Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: 8zOx7FmOvrB5MxpZ2mQWBPU3hlzLJ54rErZB0Ka33Sk=
Subject key identifier: 42:9C:0E:F1:89:5F:11:23:AC:78:D7:AF:BD:38:CF:41:4A:E0:C8:AF
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019D9998E5875D79EF319F585042A16FB6F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 04:00:27 +0000
Manifest this update: Fri 17 Apr 2026 04:00:27 +0000
Manifest next update: Sat 18 Apr 2026 04:00:27 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: APo3XpYK0QHtT/NYzJJgMfGaWS+Td4kDBQX9GHZhFso=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:e5:87:5d:79:ef:31:9f:58:50:42:a1:6f:b6:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Apr 17 04:00:27 2026 GMT
Not After : Apr 18 04:00:27 2026 GMT
Subject: CN=429c0ef1895f1123ac78d7afbd38cf414ae0c8af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:1c:e7:80:2f:74:11:ba:01:64:a7:c6:f6:
1a:bf:71:d9:c9:cc:fd:0e:96:61:95:0b:52:0f:5f:
32:6a:04:82:64:3d:cf:7f:ce:f9:df:9a:f6:77:98:
5e:73:6e:6b:b5:dd:e1:b3:c4:3e:52:3e:13:b9:19:
24:d8:0d:ea:a1:5e:8b:3b:03:ea:cc:f9:d6:d2:b6:
aa:d4:bc:f7:72:41:ee:b1:31:25:4c:6e:9e:b0:64:
30:f8:72:10:6a:09:8c:8e:5d:97:4a:85:02:d1:45:
d4:c1:9f:53:da:b6:34:42:6d:1e:2b:c7:81:2f:f3:
27:81:3f:cf:dc:71:8c:cf:8a:71:0b:03:7e:8e:b2:
c3:3a:eb:df:c0:5e:c0:c6:37:74:da:0f:5d:11:c4:
61:76:08:dc:dd:04:a9:c9:3e:5f:62:a2:23:73:3a:
2d:a7:f5:e7:b9:ae:a9:66:0a:c8:9c:0f:79:4e:6f:
3c:f4:ea:dd:fb:24:c6:da:42:08:31:05:4e:c0:0a:
cf:51:cd:75:09:02:53:9d:92:e1:6b:73:81:5f:f2:
cb:69:10:67:5d:c7:80:b4:42:6f:0a:0a:8c:9a:0e:
89:de:f2:fb:be:f1:12:39:cb:05:a2:1e:45:94:3b:
a7:4c:76:21:52:d7:a7:7f:d0:d5:ba:42:f1:b8:32:
dd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9C:0E:F1:89:5F:11:23:AC:78:D7:AF:BD:38:CF:41:4A:E0:C8:AF
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c4:e9:76:bc:bb:b5:7d:96:1e:bf:a8:03:7e:17:bd:f6:45:
ef:5c:31:08:85:6a:89:f9:5c:3e:61:1d:fb:36:7b:50:1b:0b:
42:d5:aa:39:e1:5f:96:89:e3:00:db:96:a7:d4:e1:6d:bb:a7:
9e:a0:ec:07:c9:da:d3:11:9b:cd:8c:94:7b:cb:70:f1:0c:cb:
68:f8:d2:42:de:f5:7c:80:3e:ab:da:11:f3:f8:6e:80:2f:ca:
44:c7:2e:47:cf:d5:71:33:d0:3d:3f:fe:d2:9b:b1:98:e0:f6:
6a:0a:15:e4:21:8f:9d:fc:98:88:70:ab:97:3d:90:0d:ff:03:
70:ac:be:fd:58:3a:71:e4:d4:42:3c:7b:fb:56:bd:24:8e:e8:
df:58:11:36:b9:70:db:75:aa:6e:5d:27:c6:db:30:5a:20:3c:
b3:29:03:a7:e3:5f:83:0d:55:74:63:31:0c:96:19:6a:1b:0a:
73:c2:a2:c5:db:82:51:6f:51:04:94:1d:33:60:51:89:6f:df:
33:3e:a1:46:32:73:9e:84:cc:b6:1b:3c:0c:60:80:da:49:70:
b4:55:d5:e9:55:a1:16:d5:ba:3c:d4:ff:97:ae:0a:49:f3:9a:
6c:8e:fa:17:85:11:9c:a9:85:5f:e2:99:1f:da:04:8d:31:06:
df:ac:54:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:32:12 2026 by rpki-client