Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: 1R5Z8Aeqwgsa4NYMWfKzG8YpbTdlut6Mid03EraXL0M=
Subject key identifier: 14:22:53:CA:9E:E2:89:71:FA:97:59:C0:94:7F:A6:29:F0:E9:AC:86
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 019DA309E9F33120CECEBB5D56F2A944FADC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 18C6
Signing time: Sun 19 Apr 2026 00:00:28 +0000
Manifest this update: Sun 19 Apr 2026 00:00:28 +0000
Manifest next update: Mon 20 Apr 2026 00:00:28 +0000
Files and hashes: 1: RxByI3rH_YsmBp9MFWCFAA3GDzM.roa (hash: kPBLDDqbqmranSBPQ+O5l9xhMyzuVrqfoP6GlvpDNU8=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: 2HPZBE9ufYcXumEhGrCgxlVoh6GSqZEuPxLHL98do/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:09:e9:f3:31:20:ce:ce:bb:5d:56:f2:a9:44:fa:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Apr 19 00:00:28 2026 GMT
Not After : Apr 20 00:00:28 2026 GMT
Subject: CN=142253ca9ee28971fa9759c0947fa629f0e9ac86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c7:f5:e5:e5:c1:04:3e:34:1e:83:cc:cc:c5:
57:ae:df:e3:f0:06:a3:3e:c8:9e:d1:0f:c8:6c:71:
91:a0:52:5a:01:47:b9:8a:c2:b9:ed:c4:1e:70:63:
83:12:46:08:2a:ef:00:dd:ae:c8:17:70:4b:36:f9:
7c:5e:4e:c3:fa:51:02:87:e0:f2:18:ad:f2:87:ac:
5e:8b:30:ea:41:39:c5:95:de:13:02:a0:ac:e7:43:
64:72:c4:73:e0:e9:a4:1c:bd:7e:77:83:25:8c:9c:
bb:f4:a0:2a:38:6b:cc:ad:ed:6c:7b:ee:b4:62:e2:
ca:6a:45:99:25:4f:92:8c:c2:4a:1f:e4:c5:b2:1e:
7c:9a:1e:2b:ef:e5:47:43:8f:3f:64:bc:0d:3e:83:
da:5d:cc:17:64:04:c2:50:4b:95:ef:9d:a4:b1:eb:
17:57:50:50:90:7b:78:92:01:58:e2:21:ac:31:6f:
a1:4d:bf:49:3f:f9:db:1f:f7:aa:a7:96:8e:2f:45:
1f:ad:ee:a5:28:c9:29:ed:bc:73:bf:c7:41:14:45:
32:79:12:85:c1:91:aa:c0:38:be:c0:4f:90:49:a2:
ba:6c:e2:29:bb:e9:d5:87:1c:45:09:cb:4e:7b:bf:
bf:78:25:db:b8:49:14:ad:50:53:42:63:a1:2e:87:
df:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:22:53:CA:9E:E2:89:71:FA:97:59:C0:94:7F:A6:29:F0:E9:AC:86
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f7:8e:7e:5a:ba:ee:86:82:fc:b2:35:13:9e:7b:35:f4:95:
88:19:b0:59:08:f6:bd:85:51:5a:de:19:eb:dd:17:4e:41:23:
1b:83:0d:f5:67:a1:f6:c7:24:75:29:df:4f:e7:0f:08:9f:c0:
b7:d2:67:b8:7b:4b:7e:9b:ee:0d:48:76:d6:5e:e0:a9:1f:3e:
03:0b:4b:5c:3e:ba:c2:03:06:18:d5:e1:3c:84:9e:2d:6c:61:
21:cc:a6:40:bc:d4:f8:0d:09:66:cf:f7:c1:41:50:19:39:78:
b8:16:ca:99:62:34:c9:54:e9:80:88:4d:69:69:8d:68:02:88:
a3:c7:1d:f8:86:6d:c5:5d:ea:36:c3:2b:20:77:77:12:43:1c:
93:ab:c7:72:d1:b7:f1:9c:9c:cb:86:55:ee:4d:92:6d:5d:9e:
ab:b4:a0:1f:46:73:e5:4f:98:ac:18:b5:e0:14:12:98:4e:9b:
86:f5:e6:c5:b5:32:4c:b2:05:1f:52:2a:a4:44:50:f9:21:76:
f9:7c:59:f7:d4:94:cd:b0:e6:8e:ed:cf:98:d6:6b:80:eb:dc:
a9:f1:42:9d:82:99:aa:3b:75:39:fc:eb:8b:40:dd:87:ae:18:
d0:f8:39:75:b2:40:26:3d:c9:5c:83:fd:7b:f7:84:0b:ee:9a:
36:10:7b:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:29:33 2026 by rpki-client