Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: 8mnGLVVzwLtTFj1wWUKfgXaTJpz0s4gGKH+IIyNaWtQ=
Subject key identifier: EE:2A:08:21:B9:E1:9D:D6:9C:BB:C9:CC:60:20:98:75:00:2C:0F:21
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 019CAD226C3B3AE9972F52409FF29D47B3E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 158B
Signing time: Mon 02 Mar 2026 06:00:40 +0000
Manifest this update: Mon 02 Mar 2026 06:00:40 +0000
Manifest next update: Tue 03 Mar 2026 06:00:40 +0000
Files and hashes: 1: J8ydQUQXwbdeLKGsKIlOYLkn-2g.roa (hash: x5tw3RQ3h8IFbqDxJqbX4jZdtBMVMlLrubg1cBqUbGY=)
2: ZnincJbZ5PaTXoMonj_Ctiiqrus.roa (hash: isWE5Tfc29wZU5CXfTVoPdXm00k/FOrPBirq1sQW5u0=)
3: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: IfawAlD8nMNMW+1+sEmc9siIblBV0QHYJmioS5uNpzg=)
4: djk33VTAFS7Xg0krsRI1T_nFwPA.roa (hash: 8hgR6br/pEJbt5XXEd2D/vHBDf8jYfgzmueO6ffVo28=)
5: knCed-keSzVEOPICx1gRMxep3OM.roa (hash: PwNnPjtHsrQvIYgK4ATN14eaGro5/ZgkqW0B/Ot+2cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:6c:3b:3a:e9:97:2f:52:40:9f:f2:9d:47:b3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Mar 2 06:00:40 2026 GMT
Not After : Mar 3 06:00:40 2026 GMT
Subject: CN=ee2a0821b9e19dd69cbbc9cc60209875002c0f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ff:39:4f:08:31:2a:d1:a9:da:2b:4f:61:91:
f9:40:c5:16:c3:e5:42:e5:8e:ee:5b:91:ae:76:ba:
28:37:c2:4c:ec:b8:c2:32:d7:25:b9:c1:0b:9d:f4:
84:0f:ec:c3:2e:40:bd:80:de:49:f1:f2:2f:fa:78:
99:24:71:2f:9c:eb:eb:2e:02:13:c0:84:a2:e0:ce:
36:36:f2:5d:1c:a4:f8:07:c4:fa:c4:b8:18:46:f9:
0c:be:13:3a:86:77:30:5a:7a:ff:07:81:b1:57:7a:
5f:dd:8d:d9:d1:a3:e6:e6:fc:3a:5a:58:8f:03:a5:
bc:ad:6c:d5:fb:92:88:a3:27:ef:d2:53:5f:2d:34:
f1:9c:b2:ea:3c:89:4d:cd:a9:f4:0b:fb:80:f6:cb:
8b:a7:81:c5:92:1a:af:6a:b9:37:6c:37:0c:f9:90:
d0:62:c3:c5:95:38:ce:e0:f8:48:75:8a:44:b6:28:
65:dd:9f:26:23:4f:ea:f0:6b:2f:52:51:f5:04:76:
66:6b:1e:5f:4f:0f:cf:80:1d:40:d0:3e:59:56:f0:
42:b6:67:9b:de:1d:d1:c3:98:e1:a6:1d:8a:aa:0e:
f9:68:af:fe:ab:1d:ac:42:b5:97:46:eb:60:75:d6:
aa:53:dc:0a:d5:87:7f:29:d2:7b:bc:d0:16:d6:1a:
8c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:2A:08:21:B9:E1:9D:D6:9C:BB:C9:CC:60:20:98:75:00:2C:0F:21
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f9:8a:30:dc:9d:56:f4:59:94:e9:2d:ad:27:8e:cc:1e:6d:
05:83:6b:93:06:04:b2:c4:20:5a:7f:be:13:a1:e6:46:8d:44:
6c:6f:eb:b9:07:99:68:6e:d8:57:bd:23:c1:4d:4b:30:ba:8e:
8a:6a:a2:ee:ba:c1:80:0e:1f:5f:ab:b2:51:28:b6:98:69:63:
e4:7a:f4:3d:47:39:9e:e2:4a:c3:72:59:5b:26:8e:0d:60:3b:
7d:42:7f:de:e5:39:35:0f:61:cc:fa:21:23:22:8f:7a:a7:e5:
a7:93:d5:ba:bc:25:38:a3:d3:e1:ec:65:44:39:8d:e9:cc:13:
26:8a:01:51:15:06:87:b4:8b:77:7d:19:a0:f3:69:92:fe:c2:
4d:a7:9c:69:1d:33:87:2c:79:ab:da:3e:54:a2:59:ff:ca:28:
cf:39:a1:0b:7b:55:0d:71:d6:fb:b0:50:b1:76:b2:11:64:1c:
05:01:04:1e:88:32:35:1a:57:f9:0d:c5:be:34:57:e1:29:dd:
6e:b2:ea:a5:22:cd:32:2c:7a:68:a7:ac:59:e6:6c:1a:bd:78:
46:87:ed:a7:12:9e:29:36:2b:79:76:b4:c6:46:a9:55:c8:a2:
05:0e:c3:97:d1:db:b5:bc:13:75:a0:00:94:19:9d:23:4e:ce:
d9:70:99:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:10:24 2026 by rpki-client