Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
File: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft (raw, json)
Hash identifier: UDoXo9nnW3nsImxk96t3Tb8taFeYubdiKAutWcYpXnI=
Subject key identifier: 23:24:BF:C1:72:06:8C:8E:A0:55:10:96:5A:78:CA:69:3A:51:11:5E
Authority key identifier: D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
Certificate issuer: /CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Certificate serial: 019D9962158375922A83398799E5CEE617DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
Manifest number: 0557
Signing time: Fri 17 Apr 2026 03:00:35 +0000
Manifest this update: Fri 17 Apr 2026 03:00:35 +0000
Manifest next update: Sat 18 Apr 2026 03:00:35 +0000
Files and hashes: 1: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl (hash: B7RVbzFADAxqjhD0Hz3Z8WEwnl1AGpTx2dhAPa+2amo=)
2: lFXW11JmtXkBjm-uNTCzHeFzM7o.roa (hash: ehAd9mUsbggx1/mGegpTmvG9odTX8xtW0ahGr9D7dD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:15:83:75:92:2a:83:39:87:99:e5:ce:e6:17:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Validity
Not Before: Apr 17 03:00:35 2026 GMT
Not After : Apr 18 03:00:35 2026 GMT
Subject: CN=2324bfc172068c8ea05510965a78ca693a51115e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9f:13:04:44:0c:2f:e4:6d:df:36:d6:26:9c:
94:c2:66:3d:a6:e9:7d:c5:fb:d9:a9:50:72:a0:a0:
d1:b6:f3:27:43:c3:7a:51:be:17:ee:7e:b1:3b:cd:
e7:6e:8d:57:de:04:39:cf:b3:76:6c:bf:fa:41:e0:
13:6d:71:ac:9d:f3:e2:c7:1f:7c:6e:40:a6:d7:9f:
52:8b:89:5a:50:a6:bd:c6:88:78:bc:59:ca:1e:fe:
2c:8f:57:f2:e5:85:ab:c9:e6:2b:99:a8:e7:17:82:
f1:8e:e5:b8:3d:98:78:f6:b9:5d:6a:b5:d7:28:73:
fe:de:e1:be:d0:ff:d2:ac:9b:5d:94:d1:75:01:87:
79:79:15:bd:92:3b:8c:b2:23:62:4f:13:0a:03:90:
ef:f7:76:95:60:cd:0c:78:4b:db:93:dc:5a:d2:aa:
e6:0d:f6:5c:b1:05:20:b5:21:aa:8c:c5:67:b6:66:
bc:2e:7a:4d:21:d2:6a:de:ab:49:66:8f:ca:11:39:
64:7c:57:56:24:69:e0:b2:91:f5:9d:3f:83:30:57:
5a:72:da:f6:93:eb:86:a4:1f:ba:12:8c:ba:ca:a3:
4a:29:fb:34:21:9a:96:9f:db:f4:60:3d:44:74:9b:
86:cd:90:b6:9e:11:e7:23:8f:a5:44:20:43:ca:ad:
8c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:24:BF:C1:72:06:8C:8E:A0:55:10:96:5A:78:CA:69:3A:51:11:5E
X509v3 Authority Key Identifier:
keyid:D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b0:5f:7a:5f:44:6b:2a:92:a8:e2:cc:ec:11:ea:25:63:f7:
ca:e0:64:c3:80:91:d4:b1:f7:eb:93:53:6f:7b:30:09:93:f7:
39:c1:54:f0:d9:49:40:61:31:c3:6f:07:9e:04:7b:f3:dd:13:
eb:9a:b2:ea:80:47:df:7d:62:49:28:18:d6:d6:68:8e:14:83:
17:12:dd:ee:89:18:2b:91:2e:82:db:9e:c9:b5:31:67:8d:59:
67:a7:72:a0:99:db:65:33:14:61:6e:da:f6:1a:a9:ce:a1:71:
94:54:85:91:96:e4:c6:16:55:58:c5:2c:b9:a3:96:57:d4:5d:
37:f0:ec:c6:da:cb:0e:ce:16:1b:bd:ff:f0:7c:15:d7:10:94:
5e:be:2c:59:8d:7e:e7:de:32:d1:d4:e3:82:8f:da:00:a0:25:
a4:34:c7:89:b1:67:95:c5:60:50:d0:c6:40:53:9f:21:d1:d8:
59:86:2d:b8:05:57:84:4a:0a:8d:a1:cb:fc:39:14:3c:21:e9:
7b:12:03:96:f4:f7:63:3d:55:8f:01:24:e3:4d:96:cc:31:1a:
59:14:de:6e:5f:b5:85:a3:71:83:1a:65:a9:38:6c:31:21:8e:
14:05:04:b4:a5:5e:8a:4d:b1:26:35:34:61:95:64:86:6e:af:
98:7b:45:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:46:07 2026 by rpki-client