Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: IsAFciTSXLkTVzs2owCCacXz69tC+D6dYqlIGwke8h4=
Subject key identifier: 53:87:B2:B3:D2:5D:D7:5D:B7:19:39:54:F5:BC:6F:C1:9C:AC:05:29
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 019CAC10160862BEB220E11481F38671CDA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 0AA6
Signing time: Mon 02 Mar 2026 01:01:01 +0000
Manifest this update: Mon 02 Mar 2026 01:01:01 +0000
Manifest next update: Tue 03 Mar 2026 01:01:01 +0000
Files and hashes: 1: 1QpbjmDLVcUMqnNrCbGP4FA5FaY.roa (hash: 5prhYgOZoGVGdhCQditPaOssQQZBoW2n1oXkHDCQF6E=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: b5JCJfH2eQUO8CHdR87QzSAxQOeBL6yqlav4S68K6GQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:16:08:62:be:b2:20:e1:14:81:f3:86:71:cd:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Mar 2 01:01:01 2026 GMT
Not After : Mar 3 01:01:01 2026 GMT
Subject: CN=5387b2b3d25dd75db7193954f5bc6fc19cac0529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7f:c9:e1:c6:07:e1:9c:96:58:3c:1f:42:fb:
a0:e2:ed:b7:3a:d6:3f:70:5a:ce:5d:0c:6c:1f:fa:
26:28:ab:86:95:5f:e0:71:54:fa:f7:da:fc:39:58:
f2:01:d5:bd:d4:e7:30:21:bb:f5:12:8d:b5:7f:8a:
78:25:12:d0:04:e4:4c:09:89:c2:e2:b5:bc:5b:54:
35:7e:05:66:fe:ab:d4:86:00:44:bc:d4:b8:80:c8:
7f:8a:b0:17:54:74:54:9c:a2:58:f5:22:03:27:62:
f3:26:00:5f:e2:4d:60:e0:ae:c1:39:0c:6e:65:94:
b7:82:2a:4b:ba:9a:c2:b3:5c:b1:bf:3b:02:48:1f:
92:c8:78:58:de:d4:7a:31:87:17:b2:fc:6e:8b:98:
b7:af:0b:05:e6:cd:b5:79:ae:61:9f:e6:0f:d9:4e:
4a:8b:5d:98:ad:ad:78:57:ba:e0:a7:0a:94:16:35:
8a:d7:08:26:5c:c2:89:b5:6c:c3:83:6f:5a:bc:31:
14:4b:31:92:fd:49:73:6a:8a:b8:b9:f6:20:79:f8:
33:12:91:f6:48:65:17:5c:3c:49:e4:10:54:5e:c8:
91:bb:97:f1:a4:77:e9:46:7c:7f:a1:a9:ff:81:d8:
c3:03:9a:fd:1d:a1:b7:a0:a8:c4:72:6a:d9:c7:76:
ee:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:87:B2:B3:D2:5D:D7:5D:B7:19:39:54:F5:BC:6F:C1:9C:AC:05:29
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:c5:0b:50:01:95:ba:fb:38:b1:07:37:8a:bf:09:11:c8:84:
0e:36:06:0d:3e:6d:15:4f:2e:73:11:91:cf:d9:6d:d6:13:3f:
43:74:c4:7b:1d:1e:fc:99:13:dd:27:c6:4b:27:78:ac:e3:2c:
a2:98:b5:a6:3a:91:15:dc:bc:c3:d9:8d:d0:7f:5b:24:80:94:
18:a9:23:b5:e8:66:e0:31:d6:77:bf:1b:d9:1e:9c:62:34:b7:
d8:51:9e:c6:c0:4d:25:61:3b:e0:a5:44:da:a5:cf:0f:b0:bc:
1b:79:ad:0a:3d:53:d7:83:2e:b2:5e:d0:fa:ef:52:a6:a9:67:
0e:67:8f:82:e6:05:93:85:1d:89:81:86:5e:20:9a:68:a0:e5:
c5:6a:a5:e3:17:4d:13:b0:35:15:f2:d9:17:d6:70:c8:ca:d2:
98:d5:b0:67:6a:ff:f5:04:5a:78:0e:30:89:30:26:5c:e4:b4:
05:55:4b:90:40:f9:e5:27:74:ad:ab:36:19:d2:13:39:84:83:
b9:e3:38:9b:93:af:4f:ec:87:bd:e0:b4:b6:65:cc:1e:ab:44:
9f:67:39:d0:55:a4:f4:2b:81:33:70:02:8c:12:a7:0b:3f:65:
38:83:4d:ca:9b:d0:5a:cd:1c:cd:fa:d1:1e:3f:56:06:b7:06:
16:41:1e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:40:45 2026 by rpki-client