Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: 9kWuAYpBO7mq+E8AO85TgIPSa/Nq+LXb9I/7J3R17SE=
Subject key identifier: F0:44:EB:76:00:FA:44:B5:43:7A:65:DF:E1:66:F9:CD:04:FD:BF:23
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 019ED2743CCEE26E419F20455711113CEE23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1963
Signing time: Tue 16 Jun 2026 22:01:33 +0000
Manifest this update: Tue 16 Jun 2026 22:01:33 +0000
Manifest next update: Wed 17 Jun 2026 22:01:33 +0000
Files and hashes: 1: F7uNYW_BAZq9rI9uR7hZmoD2t2c.roa (hash: 66sSkYjfMPB1iz46OvsCyBJxFuzzlDOw8irePRrhJqo=)
2: ZbRHE63NTowomZ--6hRN7-VQWd4.roa (hash: 9fZQ79ry0wcmms4XZEk0xvVuXwwePg4F6u4eylx66hY=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: OldPPaEKB7lOq7Snos2vCa1P2xDNJ0v3d4/wovJwmAA=)
4: cAIe2NM_E7WCCYmd0eVZsMmImNA.roa (hash: sic7GmBZVp2aPzVp03gq0Hxyh3yCltc3C8dhZASVy34=)
5: iN8E5J8FWFCEMY65ALgZit2wZ5o.roa (hash: 3gIZ7quZRp5VH+343KfEOmSv0A/IFrhSpW84UgHzh6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 22:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d2:74:3c:ce:e2:6e:41:9f:20:45:57:11:11:3c:ee:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Jun 16 22:01:33 2026 GMT
Not After : Jun 17 22:01:33 2026 GMT
Subject: CN=f044eb7600fa44b5437a65dfe166f9cd04fdbf23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:47:5b:b4:fd:d6:4a:3d:45:f8:4b:8b:e9:
a2:fd:99:3b:b6:03:d1:61:02:18:eb:12:d0:51:d8:
07:09:63:40:26:89:31:bd:b1:7a:1a:9c:e5:ea:f8:
72:1d:b0:f4:57:64:5e:59:51:41:fc:eb:d6:ed:b5:
19:e7:ec:4d:61:ab:d0:06:cb:5e:39:75:e7:b2:e8:
35:4c:ae:92:22:2f:2f:8d:59:9b:80:be:dd:64:a6:
72:d4:19:c2:5a:d6:10:a2:8c:51:4a:32:ac:10:11:
a5:75:57:6d:f5:53:20:d9:d2:29:a2:f3:8c:e6:68:
dc:a6:1c:fd:3a:94:ad:5b:5a:35:d7:55:5f:c8:58:
a4:47:ad:47:6c:1a:1e:9b:b8:a4:90:e6:db:7a:2b:
c6:21:ff:3a:66:66:f0:f4:d5:71:a0:2f:dd:6e:3e:
b8:0f:4c:08:40:8a:75:ac:6c:20:0e:1b:97:58:cb:
4c:9d:06:84:9f:2a:aa:6f:db:cb:3f:24:e5:1b:0e:
5d:a8:57:d3:67:ae:6f:d0:6c:0b:9f:9e:3d:20:82:
1d:1a:62:11:51:a5:34:43:50:77:3e:86:cc:d8:dd:
76:53:8c:35:8f:6c:24:38:64:ce:44:b6:2d:bb:7f:
02:e9:f4:2c:f1:95:df:9c:1b:27:38:02:4c:57:df:
7d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:44:EB:76:00:FA:44:B5:43:7A:65:DF:E1:66:F9:CD:04:FD:BF:23
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:cc:e5:5d:66:00:23:90:f7:1c:61:1a:8d:60:5c:78:b0:25:
35:10:cc:7d:7e:41:a9:09:72:0b:db:a9:6d:97:4b:27:aa:66:
02:71:fa:1d:51:32:80:e9:0c:0f:c0:03:ce:df:44:46:be:1c:
2d:0c:0a:85:ff:50:e9:e8:b0:c1:ca:01:5c:58:f7:ec:d8:14:
d9:fb:05:2c:71:22:a5:95:bb:3a:ea:85:f1:07:31:70:c3:b8:
5d:88:c8:61:40:5c:ca:84:b8:0a:87:96:a3:3e:a4:cd:6f:01:
97:3d:9a:ba:9e:8a:d5:ed:87:5c:11:23:97:04:1a:4b:63:7d:
ed:4f:1f:aa:42:a7:29:62:84:96:56:2f:c5:ec:ed:3a:78:5f:
ea:13:0c:16:4c:aa:77:53:3a:3b:06:20:af:f6:a9:70:a4:37:
12:05:b0:62:d5:3d:4b:87:ab:e6:fd:1c:78:af:6d:60:3c:75:
2b:44:40:f4:25:1d:5e:a0:f0:95:c0:5f:2b:b8:6c:1d:fb:5f:
37:ab:98:8f:9e:5e:cd:bc:78:c7:77:ff:59:57:a1:13:39:73:
ba:da:8f:f7:4b:b8:27:a3:9b:55:1b:2f:53:03:de:72:65:47:
d0:24:15:af:8a:15:c3:ba:f2:97:7c:85:7e:3d:f9:68:4f:9e:
62:79:2d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 08:56:57 2026 by rpki-client