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 181F
Signing time: Sun 14 Jun 2026 00:00:26 +0000
Manifest this update: Sun 14 Jun 2026 00:00:26 +0000
Manifest next update: Mon 15 Jun 2026 00:00:26 +0000
Files and hashes: 1: WiR_mQTYvksNuDh5PyOkyT_J_1s.roa (hash: zaouvXmVUtph8h3UF1IqoXJQFtK55FqMyr4EuKbD7oI=)
2: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: KiaIURyF9S6NmgtbjuDygL8tzXGupDs14UrcoJtuRDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6d:fd:e1:10:05:d3:21:36:d8:53:e3:9b:a5:b6:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Jun 14 00:00:26 2026 GMT
Not After : Jun 15 00:00:26 2026 GMT
Subject: CN=4d2082594488e2173a2f20a762493bef8507b656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:89:34:18:44:2a:e0:a8:3d:f7:7e:b3:c7:d0:
5c:ed:1d:fd:46:1b:92:cf:58:39:1b:10:ee:d7:ca:
67:9c:ea:a9:55:d5:88:84:fa:65:a0:5a:a1:1d:2a:
17:b5:1f:b5:75:f8:9b:9f:19:8d:bb:42:2c:e4:88:
96:2a:f2:9c:d1:48:6e:a3:c8:24:b2:e8:25:e3:b8:
be:b3:6a:85:4d:ae:b1:29:cb:a0:a0:6a:85:e6:8b:
9f:8e:07:99:a5:97:10:ca:4f:66:b4:88:fd:b5:a4:
de:29:bd:22:37:55:79:fa:42:f1:e4:07:e4:58:0c:
48:db:10:59:ec:b6:ee:85:97:59:b9:64:5a:60:f8:
d8:70:b5:ac:91:f3:32:91:86:72:58:0f:15:27:dc:
84:28:79:e2:10:58:53:58:58:19:dd:4f:64:df:2f:
e5:2d:ef:24:50:c6:d2:67:a0:ef:3f:48:16:64:94:
9b:0a:3f:97:68:29:a3:43:16:e7:d4:fa:8f:28:be:
c9:8e:63:c3:83:2c:96:cb:9b:87:0c:67:2b:e2:45:
03:79:f2:28:98:19:54:49:ee:4f:5a:af:3c:35:6a:
af:99:97:98:eb:fa:cb:e9:4f:fe:4e:28:83:59:e2:
31:fb:a3:cd:aa:55:da:80:f5:d0:7e:a6:75:aa:95:
4d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:20:82:59:44:88:E2:17:3A:2F:20:A7:62:49:3B:EF:85:07:B6:56
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:d4:83:bb:b9:8e:7c:d9:58:7f:7e:97:c7:20:4f:fa:0d:08:
e9:3f:41:4c:c3:38:8c:2a:67:3c:9a:cf:b4:c5:36:4b:76:95:
13:c8:af:36:98:3f:dd:11:5b:ce:78:e4:dd:16:38:28:38:5c:
6d:12:95:36:ff:48:27:ef:07:73:fe:05:6e:1b:b7:76:2d:7a:
d5:f0:34:9d:ef:b0:5f:9b:94:4b:15:6b:15:b0:a7:5e:6c:95:
f0:c7:b8:54:4d:1c:02:d7:99:cc:42:e1:30:d8:82:01:61:bd:
dd:4a:66:ef:fa:b3:fe:c7:89:54:93:7c:82:e4:49:07:ea:c6:
d6:2f:96:46:71:4b:bc:27:e2:2e:ee:3b:b2:2f:d7:70:01:da:
21:22:6e:5d:e8:6a:f2:66:30:7a:e1:b9:df:fe:40:f5:5b:5d:
ba:74:a5:70:21:86:c1:f9:26:75:5a:ee:ae:ca:4f:70:c3:0b:
ac:13:c0:10:31:07:cc:fb:bb:96:5a:2e:b1:47:f0:c5:30:2c:
83:16:d4:54:9a:6d:70:18:ce:c4:97:bc:1b:dc:df:87:f9:df:
31:14:5c:8a:09:e8:9e:d0:94:a1:3c:4c:f3:c0:0a:68:04:2d:
20:ca:db:e0:60:97:b6:24:d4:4f:58:fd:98:20:57:15:ce:93:
af:ff:d5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:16:16 2026 by rpki-client