Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
File: aO_MqEmPXSbBIK802EbAKB_2Ka8.mft (raw, json)
Hash identifier: xqH8nqGwJ9A8q5B5W38L+vpwpzLudCxSk4FiWe/jJFQ=
Subject key identifier: 3A:5B:CE:97:E9:02:65:2B:AC:40:C9:17:BE:E0:6B:5A:05:D3:01:DF
Authority key identifier: 68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
Certificate issuer: /CN=68efcca8498f5d26c120af34d846c0281ff629af
Certificate serial: 019CAA8FFBCE7BF37C2E935FB3F146EB4F8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
Manifest number: 12B5
Signing time: Sun 01 Mar 2026 18:01:28 +0000
Manifest this update: Sun 01 Mar 2026 18:01:28 +0000
Manifest next update: Mon 02 Mar 2026 18:01:28 +0000
Files and hashes: 1: MbLIlykrQYjYoxOxJX_Xi7Q0gqo.roa (hash: JZAWsqEaWoolF2K9I8eqAWU5dEjO9ZBoN8vPUph4Lm8=)
2: aO_MqEmPXSbBIK802EbAKB_2Ka8.crl (hash: SzFlXrS2pFq9sJK24lUipme7R3kh6+rUD92PUjM8d0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:fb:ce:7b:f3:7c:2e:93:5f:b3:f1:46:eb:4f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68efcca8498f5d26c120af34d846c0281ff629af
Validity
Not Before: Mar 1 18:01:28 2026 GMT
Not After : Mar 2 18:01:28 2026 GMT
Subject: CN=3a5bce97e902652bac40c917bee06b5a05d301df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:9b:94:e8:c8:b5:05:ce:f6:85:e8:36:40:
b9:fa:1f:d9:e9:4d:af:e9:b1:71:99:2a:a7:4a:13:
b1:2c:5c:e3:92:b1:51:32:fe:12:27:22:b6:29:00:
e8:e7:2d:c3:c1:5b:93:32:30:fa:36:f3:12:f5:8a:
c5:6f:ca:78:04:6a:78:0a:b2:59:f6:c6:3f:08:13:
51:e0:16:a5:96:13:bf:bf:e3:53:e2:fd:f5:aa:ca:
6a:55:32:a6:dd:da:01:a3:89:93:74:a9:dc:09:20:
ff:85:2f:58:b1:fb:6b:3e:e9:77:50:74:28:bc:65:
3e:82:a1:58:82:bd:d7:ea:7f:6c:af:60:11:36:ba:
23:86:30:a7:87:d7:09:e4:12:92:e8:fc:da:e0:af:
8f:2a:6e:b9:9f:71:72:f7:b4:ab:99:dc:26:f6:3e:
47:13:ca:49:ec:5e:8d:56:1a:42:3a:79:cb:2c:f5:
9d:a5:cd:7b:4a:75:25:f9:64:7e:0b:79:55:b4:c1:
40:79:73:ca:f7:59:8c:ae:67:eb:ce:74:ae:cf:b6:
34:3a:ae:50:63:25:f5:91:37:eb:00:66:42:52:d4:
0a:e2:d4:5b:24:05:0e:30:08:60:2d:df:b1:3a:ba:
f9:53:16:85:0d:0a:05:7d:c0:96:78:f1:42:00:3e:
5b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5B:CE:97:E9:02:65:2B:AC:40:C9:17:BE:E0:6B:5A:05:D3:01:DF
X509v3 Authority Key Identifier:
keyid:68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:c9:ef:b8:b5:cb:c6:16:fa:75:dc:30:8b:05:c6:f2:42:73:
50:02:50:a5:cd:30:4c:f0:a5:6d:1c:66:04:1a:20:23:a6:c0:
32:9e:fc:fb:c6:57:b9:a6:02:49:00:02:35:ef:53:db:bd:7a:
5d:20:82:7d:57:4b:8d:14:11:a1:92:fa:aa:88:a8:04:95:54:
93:57:96:87:8f:a3:8f:7e:9e:c1:3e:e5:39:28:5f:6c:68:c0:
1a:27:0d:01:4d:4d:b8:a3:ce:62:19:95:28:70:03:81:cb:e9:
fe:81:f2:e9:3c:92:f5:9c:d7:80:16:30:15:49:28:3b:9b:e3:
1d:98:5f:7c:68:36:79:d5:e1:7a:14:f8:b8:56:df:5a:80:a9:
13:95:d8:6b:a7:2e:af:ab:77:a9:4e:ad:60:2b:94:70:61:13:
96:0a:f2:c2:c5:b1:55:cc:93:e6:31:a0:29:88:7f:56:aa:25:
c4:60:b1:3c:2a:c6:76:23:5f:b6:a4:b7:aa:e7:34:eb:ee:b3:
4b:31:2b:9f:1a:91:78:62:5a:c5:dd:6a:85:a2:8f:4f:c3:68:
bd:13:52:40:a7:34:9f:00:9b:f9:11:85:b1:4f:a1:9a:69:e8:
05:f1:ce:5e:90:b0:38:84:03:db:0a:17:f7:e1:97:db:05:4e:
6b:f8:c0:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:21:42 2026 by rpki-client