Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
File: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft (raw, json)
Hash identifier: bfkvPopzIO1H65AxTVv4vVV6XzoEh87wOnRNdJpXorg=
Subject key identifier: 3C:74:E4:BA:0B:08:AB:2B:17:7A:23:15:A3:2D:91:11:5B:10:50:0C
Authority key identifier: D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
Certificate issuer: /CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Certificate serial: 019CABDA0C9914F919BF35E3A86D61C5328C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
Manifest number: 04DC
Signing time: Mon 02 Mar 2026 00:01:59 +0000
Manifest this update: Mon 02 Mar 2026 00:01:59 +0000
Manifest next update: Tue 03 Mar 2026 00:01:59 +0000
Files and hashes: 1: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl (hash: NqXIBMeJsVkW9OPzw0VGoUXxWxZOGjAxionCuk2IEkw=)
2: lFXW11JmtXkBjm-uNTCzHeFzM7o.roa (hash: ehAd9mUsbggx1/mGegpTmvG9odTX8xtW0ahGr9D7dD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:da:0c:99:14:f9:19:bf:35:e3:a8:6d:61:c5:32:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Validity
Not Before: Mar 2 00:01:59 2026 GMT
Not After : Mar 3 00:01:59 2026 GMT
Subject: CN=3c74e4ba0b08ab2b177a2315a32d91115b10500c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:98:cb:59:c0:8c:31:11:87:36:99:43:2b:59:
ca:97:27:9f:5b:c3:d2:e1:1b:04:17:c3:b1:d7:e5:
5c:7f:63:93:e8:0f:fb:a9:af:9b:1a:f3:03:0d:ac:
cd:a1:84:07:f0:72:72:63:e3:8c:ee:0c:cb:9b:10:
4e:50:4b:9b:d8:ec:c7:c3:c2:51:6c:20:5b:f9:a4:
8e:4a:fb:83:47:65:cd:02:6a:5d:92:fe:51:8e:38:
b8:0e:e9:88:5e:6f:7a:e4:d4:4d:42:c7:62:ae:3f:
28:d5:85:f7:c0:4e:1a:f8:23:90:b9:d2:20:85:ac:
d5:04:43:19:b8:f9:1a:85:87:b4:b0:e8:06:f7:1f:
79:87:fe:a9:3b:60:3a:93:28:6c:c9:1c:23:be:68:
de:3a:84:b6:cf:b9:f5:d8:5e:a6:e0:eb:65:b3:39:
84:d6:59:2d:19:18:58:04:90:76:ce:9d:93:a4:6c:
6f:89:e4:1e:27:d8:10:6a:5a:8b:da:a1:53:81:ee:
60:a3:36:18:09:5c:d1:23:ee:a0:b6:87:0b:a0:3f:
7b:35:c3:92:7e:e3:29:5d:32:74:60:b6:0f:55:f7:
79:d2:56:ce:5a:93:9a:88:29:e9:1f:ff:01:02:55:
cd:bb:36:31:1f:f8:dd:4d:bc:bf:91:3e:4c:51:70:
50:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:74:E4:BA:0B:08:AB:2B:17:7A:23:15:A3:2D:91:11:5B:10:50:0C
X509v3 Authority Key Identifier:
keyid:D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:32:46:93:c5:aa:2a:f5:fe:c8:e1:2c:82:96:d0:e0:78:1b:
45:e1:7c:c3:b3:d0:4a:26:f1:f9:8e:b0:b9:46:8e:ae:ba:1f:
5e:22:33:da:1c:f6:84:27:f3:65:53:45:8c:c0:fd:10:b1:7b:
70:fe:68:74:0b:69:c5:b9:a1:1b:ea:b4:65:1b:87:eb:8d:65:
fb:ae:05:a1:4e:b3:7c:93:96:c3:ef:50:4d:fa:e0:ae:cc:5a:
08:02:fa:81:5f:f3:bc:8b:f0:f3:8f:72:0e:03:1f:52:42:89:
aa:d6:18:a6:6f:a1:87:86:05:f0:cc:04:ef:14:7a:fb:d8:23:
0d:6b:76:4f:87:1b:99:d3:86:3d:4d:ef:33:6f:5c:b5:10:c8:
04:6d:7e:c0:37:f1:fe:e8:85:67:df:75:9b:2b:1e:40:15:cd:
7b:2d:e3:fb:9c:5a:cf:21:98:28:8f:dc:8c:af:03:bd:20:52:
9c:45:16:ab:99:63:49:ee:16:b5:05:b4:cd:96:12:e2:95:92:
1c:e3:2d:6e:74:08:e0:ec:d7:b2:7d:e5:62:6a:23:ea:29:f5:
9e:28:86:22:1d:9c:a2:61:5a:76:d8:ac:15:99:02:c6:af:b7:
d3:de:56:3a:86:0b:61:05:de:09:e0:c0:40:44:02:ae:54:f2:
e8:c0:b8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:31:06 2026 by rpki-client