Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
File: o52_aHirAKRS-LB_iQ06s0g3Yns.mft (raw, json)
Hash identifier: QwF5AJxbwlM6rzESRq2SQ8pxS0TaucHaTYXqPxLm4js=
Subject key identifier: 86:82:6E:3B:56:1C:AC:56:B0:7A:F4:7C:8D:4F:48:88:19:C5:C8:1E
Authority key identifier: A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
Certificate issuer: /CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Certificate serial: 019D996240DE2B0F1C55F6EAFE02D57BA285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
Manifest number: 0785
Signing time: Fri 17 Apr 2026 03:00:46 +0000
Manifest this update: Fri 17 Apr 2026 03:00:46 +0000
Manifest next update: Sat 18 Apr 2026 03:00:46 +0000
Files and hashes: 1: irICw9k54gxIc6MwAFiIdqi5VAM.roa (hash: cVexCvCqPHrx0mmIhLbiS62tGFKhVl04e+CAM0DmAGQ=)
2: o52_aHirAKRS-LB_iQ06s0g3Yns.crl (hash: hVbvKhnfkX5c17oyMKQP5PuKF4P4c7Uwusv75yx4W2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:40:de:2b:0f:1c:55:f6:ea:fe:02:d5:7b:a2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Validity
Not Before: Apr 17 03:00:46 2026 GMT
Not After : Apr 18 03:00:46 2026 GMT
Subject: CN=86826e3b561cac56b07af47c8d4f488819c5c81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6e:4b:3d:50:ad:24:ef:1a:b0:d6:e4:fe:69:
c5:ad:49:a2:f4:d9:21:15:18:61:71:61:41:87:7c:
9b:1b:cb:72:c6:1f:7e:e6:3c:4c:98:fe:de:02:bd:
ce:f2:ab:2d:03:dc:27:ed:ff:e0:93:94:c1:c1:87:
50:b3:74:67:86:b1:e0:fe:26:d7:88:fe:c9:d0:99:
cb:aa:3e:76:1e:a0:37:61:71:b9:34:f5:8e:48:a9:
17:03:6b:be:2f:e4:f3:74:d7:70:32:52:db:51:ba:
3c:e9:79:f5:9a:89:8e:26:6b:ed:b9:b2:dd:93:03:
15:aa:c6:c7:2c:a8:7f:55:a9:a9:cf:a6:db:73:b2:
71:98:57:46:b3:62:af:a6:4f:a2:80:2b:71:38:3e:
fe:2f:07:8f:c2:cc:b2:81:b1:33:9f:01:ef:67:16:
66:b6:17:65:3b:b4:e0:b8:10:d5:c6:67:32:ba:3a:
ec:7c:1c:aa:7a:cf:3b:2a:ae:9f:1d:95:23:a7:ef:
ec:2a:24:33:0c:98:34:dd:ed:af:4f:80:f5:e4:d7:
c9:23:84:56:89:ac:68:99:10:e2:dd:c1:6d:7e:1a:
cc:db:c3:58:95:b9:f5:50:c7:ab:58:0f:6a:8a:c4:
09:2e:5d:d6:fc:9e:6a:9b:56:73:7a:dc:ec:88:d4:
ca:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:82:6E:3B:56:1C:AC:56:B0:7A:F4:7C:8D:4F:48:88:19:C5:C8:1E
X509v3 Authority Key Identifier:
keyid:A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:3c:26:75:e3:93:ab:05:1c:67:67:3c:5f:38:e5:81:53:36:
b9:fd:36:ef:95:82:97:7a:4b:d0:4f:cf:db:5f:2e:ce:65:50:
0e:7f:eb:16:e7:49:bb:7e:17:bd:0c:11:67:41:ff:3f:82:65:
94:1a:7d:4d:d1:b4:7b:e9:11:1c:63:38:4d:49:32:0d:18:3b:
f4:7f:71:09:d3:f5:35:07:08:dd:4a:e1:17:a1:bb:ed:bc:91:
b1:33:8d:5e:38:a9:b4:ca:38:3f:e6:28:51:c2:af:e3:c7:ca:
f8:4f:b1:45:e6:62:18:ae:65:2b:37:67:29:12:5e:ce:ad:71:
b5:db:ce:07:93:24:19:71:96:f1:a6:d6:3a:af:71:12:40:f6:
77:15:24:89:c6:12:72:a4:ea:2d:9f:7a:8b:e7:b6:11:0d:4a:
85:99:d1:9b:30:8a:3f:21:55:92:71:19:75:df:6c:43:4e:63:
d0:69:03:4c:d2:e0:67:38:76:0d:ae:97:9c:64:44:b5:6c:1e:
08:a6:6c:68:d4:12:a4:ac:9e:2f:56:cf:20:be:a8:06:f0:35:
80:b4:cf:28:38:6e:60:21:73:f3:d6:f2:04:f4:d8:32:40:48:
ff:50:4d:cc:e8:0f:dc:0b:f6:87:0d:b9:df:22:7f:f4:e9:4f:
88:5d:61:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:53:16 2026 by rpki-client