Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: 9x0EmzEjLo4OGtycSYsGqc4xT8kjGMscZc3sfeS2PpM=
Subject key identifier: 1F:02:63:97:89:D8:67:BF:53:CA:A6:97:FC:F2:F7:39:DD:A8:6A:27
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 019D98189C16CCACE1221E9288BA2CADF017
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 1784
Signing time: Thu 16 Apr 2026 21:00:42 +0000
Manifest this update: Thu 16 Apr 2026 21:00:42 +0000
Manifest next update: Fri 17 Apr 2026 21:00:42 +0000
Files and hashes: 1: WiR_mQTYvksNuDh5PyOkyT_J_1s.roa (hash: zaouvXmVUtph8h3UF1IqoXJQFtK55FqMyr4EuKbD7oI=)
2: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: w9dZBwH41G0v5JSLAgIjTYnD/vLetzVPBEiVREkbjTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:9c:16:cc:ac:e1:22:1e:92:88:ba:2c:ad:f0:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Apr 16 21:00:42 2026 GMT
Not After : Apr 17 21:00:42 2026 GMT
Subject: CN=1f02639789d867bf53caa697fcf2f739dda86a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:61:1c:ad:8e:f5:27:9d:ef:2e:79:1e:1f:bc:
70:63:1a:bd:20:22:3b:37:15:b4:d2:aa:a9:a5:2e:
6d:92:0e:d6:aa:12:02:c4:29:6e:ff:37:c5:e3:42:
9f:82:36:87:11:cd:36:3e:53:b2:82:f6:55:60:ab:
a5:76:4f:86:9a:2f:fd:c9:af:a2:57:24:21:f2:11:
ff:33:c2:3b:24:66:13:64:af:00:c0:52:72:c5:81:
b9:20:8d:cf:5a:ec:01:ce:17:d5:8c:c5:13:d0:97:
49:96:ea:dc:07:6b:4e:70:8e:f6:d8:8f:98:09:27:
51:a1:ac:26:51:9c:aa:6a:11:c6:4b:bd:32:7e:74:
6a:4d:52:42:d8:41:8c:33:26:5f:a5:58:79:9c:64:
ec:f0:22:6a:73:3b:3f:8d:b8:e9:51:b7:28:20:49:
d7:08:f5:d0:62:27:fc:d4:91:62:92:cb:ea:c8:a1:
08:65:46:a9:3e:44:eb:65:21:cd:ca:2e:95:01:18:
1f:2d:3d:14:73:a7:ca:7b:87:ec:03:4e:01:f7:21:
5e:19:43:e1:32:35:85:80:d8:c7:8e:05:ab:05:7e:
75:9f:f0:05:3a:fa:9c:21:ae:2e:42:0b:24:a4:06:
8b:44:94:4a:f2:ef:fd:eb:c7:60:17:35:4d:a0:f8:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:02:63:97:89:D8:67:BF:53:CA:A6:97:FC:F2:F7:39:DD:A8:6A:27
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:53:f0:d7:c9:7f:d4:12:64:f2:09:cc:e5:72:ab:c9:46:32:
d4:cf:62:19:5a:ba:ad:92:59:5d:84:7e:ae:fd:6f:b4:7f:51:
e8:f3:91:7a:8a:7b:bb:9e:c8:a0:0a:2f:59:b6:3b:05:c6:63:
6a:48:39:29:17:d1:03:0f:0c:d8:04:67:cc:a6:30:09:73:6f:
30:b5:6f:34:f9:37:b5:5c:0c:6e:45:b6:ac:95:0d:ae:53:67:
2d:c5:b4:d6:36:ab:47:cf:10:3b:23:bc:90:60:30:e3:bb:31:
01:52:2b:09:5d:1e:e8:d1:cd:23:15:c5:96:87:eb:db:57:1f:
46:e0:3d:67:a6:f7:ac:c3:53:56:82:d7:43:81:60:19:aa:b6:
59:65:a5:d5:31:b9:a8:ec:a2:c7:84:39:a0:03:bb:46:66:8c:
f0:a0:77:70:4d:40:89:d8:15:4f:8c:04:24:a7:71:e9:24:5f:
14:d5:c0:24:fe:2f:5e:4f:83:55:72:81:41:ba:c7:87:31:5b:
52:b2:66:6d:bc:bf:cb:d0:c9:6c:c8:9f:9e:27:f0:b3:98:06:
c5:ea:26:e6:1b:77:c0:e6:e9:35:bb:26:a9:a9:81:90:d8:b0:
23:95:8d:b5:56:db:ff:0f:bc:53:bc:dd:38:c1:3f:46:93:f8:
be:ed:7d:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YGJwWzKzhIh6SiLosrfAXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhM2E4Yjc0YWQ0ZWQ2NzM3OTdhOWY2Yjc3NDljMjIzNDU2
OTc5ZDAwHhcNMjYwNDE2MjEwMDQyWhcNMjYwNDE3MjEwMDQyWjAzMTEwLwYDVQQD
EygxZjAyNjM5Nzg5ZDg2N2JmNTNjYWE2OTdmY2YyZjczOWRkYTg2YTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGEcrY71J53vLnkeH7xwYxq9ICI7
NxW00qqppS5tkg7WqhICxClu/zfF40KfgjaHEc02PlOygvZVYKuldk+Gmi/9ya+i
VyQh8hH/M8I7JGYTZK8AwFJyxYG5II3PWuwBzhfVjMUT0JdJlurcB2tOcI722I+Y
CSdRoawmUZyqahHGS70yfnRqTVJC2EGMMyZfpVh5nGTs8CJqczs/jbjpUbcoIEnX
CPXQYif81JFiksvqyKEIZUapPkTrZSHNyi6VARgfLT0Uc6fKe4fsA04B9yFeGUPh
MjWFgNjHjgWrBX51n/AFOvqcIa4uQgskpAaLRJRK8u/968dgFzVNoPiO7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB8CY5eJ2Ge/U8qml/zy9zndqGonMB8GA1UdIwQY
MBaAFGo6i3StTtZzeXqfa3dJwiNFaXnQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWpxTGRLMU8xbk41ZXA5cmQwbkNJMFZwZWRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81M2FjYTItZTg4OC00MjFjLWI1OWEt
Yzk1OGJmNGY4OTkxLzEvYWpxTGRLMU8xbk41ZXA5cmQwbkNJMFZwZWRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81M2FjYTItZTg4OC00MjFjLWI1OWEtYzk1OGJmNGY4OTkx
LzEvYWpxTGRLMU8xbk41ZXA5cmQwbkNJMFZwZWRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1Pw18l/
1BJk8gnM5XKryUYy1M9iGVq6rZJZXYR+rv1vtH9R6POReop7u57IoAovWbY7BcZj
akg5KRfRAw8M2ARnzKYwCXNvMLVvNPk3tVwMbkW2rJUNrlNnLcW01jarR88QOyO8
kGAw47sxAVIrCV0e6NHNIxXFlofr21cfRuA9Z6b3rMNTVoLXQ4FgGaq2WWWl1TG5
qOyix4Q5oAO7RmaM8KB3cE1AidgVT4wEJKdx6SRfFNXAJP4vXk+DVXKBQbrHhzFb
UrJmbby/y9DJbMifnifws5gGxeom5ht3wObpNbsmqamBkNiwI5WNtVbb/w+8U7zd
OME/RpP4vu19sQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:48:20 2026 by rpki-client