Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
File: aIt13GcpXVhht31RoCEYtg3FWGg.mft (raw, json)
Hash identifier: lwh+NSlJe8x9YcB2C6dkvU8Q0tpfgyu2sQvTqsxKyTU=
Subject key identifier: 24:BF:CF:AB:52:E3:F9:8F:1C:C9:63:D1:03:AC:B9:6D:5A:9C:07:04
Authority key identifier: 68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
Certificate issuer: /CN=688b75dc67295d5861b77d51a02118b60dc55868
Certificate serial: 019CAAC6700F83DD1DD97EAEB35952F5C9FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
Manifest number: 0F50
Signing time: Sun 01 Mar 2026 19:00:57 +0000
Manifest this update: Sun 01 Mar 2026 19:00:57 +0000
Manifest next update: Mon 02 Mar 2026 19:00:57 +0000
Files and hashes: 1: LMUQmobuHVJEXOLCk7qulvM9xco.roa (hash: VHioZYEBKZU7KL0P7CQwH0VWVc2gjtg5Dg7pb7IsEAE=)
2: aIt13GcpXVhht31RoCEYtg3FWGg.crl (hash: Unj1cNBYfsHitcVN9GlrQcGOKXzzbdlJfhpFlDpOAPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:70:0f:83:dd:1d:d9:7e:ae:b3:59:52:f5:c9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=688b75dc67295d5861b77d51a02118b60dc55868
Validity
Not Before: Mar 1 19:00:57 2026 GMT
Not After : Mar 2 19:00:57 2026 GMT
Subject: CN=24bfcfab52e3f98f1cc963d103acb96d5a9c0704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:04:70:91:a6:19:30:ce:cd:33:b2:23:4c:
e6:f2:06:c8:a5:63:55:0c:5f:9a:89:8e:80:82:fa:
5e:d0:04:94:a1:d1:0a:2e:41:d8:93:e7:c6:a6:2d:
55:68:52:b8:83:e7:81:b0:19:e0:22:f3:e5:e3:32:
93:4f:19:42:2d:4c:99:37:46:7a:fc:b7:dd:d0:30:
2e:78:b6:99:90:7c:99:5c:e6:ed:fd:a0:58:79:d3:
3e:c3:50:2c:99:f1:95:1b:7f:da:74:af:97:ce:38:
9d:4e:50:1b:1e:24:87:32:c4:ce:4d:4a:87:9e:5e:
6c:1b:f0:da:01:8d:13:8a:91:35:22:6e:7e:cf:da:
01:61:2b:62:07:c9:92:7e:f1:e5:fa:4d:73:52:64:
4f:3e:1a:fa:2f:1c:32:06:4f:38:ce:d6:26:7b:f2:
5c:b1:af:f9:f5:f8:ae:42:c8:8c:64:b8:c6:1e:81:
77:83:cb:0a:67:4c:66:99:98:2c:b8:6f:a0:67:02:
06:32:65:4e:36:7b:cb:d2:ad:a1:88:b3:9a:9c:fa:
26:e7:73:bd:8b:66:da:79:e2:6b:5d:fc:52:f5:2d:
58:df:53:2f:6a:6f:55:82:75:65:81:fc:4c:ff:79:
5c:f0:21:2e:5c:57:61:c0:dd:ef:a2:a8:e2:a5:11:
b0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BF:CF:AB:52:E3:F9:8F:1C:C9:63:D1:03:AC:B9:6D:5A:9C:07:04
X509v3 Authority Key Identifier:
keyid:68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ea:00:75:43:a7:36:36:9e:75:b7:45:07:34:42:de:f1:ee:
8f:d6:bd:31:6c:2d:4f:f2:50:23:95:c3:15:dc:6c:ac:d6:ff:
1c:15:e3:bb:98:50:26:a3:58:3b:e2:94:e6:76:5a:dd:55:83:
ae:36:c8:8b:f9:dc:86:aa:3e:d6:26:52:c6:bf:87:0e:49:98:
89:cd:bf:41:2b:90:4b:98:f5:9b:70:46:a7:bb:88:5d:16:33:
ed:d1:16:bf:95:e5:ec:04:87:08:e3:1d:8b:8b:23:a7:2b:f0:
0f:85:a6:eb:be:2a:53:36:d1:40:ad:08:b3:20:a6:6d:d3:0d:
71:82:8c:68:34:56:69:63:67:b3:d6:89:57:f9:23:c8:87:d6:
87:31:81:96:7e:ba:24:8c:5f:ce:db:fe:07:30:9d:aa:74:b1:
be:1d:18:2b:05:1a:11:e9:13:fe:6b:e6:8d:ac:ac:ca:db:58:
dc:5f:25:33:51:31:17:de:3f:bc:f1:5c:7d:21:64:07:91:49:
d1:b7:a5:a3:46:4c:ff:ca:50:e0:49:12:08:47:f4:42:70:f7:
5b:cc:9e:5e:13:10:38:62:e3:c9:32:99:89:12:22:d9:79:d2:
15:6f:f7:49:45:aa:7b:ea:91:49:24:fd:cb:66:d1:65:6c:fa:
95:30:6c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:51:37 2026 by rpki-client