Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: 8W3gFlwwvj4m0rSK8V+jzvQEdAG2S2mpyvJjK218pgo=
Subject key identifier: 2F:AA:CE:37:09:BA:5C:A0:24:24:A8:07:F4:E9:12:A2:09:A3:0D:0B
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019CAC10527CB56495507CC63344D61E7D77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 01:01:16 +0000
Manifest this update: Mon 02 Mar 2026 01:01:16 +0000
Manifest next update: Tue 03 Mar 2026 01:01:16 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: sC6V96sZd6pomscydeix5/r/3keQFxeAaRUset+2hRg=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:52:7c:b5:64:95:50:7c:c6:33:44:d6:1e:7d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Mar 2 01:01:16 2026 GMT
Not After : Mar 3 01:01:16 2026 GMT
Subject: CN=2faace3709ba5ca02424a807f4e912a209a30d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:33:ad:73:76:9f:17:b6:01:a4:9d:73:05:1a:
0f:94:8f:f3:73:d7:fe:94:60:7b:a1:09:d0:f4:33:
5a:c8:4e:ce:07:8d:38:80:7a:c7:ff:bd:4e:2b:fd:
dc:95:78:d3:17:93:fe:39:72:d1:2a:c3:51:dc:cb:
69:0b:5a:10:f9:7f:fb:dc:ca:3e:d9:06:42:17:d2:
52:e3:7c:91:30:c9:28:c3:cc:2a:46:17:fc:4f:03:
62:4d:20:63:66:72:a0:1d:09:84:4a:17:8d:00:3f:
25:d6:f3:3e:72:48:59:cb:0c:8a:2a:6b:8c:e9:2a:
5b:43:94:eb:c7:15:f9:8e:75:8c:eb:61:24:e9:36:
31:1c:34:39:0b:c3:77:9d:89:c9:d6:72:57:cf:f9:
12:31:17:45:5a:c1:89:73:a9:ac:67:49:de:1b:7c:
f6:88:64:90:fd:bd:77:41:06:ae:97:8d:6b:95:45:
34:2c:27:ec:01:5b:8a:67:4f:de:30:33:38:74:f5:
da:f0:6f:13:96:1d:32:b3:39:df:ec:a0:9e:6a:b6:
41:e4:22:2b:37:b7:c7:b9:77:1d:96:4d:ca:6c:00:
f9:78:52:c1:bb:fa:1d:de:7c:b5:2e:d5:91:a8:34:
e9:5b:fa:ab:39:53:e2:c3:4a:82:30:d0:b8:55:23:
bd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AA:CE:37:09:BA:5C:A0:24:24:A8:07:F4:E9:12:A2:09:A3:0D:0B
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:94:5e:84:ac:54:4c:92:11:59:19:10:a3:fc:9f:c3:ba:34:
9e:7b:39:69:76:91:09:ea:d0:46:0d:f5:25:09:0e:e7:cb:7d:
d3:ab:28:ca:d9:84:10:43:28:45:f6:cc:a4:d4:ab:9b:7d:e1:
68:ae:4a:b1:c4:b4:ec:0f:3f:ab:9e:61:84:d3:d4:1b:e0:e9:
8d:8a:0a:51:c2:7b:19:b5:5b:3e:ad:01:a4:17:95:f3:1c:ac:
40:39:e5:31:fa:f4:ec:18:8e:c4:64:5b:ae:7f:d3:61:49:00:
0a:1b:44:95:75:2e:9c:9d:f8:d9:cc:ab:bb:c5:85:70:0d:cb:
7f:c6:7e:be:35:4b:d7:95:b6:12:87:0d:e0:1b:2f:7e:b2:7d:
f4:c6:a6:0c:8f:2f:81:3d:2f:0d:3a:ec:bd:25:52:a0:56:06:
64:9b:37:7c:3e:74:c4:84:f3:5e:11:21:2f:33:c7:29:c2:30:
52:60:40:88:02:63:d6:7b:18:5d:5f:9b:fa:64:77:51:87:a3:
13:fa:35:d3:8e:d9:ac:66:d1:0d:44:c0:d2:51:45:6a:fe:d6:
e8:be:fc:46:64:42:f7:17:45:3e:33:d8:aa:2c:60:da:d9:4a:
75:f9:43:93:3e:35:3c:ef:87:57:63:95:79:1f:69:d4:ee:bc:
a8:ec:c9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:06:37 2026 by rpki-client