Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: vy+I82pCXgOv3r2IP4F0REiAzF3OP1p+3jK/wY/FbH4=
Subject key identifier: 8F:A6:11:00:C9:6A:96:90:3D:F6:D3:B2:1A:CE:69:14:3F:CC:58:51
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 019CAC4766EA388747E35176D6D2F0DA1F25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 0C58
Signing time: Mon 02 Mar 2026 02:01:26 +0000
Manifest this update: Mon 02 Mar 2026 02:01:26 +0000
Manifest next update: Tue 03 Mar 2026 02:01:26 +0000
Files and hashes: 1: 4kjooCn4utyvNqQOgFxK7-kKLu0.roa (hash: UOUVc0j6e6Ip7AZ/AsFrmNnJ9pEwnrKNZc+DelE5OzU=)
2: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: xKJ1ICrmso4TBrJpH0AH1jtoEyjcT7+jUR1u3ojqu/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:66:ea:38:87:47:e3:51:76:d6:d2:f0:da:1f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Mar 2 02:01:26 2026 GMT
Not After : Mar 3 02:01:26 2026 GMT
Subject: CN=8fa61100c96a96903df6d3b21ace69143fcc5851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:b8:79:01:29:ce:94:58:c0:45:27:02:de:
d7:e0:4e:7c:2c:b3:d3:8c:fe:97:bb:6a:17:df:b9:
03:9e:e1:38:90:68:71:4c:c5:e0:a5:39:36:fa:48:
fb:50:54:0a:35:47:24:56:4c:ee:ce:d4:81:1a:e7:
42:51:46:89:79:e7:a4:e6:12:41:47:c5:75:36:38:
e0:47:53:9b:43:99:45:c1:22:a4:50:2d:97:00:82:
b9:d4:45:13:91:0a:1f:4d:04:f9:27:09:6a:f6:a3:
ab:68:5c:07:5b:24:a4:72:fc:79:74:af:46:69:d6:
d9:71:74:84:2e:5a:0a:58:71:2a:ff:b0:1a:37:f5:
38:8a:31:a9:90:23:df:7d:49:e4:49:e7:e7:06:91:
2d:fb:70:fc:38:3f:98:69:f7:5e:0b:79:2a:68:74:
48:e0:45:15:0e:ea:50:6c:2e:23:39:ab:9f:bf:76:
88:e9:a1:3a:3c:6a:a0:4a:b3:0b:3c:6f:b4:a1:25:
66:db:14:a1:ce:21:54:1b:ed:dc:3c:d5:4e:7d:0d:
cd:c5:9c:1a:c7:44:16:6c:63:99:c9:a5:e4:22:22:
ad:ed:b3:ee:e9:d7:e9:b9:0c:07:1f:d3:8a:8b:97:
4c:88:39:9f:ec:52:43:a7:5e:2a:eb:e6:92:7a:73:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A6:11:00:C9:6A:96:90:3D:F6:D3:B2:1A:CE:69:14:3F:CC:58:51
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:85:61:37:e5:cf:4b:a4:96:34:15:49:85:67:bc:d7:c1:31:
db:b4:b5:f1:9a:79:c0:48:f4:1b:b3:8f:54:de:c6:85:cd:18:
2b:6f:46:3a:37:b0:cb:3f:38:75:35:56:0b:16:9d:5f:7f:10:
6e:ca:68:1a:b4:a4:84:5a:12:3a:cc:b0:17:b2:44:87:3c:06:
b5:23:ce:8d:cc:8e:01:29:db:44:c4:ba:e8:8e:bd:bf:dc:f0:
ab:75:be:46:94:48:24:0f:95:d6:73:78:d4:83:58:4a:8a:f0:
22:ce:16:26:09:7d:8d:84:56:1f:c6:a6:7c:29:a1:f4:bb:81:
66:15:52:51:3a:b5:49:62:b7:65:74:e5:ef:23:1a:a7:df:5d:
6f:5f:5c:7f:c2:db:bf:2c:2a:42:63:ac:9b:0c:45:1c:b1:6b:
57:28:17:70:20:42:72:de:af:47:1a:f9:88:73:66:d8:3a:25:
03:5e:a1:c8:84:2a:69:18:88:ab:42:b7:46:95:08:c4:44:8a:
61:75:1d:9e:47:84:c2:05:b7:27:f2:44:de:d3:a5:44:0e:78:
17:51:a3:64:17:50:47:cb:c6:77:b5:61:3d:64:e8:d9:98:09:
b4:b7:c2:c5:a5:c0:3f:e3:a9:ab:b9:61:93:cf:e7:73:e2:5f:
c3:63:91:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysR2bqOIdH41F21tLw2h8lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ODEwZmZlNGY5MjAzYTEwMDY3N2Q2NTE5M2I0NDI2Nzg5
YWNmNWMwHhcNMjYwMzAyMDIwMTI2WhcNMjYwMzAzMDIwMTI2WjAzMTEwLwYDVQQD
Eyg4ZmE2MTEwMGM5NmE5NjkwM2RmNmQzYjIxYWNlNjkxNDNmY2M1ODUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7e4eQEpzpRYwEUnAt7X4E58LLPT
jP6Xu2oX37kDnuE4kGhxTMXgpTk2+kj7UFQKNUckVkzuztSBGudCUUaJeeek5hJB
R8V1NjjgR1ObQ5lFwSKkUC2XAIK51EUTkQofTQT5Jwlq9qOraFwHWySkcvx5dK9G
adbZcXSELloKWHEq/7AaN/U4ijGpkCPffUnkSefnBpEt+3D8OD+YafdeC3kqaHRI
4EUVDupQbC4jOaufv3aI6aE6PGqgSrMLPG+0oSVm2xShziFUG+3cPNVOfQ3NxZwa
x0QWbGOZyaXkIiKt7bPu6dfpuQwHH9OKi5dMiDmf7FJDp14q6+aSenMlZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+mEQDJapaQPfbTshrOaRQ/zFhRMB8GA1UdIwQY
MBaAFGiBD/5PkgOhAGd9ZRk7RCZ4ms9cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDct
YmRmNDMxZWI5NGYwLzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDctYmRmNDMxZWI5NGYw
LzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm4VhN+XP
S6SWNBVJhWe818Ex27S18Zp5wEj0G7OPVN7Ghc0YK29GOjewyz84dTVWCxadX38Q
bspoGrSkhFoSOsywF7JEhzwGtSPOjcyOASnbRMS66I69v9zwq3W+RpRIJA+V1nN4
1INYSorwIs4WJgl9jYRWH8amfCmh9LuBZhVSUTq1SWK3ZXTl7yMap99db19cf8Lb
vywqQmOsmwxFHLFrVygXcCBCct6vRxr5iHNm2DolA16hyIQqaRiIq0K3RpUIxESK
YXUdnkeEwgW3J/JE3tOlRA54F1GjZBdQR8vGd7VhPWTo2ZgJtLfCxaXAP+Opq7lh
k8/nc+Jfw2ORAg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:44:12 2026 by rpki-client