Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
File: aO_MqEmPXSbBIK802EbAKB_2Ka8.mft (raw, json)
Hash identifier: VDownc0W2OvV51xNS/2kVlhpan7HYnFoeZIdBCZ7dHE=
Subject key identifier: 1B:E6:0E:72:7A:AF:C1:5A:DC:A5:7C:CE:5F:9A:A3:4F:4F:7B:0F:DC
Authority key identifier: 68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
Certificate issuer: /CN=68efcca8498f5d26c120af34d846c0281ff629af
Certificate serial: 019D9A071A2CABD07034039052B7F751E6CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
Manifest number: 1331
Signing time: Fri 17 Apr 2026 06:00:49 +0000
Manifest this update: Fri 17 Apr 2026 06:00:49 +0000
Manifest next update: Sat 18 Apr 2026 06:00:49 +0000
Files and hashes: 1: MbLIlykrQYjYoxOxJX_Xi7Q0gqo.roa (hash: JZAWsqEaWoolF2K9I8eqAWU5dEjO9ZBoN8vPUph4Lm8=)
2: aO_MqEmPXSbBIK802EbAKB_2Ka8.crl (hash: ndJEjGL8fwzSN5FJbjrNzEI9r78sTkngxdjtId3a1sY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:1a:2c:ab:d0:70:34:03:90:52:b7:f7:51:e6:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68efcca8498f5d26c120af34d846c0281ff629af
Validity
Not Before: Apr 17 06:00:49 2026 GMT
Not After : Apr 18 06:00:49 2026 GMT
Subject: CN=1be60e727aafc15adca57cce5f9aa34f4f7b0fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9e:0b:8d:9a:38:9b:94:e8:b8:f8:cd:21:af:
ce:36:19:a9:a0:7c:a3:f1:c9:7c:f5:f2:e0:af:d6:
61:95:73:79:b5:ee:15:e1:f7:7c:07:a6:dd:3a:f3:
43:7a:5c:81:22:e3:d0:ea:90:12:01:55:c0:d1:ec:
db:5d:4f:27:89:8f:a6:db:2d:63:2c:44:41:c0:76:
57:8e:70:65:dd:37:d2:d4:bc:00:00:ef:ff:d3:5b:
c9:9f:7a:69:ec:c9:d1:8f:79:d1:f5:0c:74:62:45:
56:2c:b4:d9:09:45:ab:90:3a:07:66:bc:93:65:d7:
af:ea:03:9f:8d:58:df:a9:72:55:11:97:e8:34:09:
d7:aa:26:33:59:ea:f5:00:cd:64:d6:9f:89:fa:7f:
ba:b5:98:d9:1c:9d:5a:eb:cc:09:ed:3e:53:3d:d9:
83:18:39:d7:05:7f:55:a6:89:77:b9:66:ce:d5:19:
1d:64:d9:8b:95:3a:7a:d0:87:17:91:44:14:01:27:
50:2f:a5:81:98:33:5c:b2:e8:af:6a:16:8d:df:6e:
fe:52:e9:79:31:2d:eb:e8:37:67:af:13:8a:d6:be:
da:9b:c2:bb:64:3e:4f:e9:71:76:31:7b:28:22:e8:
de:22:21:f6:e2:71:d5:55:50:c4:fa:d3:7e:5d:4c:
db:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E6:0E:72:7A:AF:C1:5A:DC:A5:7C:CE:5F:9A:A3:4F:4F:7B:0F:DC
X509v3 Authority Key Identifier:
keyid:68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:fe:68:d3:19:e4:88:60:d0:4d:96:cd:10:55:5f:a0:a2:56:
26:c8:26:be:62:68:b3:bf:95:e7:8f:d0:9b:bd:96:8a:1e:41:
c6:86:ab:6c:b2:c2:b9:15:94:27:0a:ef:4f:29:7e:ed:2f:76:
ee:c6:88:b2:18:6b:a5:68:44:5f:aa:8b:19:c8:e8:ad:6b:b0:
51:d7:ea:48:c7:1b:25:1d:ad:c5:fd:8a:2f:92:99:89:74:28:
99:c6:7c:bb:be:fb:55:05:f2:29:7e:5b:44:e5:d4:9a:78:41:
21:f3:06:a1:d0:3d:1b:6f:0e:34:45:74:2c:0b:9b:13:e6:3e:
a3:58:38:ec:1e:3f:37:a0:fe:fb:2c:7e:f3:e2:99:3b:63:d7:
95:72:2d:30:4d:5c:f4:82:b6:fe:18:5e:37:f4:09:21:db:9e:
3b:94:54:1e:7e:a7:d4:b0:6c:40:0b:4a:a5:60:cd:16:21:15:
98:f3:8f:5e:04:c7:d8:3f:72:3d:9c:88:53:8f:b0:4b:71:b8:
13:da:17:7e:60:c2:35:ca:39:08:df:62:e3:db:64:cb:de:2e:
3b:de:79:96:6b:fe:f8:ec:ee:ad:b3:d5:27:a4:84:63:f6:b8:
6f:ea:63:be:ce:02:34:5c:e1:36:a4:c2:8d:90:c0:2a:7d:8d:
50:40:1e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:19:12 2026 by rpki-client