Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
File: aErIoCEnBoJ2XSPvAzjzXHht2zU.mft (raw, json)
Hash identifier: 1okLDkvN4gdSzkpVbweGIWx6upQW0FzpfXQfPPmqY4Q=
Subject key identifier: C5:00:25:6B:B0:20:D6:08:08:83:D6:EE:78:49:53:AB:03:52:36:7B
Authority key identifier: 68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
Certificate issuer: /CN=684ac8a021270682765d23ef0338f35c786ddb35
Certificate serial: 019CAA21B78FEFE02A6BE456B2A3764578FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
Manifest number: 14F4
Signing time: Sun 01 Mar 2026 16:01:02 +0000
Manifest this update: Sun 01 Mar 2026 16:01:02 +0000
Manifest next update: Mon 02 Mar 2026 16:01:02 +0000
Files and hashes: 1: aErIoCEnBoJ2XSPvAzjzXHht2zU.crl (hash: KQoChCS7YXIJkvGflKQGA/9sIzZuYzcGnOr5e2WPwrw=)
2: cQSoOImIWHLQqvwma-mbQwTjc30.roa (hash: CvEfeGMhdPBsYF3CWWhLxK0Vg1UuXavAs76jMv4L1vA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:b7:8f:ef:e0:2a:6b:e4:56:b2:a3:76:45:78:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=684ac8a021270682765d23ef0338f35c786ddb35
Validity
Not Before: Mar 1 16:01:02 2026 GMT
Not After : Mar 2 16:01:02 2026 GMT
Subject: CN=c500256bb020d6080883d6ee784953ab0352367b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:21:2f:e5:0d:08:d8:6e:3e:20:34:d4:6e:94:
5e:54:1e:1e:f7:f3:0d:cf:75:87:c9:bb:0d:7a:28:
a6:1f:31:68:07:10:05:f6:64:ec:e6:56:32:55:74:
72:fe:33:90:d3:e3:e7:c4:61:26:d1:32:c6:53:50:
d1:d4:0d:9f:9c:66:06:db:6b:b3:20:8c:87:aa:ed:
2a:0e:28:a8:c2:fe:f3:cf:55:b0:9b:71:e1:b0:a0:
78:36:09:b0:4b:08:03:c7:d1:70:83:be:b8:8c:0b:
43:11:d8:53:17:20:fc:a8:5c:f0:eb:2b:7e:60:d5:
f0:a0:e7:59:72:6d:03:63:59:21:ce:23:06:70:a5:
f8:2f:c9:33:00:2a:11:1f:d6:a0:2a:9e:47:b3:b8:
54:d9:43:ed:33:30:c0:c9:ef:6e:f7:2b:0f:0d:14:
28:37:8f:de:b8:43:91:ad:27:e5:e9:af:d3:1f:39:
e4:08:85:ab:29:07:f5:16:a8:53:ef:9c:6b:d2:70:
e4:59:87:99:e7:ac:98:53:4d:43:7e:1d:49:72:80:
75:5b:8b:ba:23:9d:bc:1e:11:75:f6:98:d0:e5:de:
dc:c8:ae:5a:3c:27:84:52:2e:51:47:68:b0:cd:33:
37:2a:35:6a:8b:d4:79:1e:c4:ce:03:b8:1f:95:55:
c4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:00:25:6B:B0:20:D6:08:08:83:D6:EE:78:49:53:AB:03:52:36:7B
X509v3 Authority Key Identifier:
keyid:68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:8e:98:2b:9b:27:8a:d4:10:74:b5:8d:ab:2d:e9:26:d2:4e:
01:dc:d2:80:c4:c4:e1:b1:27:d7:85:a6:13:9c:18:b4:f9:25:
50:ee:04:a3:d3:d0:01:9d:91:2d:e4:87:b8:1e:92:47:ea:36:
8b:d7:83:b5:76:ac:29:88:4e:18:94:e7:ca:53:08:f5:b3:94:
6c:77:65:b1:eb:b1:2d:c8:87:22:45:d7:cc:45:9e:69:ac:a7:
fc:8b:ae:0f:93:8d:4a:5f:9b:8b:6f:80:ce:01:7a:d9:15:a6:
e5:6a:58:b3:a3:df:a4:85:ba:dd:85:f3:e1:2b:96:7a:58:49:
5e:bf:96:e4:f5:4f:1b:3b:2d:a8:e2:1a:24:75:d8:3d:f4:81:
11:e0:83:d9:08:1d:92:1f:83:86:20:ab:04:ac:93:c0:21:3b:
e8:ef:40:90:38:67:f0:b9:21:79:96:25:dd:f3:8d:71:78:18:
6f:8b:77:ff:23:02:1c:fb:d6:4c:29:d7:b7:4a:fc:2d:a7:a6:
30:47:ad:63:96:ca:57:b1:a2:d2:bf:b8:5c:a5:1b:b6:79:21:
9f:8b:47:4c:a8:22:78:aa:5a:e2:59:1a:7b:b2:b7:33:e7:58:
db:6f:5f:bd:71:89:8b:5d:8e:db:7a:7f:97:9e:b5:81:e7:fe:
b2:38:5f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:49:51 2026 by rpki-client