Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: 5U7AP5AvqCEchowbNSuFFqbzfh9PsfNFy7rxs3OMe/Y=
Subject key identifier: B0:E0:28:CA:8C:32:0B:C8:8C:11:FC:1B:1C:A4:55:C5:66:51:8D:46
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 019D9C9A2DEA98714B7F2F8E0EECFA4DEAD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 1607
Signing time: Fri 17 Apr 2026 18:00:43 +0000
Manifest this update: Fri 17 Apr 2026 18:00:43 +0000
Manifest next update: Sat 18 Apr 2026 18:00:43 +0000
Files and hashes: 1: J8ydQUQXwbdeLKGsKIlOYLkn-2g.roa (hash: x5tw3RQ3h8IFbqDxJqbX4jZdtBMVMlLrubg1cBqUbGY=)
2: ZnincJbZ5PaTXoMonj_Ctiiqrus.roa (hash: isWE5Tfc29wZU5CXfTVoPdXm00k/FOrPBirq1sQW5u0=)
3: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: MeMe/Xs6kXfV2vhtrdKK+bdof8dmqTs5Jv8R2NBkiYE=)
4: djk33VTAFS7Xg0krsRI1T_nFwPA.roa (hash: 8hgR6br/pEJbt5XXEd2D/vHBDf8jYfgzmueO6ffVo28=)
5: knCed-keSzVEOPICx1gRMxep3OM.roa (hash: PwNnPjtHsrQvIYgK4ATN14eaGro5/ZgkqW0B/Ot+2cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:2d:ea:98:71:4b:7f:2f:8e:0e:ec:fa:4d:ea:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Apr 17 18:00:43 2026 GMT
Not After : Apr 18 18:00:43 2026 GMT
Subject: CN=b0e028ca8c320bc88c11fc1b1ca455c566518d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:2d:91:81:5c:20:30:62:48:c2:8a:6a:45:
51:c6:68:ef:9b:9b:96:16:1a:06:16:a6:61:81:2e:
c8:29:cf:b6:5e:1c:a1:34:1d:47:6c:ec:31:7f:58:
8b:9e:fe:88:ea:6e:16:48:4e:3b:7b:6b:b0:41:e4:
bb:de:5a:7a:b2:0f:7b:30:55:b6:99:cc:da:8c:02:
78:97:ce:41:2b:ec:24:bc:19:df:52:77:7e:8b:fc:
20:8b:72:39:37:33:31:2d:0b:04:83:72:4c:c0:cc:
bf:48:1b:9a:da:35:62:30:a2:63:80:6c:66:76:65:
c4:b3:70:56:ad:54:38:f4:6f:ea:df:67:0e:8e:8b:
f7:95:fb:aa:ea:99:36:5a:1d:22:90:24:c0:e4:fd:
11:f1:06:75:63:38:c8:82:d2:15:c2:f9:9d:64:23:
a2:98:51:fb:0e:6e:52:6c:61:a2:7d:7a:53:c8:ab:
3a:16:98:1b:f3:f5:12:47:ae:57:62:db:f4:9b:99:
3a:7e:04:bf:d8:8f:cd:3c:d2:2b:eb:72:74:e9:e0:
f8:e6:ef:2d:de:53:99:9b:6b:67:2d:88:8c:c4:6c:
92:b6:d8:56:6e:4b:f3:74:9e:67:2b:5d:24:f1:08:
ed:9c:12:3e:94:ea:c3:71:1a:c1:29:ec:0d:82:ec:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E0:28:CA:8C:32:0B:C8:8C:11:FC:1B:1C:A4:55:C5:66:51:8D:46
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f1:e6:da:17:0a:5f:b3:80:d0:57:d9:f3:f0:0b:9c:d2:35:16:
8d:c5:6b:cc:72:1a:4e:b7:49:dd:a7:97:46:b6:00:79:16:33:
d7:af:94:37:29:ee:ac:0f:89:9a:88:1b:59:8a:c4:8e:1e:f9:
7c:11:64:d1:cc:a0:f7:cb:8f:bd:57:a4:ec:fe:79:a2:74:45:
1c:e7:64:5d:25:25:29:ee:c8:d3:f8:c5:45:28:1b:89:22:9c:
26:5a:cc:1a:60:4b:c6:90:b9:9e:ca:83:a8:2a:6d:09:eb:d2:
4a:93:a1:71:38:43:13:59:cb:96:17:41:ba:0d:99:72:4f:95:
83:50:6f:d9:2d:02:a2:83:3a:ce:85:ee:9d:21:5a:b3:a8:86:
89:31:07:38:77:f7:a9:b2:ea:bd:1f:81:f8:48:34:a5:09:20:
da:1e:c6:c5:91:37:4e:79:e5:58:01:d1:33:d5:b0:97:e9:09:
cb:5c:c7:82:91:e9:23:91:e1:d9:d3:94:00:36:c3:a1:e0:46:
80:46:b5:40:47:01:98:bc:fa:9e:c3:4b:44:2a:15:4b:9f:21:
96:84:4e:bb:ce:53:4e:3c:6c:f7:2a:2a:29:c1:c8:e2:12:6b:
a3:d1:da:37:36:b2:3e:d5:2b:38:fe:d3:38:a5:cd:d0:e8:a5:
cc:18:45:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cmi3qmHFLfy+ODuz6TerSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1
NTBlYmQwHhcNMjYwNDE3MTgwMDQzWhcNMjYwNDE4MTgwMDQzWjAzMTEwLwYDVQQD
EyhiMGUwMjhjYThjMzIwYmM4OGMxMWZjMWIxY2E0NTVjNTY2NTE4ZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW4tkYFcIDBiSMKKakVRxmjvm5uW
FhoGFqZhgS7IKc+2XhyhNB1HbOwxf1iLnv6I6m4WSE47e2uwQeS73lp6sg97MFW2
mczajAJ4l85BK+wkvBnfUnd+i/wgi3I5NzMxLQsEg3JMwMy/SBua2jViMKJjgGxm
dmXEs3BWrVQ49G/q32cOjov3lfuq6pk2Wh0ikCTA5P0R8QZ1YzjIgtIVwvmdZCOi
mFH7Dm5SbGGifXpTyKs6Fpgb8/USR65XYtv0m5k6fgS/2I/NPNIr63J06eD45u8t
3lOZm2tnLYiMxGyStthWbkvzdJ5nK10k8QjtnBI+lOrDcRrBKewNguxG8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLDgKMqMMgvIjBH8GxykVcVmUY1GMB8GA1UdIwQY
MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt
MzE5NzExMDA5N2M5LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5
LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8ebaFwpf
s4DQV9nz8Auc0jUWjcVrzHIaTrdJ3aeXRrYAeRYz16+UNynurA+JmogbWYrEjh75
fBFk0cyg98uPvVek7P55onRFHOdkXSUlKe7I0/jFRSgbiSKcJlrMGmBLxpC5nsqD
qCptCevSSpOhcThDE1nLlhdBug2Zck+Vg1Bv2S0CooM6zoXunSFas6iGiTEHOHf3
qbLqvR+B+Eg0pQkg2h7GxZE3TnnlWAHRM9Wwl+kJy1zHgpHpI5Hh2dOUADbDoeBG
gEa1QEcBmLz6nsNLRCoVS58hloROu85TTjxs9yoqKcHI4hJro9HaNzayPtUrOP7T
OKXN0OilzBhFQQ==
-----END CERTIFICATE-----
Generated at Sat Apr 18 03:10:17 2026 by rpki-client