Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: dNLODseOktMUWJfihAC7/BcH0L7A704dHC29Nt5L594=
Subject key identifier: 02:46:8B:5F:42:4C:EE:0A:39:49:33:5D:FC:1C:DE:47:DA:8E:35:B0
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019DA340CF56973CF2006533BE8DD3B356C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 18C6
Signing time: Sun 19 Apr 2026 01:00:26 +0000
Manifest this update: Sun 19 Apr 2026 01:00:26 +0000
Manifest next update: Mon 20 Apr 2026 01:00:26 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: 6uXBYEDPLu0GFSoA8Vk93e6/DJZbUvjCOuqDvuA3K4c=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:40:cf:56:97:3c:f2:00:65:33:be:8d:d3:b3:56:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Apr 19 01:00:26 2026 GMT
Not After : Apr 20 01:00:26 2026 GMT
Subject: CN=02468b5f424cee0a3949335dfc1cde47da8e35b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:b1:f9:63:76:67:54:7f:3e:15:f5:6a:e6:
12:5e:86:76:97:8c:2a:c2:7b:61:6a:d2:2a:94:56:
5e:6f:c8:a2:65:5d:c5:ca:20:f8:52:88:85:18:64:
d1:73:59:2b:5e:a1:50:29:e1:2d:17:91:84:59:cb:
96:0a:1b:76:b8:2c:fd:67:ff:a9:ca:d2:28:78:b0:
7f:25:5a:24:e4:80:5b:31:11:21:0f:c6:47:22:9b:
9a:f8:d0:4e:08:2a:27:59:39:51:4f:10:ff:bd:db:
b9:70:c4:f3:87:53:a7:4e:5b:90:05:0d:12:c7:22:
c7:8c:5b:98:57:35:ea:1f:70:ce:c0:8b:6f:1d:83:
9d:b3:f9:ca:34:fa:62:96:df:32:2d:1e:eb:43:0d:
a4:eb:78:a5:63:13:c2:89:b4:94:bb:9e:b1:46:1f:
a5:7b:73:bc:9c:76:00:28:b9:b4:e3:e2:34:47:46:
be:b3:b3:c3:f9:9b:e4:f5:32:50:06:ba:d0:63:62:
82:cf:54:21:44:f5:1a:c2:c2:be:f4:1b:d5:9f:c0:
fe:e2:d1:19:df:7d:ac:ec:7a:31:04:b1:33:ff:bd:
b7:a3:36:17:1c:d6:9f:5d:2e:1f:39:97:0e:9e:5b:
99:d1:74:4f:6f:42:99:2e:6f:df:05:f0:7e:39:88:
0d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:46:8B:5F:42:4C:EE:0A:39:49:33:5D:FC:1C:DE:47:DA:8E:35:B0
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:ab:f4:93:4b:45:20:43:06:52:2f:98:71:e7:df:f0:f1:77:
06:a0:aa:6c:91:50:f6:47:f6:5a:7d:68:83:5c:50:e9:45:81:
70:fa:4f:d7:ff:98:77:d3:b3:12:bd:8b:cc:50:5e:58:1b:31:
ec:4e:ee:f4:51:62:d5:cd:e9:a3:f6:f2:2b:0e:7d:5c:92:e1:
a2:ca:62:e4:27:f0:9e:53:e4:69:a2:29:c4:41:4f:60:8e:01:
72:3e:06:c1:96:25:4b:b8:b8:67:36:68:ac:73:58:b4:cb:bc:
93:c6:7d:32:16:24:28:18:2c:17:1e:08:d7:01:6a:9a:24:43:
15:41:97:ee:32:9c:9b:72:e2:c3:d2:11:ff:d9:2e:b4:b7:a4:
e2:bc:e0:16:44:05:90:6f:b7:fe:2b:61:41:2b:a0:bf:c2:8e:
cd:ad:13:1c:ee:2c:53:48:3d:86:0b:40:63:e4:68:c5:d4:fa:
5b:46:dc:d7:87:89:d3:c8:e5:de:45:23:9d:db:e1:e8:c8:bb:
30:e4:38:91:1f:7f:42:a5:99:87:e0:13:cc:6a:94:60:55:71:
0f:d8:fb:8e:dc:03:35:05:8f:4f:ed:28:20:08:d0:34:cc:a9:
21:56:bf:61:09:e5:93:9a:a8:6e:78:e4:fd:a5:12:98:f5:dd:
83:b1:f1:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:59:36 2026 by rpki-client