Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: f1kvje1TBEN4DWrnFJ7AW+o6WYxCXWMAC+POb4qLbV0=
Subject key identifier: DD:BF:BC:DF:08:F7:37:2E:19:04:D4:99:84:F8:A3:AC:92:03:00:21
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019CAA21BD222BE2BEF3757A1EC250D5EF38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 16:01:03 +0000
Manifest this update: Sun 01 Mar 2026 16:01:03 +0000
Manifest next update: Mon 02 Mar 2026 16:01:03 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: 8qbAFn479BQC/WdDqWESVkznkGmxJNpSnKlsiLl5pxE=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:bd:22:2b:e2:be:f3:75:7a:1e:c2:50:d5:ef:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Mar 1 16:01:03 2026 GMT
Not After : Mar 2 16:01:03 2026 GMT
Subject: CN=ddbfbcdf08f7372e1904d49984f8a3ac92030021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:2e:44:bf:2b:bf:14:58:f7:e1:d9:de:5a:3e:
30:b1:8a:3a:74:99:e3:16:d6:64:8c:e9:4d:80:f1:
13:27:03:f3:c0:f4:c2:e4:b4:81:a4:b2:c1:f6:87:
97:58:02:d0:2b:da:fc:1d:d4:ff:16:4d:f1:2e:ca:
e0:fb:97:9f:db:0e:eb:bc:f9:f7:2e:af:d6:5e:1e:
bd:9d:80:9f:4f:50:e0:ae:b9:98:73:9d:e8:11:77:
a8:e4:7a:87:bb:1b:d6:65:47:e6:8c:f9:7b:81:43:
85:82:55:f2:d1:df:15:29:3d:4e:9c:10:8d:7c:d7:
e5:25:67:bd:ed:40:48:4c:23:43:56:3e:ad:63:4c:
22:15:2d:53:f3:a0:83:97:e7:0a:c5:3e:93:0e:ce:
1a:8b:4b:bf:ac:67:23:ee:d2:f8:3f:5e:4c:52:77:
4a:da:f7:c7:b1:c8:c6:7d:a8:7d:38:22:63:33:06:
9d:ce:b7:1e:03:1c:7c:cc:9a:27:6e:ee:3c:20:09:
36:74:fe:eb:b7:12:a9:d8:bb:8b:42:72:ae:21:f3:
f4:ce:db:8e:47:96:1a:6b:3f:01:27:9d:87:9e:95:
c8:6b:66:c8:a8:2d:49:4f:e1:42:bb:77:90:d0:ed:
2d:7a:d2:1b:28:66:52:3d:45:45:72:6c:bf:a3:b2:
bb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BF:BC:DF:08:F7:37:2E:19:04:D4:99:84:F8:A3:AC:92:03:00:21
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:7b:82:fb:af:ba:3e:31:5b:86:f0:ec:75:ca:2e:74:f3:4e:
22:d1:8d:a8:41:ae:8c:e5:18:3c:1c:28:a9:07:cb:5c:07:9b:
4a:ed:08:54:06:3c:b0:79:02:e5:4e:47:5f:d8:cc:a5:52:53:
03:a1:c0:68:95:e8:91:b5:1d:2f:0f:b3:d2:a3:23:5c:db:a1:
d8:ef:92:b0:fe:8b:a2:e8:29:52:9a:2e:fe:ce:22:cd:52:70:
ba:d8:5c:f8:4e:e3:ae:65:f6:ba:a2:58:e9:0a:5e:34:52:57:
c9:cc:73:83:f4:d4:75:a5:90:a8:dc:f2:13:ed:6e:94:40:6d:
b7:b9:94:5d:87:1e:0d:61:53:ff:dd:f6:49:85:c6:ad:36:35:
c5:ef:6d:c8:13:f3:fa:cd:5b:79:c8:de:a2:b8:3c:05:03:c0:
f9:bc:e0:47:73:8c:58:5a:19:33:82:df:07:44:01:7b:4b:86:
02:63:d9:b1:f0:90:b9:ac:f7:c0:ec:fb:e9:a2:10:fd:2c:62:
20:bd:3c:ee:f1:59:75:c4:2a:ab:8c:bb:62:b1:bf:3f:cf:f5:
6c:b4:67:61:03:e9:9c:09:16:3a:c2:ec:db:15:62:c5:5f:6c:
bd:51:ed:d1:c3:53:39:8f:a5:cc:ac:90:c7:13:12:0c:8c:36:
35:fb:de:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqIb0iK+K+83V6HsJQ1e84MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZThiYWVhOTVkNDA0MDM0OGYwYTg5ZWM0ZTRiZDE1Mjc1
ZjZjMzkwHhcNMjYwMzAxMTYwMTAzWhcNMjYwMzAyMTYwMTAzWjAzMTEwLwYDVQQD
EyhkZGJmYmNkZjA4ZjczNzJlMTkwNGQ0OTk4NGY4YTNhYzkyMDMwMDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9C5Evyu/FFj34dneWj4wsYo6dJnj
FtZkjOlNgPETJwPzwPTC5LSBpLLB9oeXWALQK9r8HdT/Fk3xLsrg+5ef2w7rvPn3
Lq/WXh69nYCfT1DgrrmYc53oEXeo5HqHuxvWZUfmjPl7gUOFglXy0d8VKT1OnBCN
fNflJWe97UBITCNDVj6tY0wiFS1T86CDl+cKxT6TDs4ai0u/rGcj7tL4P15MUndK
2vfHscjGfah9OCJjMwadzrceAxx8zJonbu48IAk2dP7rtxKp2LuLQnKuIfP0ztuO
R5Yaaz8BJ52HnpXIa2bIqC1JT+FCu3eQ0O0tetIbKGZSPUVFcmy/o7K7hQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN2/vN8I9zcuGQTUmYT4o6ySAwAhMB8GA1UdIwQY
MBaAFGjouuqV1AQDSPConsTkvRUnX2w5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2Ut
MzcxMWZhZThjYTc3LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2UtMzcxMWZhZThjYTc3
LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhHuC+6+6
PjFbhvDsdcoudPNOItGNqEGujOUYPBwoqQfLXAebSu0IVAY8sHkC5U5HX9jMpVJT
A6HAaJXokbUdLw+z0qMjXNuh2O+SsP6LougpUpou/s4izVJwuthc+E7jrmX2uqJY
6QpeNFJXycxzg/TUdaWQqNzyE+1ulEBtt7mUXYceDWFT/932SYXGrTY1xe9tyBPz
+s1becjeorg8BQPA+bzgR3OMWFoZM4LfB0QBe0uGAmPZsfCQuaz3wOz76aIQ/Sxi
IL087vFZdcQqq4y7YrG/P8/1bLRnYQPpnAkWOsLs2xVixV9svVHt0cNTOY+lzKyQ
xxMSDIw2NfvexA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:55:33 2026 by rpki-client