Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: p8n9w/Q/Tb68ATAWbLa4a6LJTZBVTsqc7mjTVUhk+Wc=
Subject key identifier: C2:8A:C2:80:83:A0:E4:A2:3F:FE:27:40:D6:9C:1E:0F:C0:4B:DC:30
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 019D9C631D9BF6F3F1923B10BE44F85AACC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 1817
Signing time: Fri 17 Apr 2026 17:00:34 +0000
Manifest this update: Fri 17 Apr 2026 17:00:34 +0000
Manifest next update: Sat 18 Apr 2026 17:00:34 +0000
Files and hashes: 1: HqknbCtl1Axe3TPw1P6jDONpLVc.roa (hash: ZnfnJYZ+e5B0J97RREAVHfbNjcFtOONy33iXAx75Pag=)
2: XUSo3Kod1tZHWF61VODjOx3wrpM.roa (hash: QhGQD15vAX85W4GYn0mpZU7ZappGzzCqkYs2qWxrAto=)
3: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: Nk80AuGbTPG/n7pHqPifcVzqJDWjQyJU6sMrFsR1orc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:1d:9b:f6:f3:f1:92:3b:10:be:44:f8:5a:ac:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: Apr 17 17:00:34 2026 GMT
Not After : Apr 18 17:00:34 2026 GMT
Subject: CN=c28ac28083a0e4a23ffe2740d69c1e0fc04bdc30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:35:5b:df:1c:38:18:f5:6f:6d:21:99:6e:72:
d1:db:c8:84:08:41:cc:8a:68:db:a0:95:49:01:ad:
a9:0e:0c:71:d6:a9:d7:c7:c4:aa:b6:e6:6c:30:fa:
0c:3e:f2:0e:76:b8:a1:77:8a:af:f1:a7:f1:55:50:
1f:8e:68:9d:47:b1:34:6a:35:88:81:af:69:17:f7:
69:43:17:0e:fc:39:d1:60:f0:dc:43:6f:0a:65:36:
c9:c9:8b:f0:b5:d3:f1:4b:b6:c1:a6:0b:dd:c5:37:
36:c0:58:cb:1b:80:41:52:bb:95:74:81:8d:6b:48:
da:9f:61:01:39:55:88:37:44:f5:57:8b:30:37:f7:
a2:46:3e:c8:50:18:0b:17:cb:24:ce:b6:af:b2:94:
6e:a2:1c:bb:7f:68:50:3a:64:77:7d:2f:de:46:d3:
d4:d4:03:6b:f2:ef:db:d7:5e:63:57:6b:5a:a2:77:
87:0e:28:82:39:7c:d3:c0:9b:b1:24:3d:35:9f:87:
be:0e:ed:42:45:90:be:56:1e:a4:0b:c5:18:df:3e:
9f:57:58:d1:37:5f:fc:8b:d3:4c:cb:ab:0a:b0:7b:
bd:96:e6:dd:ff:08:d5:03:28:25:cb:fa:df:1d:88:
3c:22:cc:a7:d6:17:ea:73:70:64:df:c1:b9:c6:e6:
72:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:8A:C2:80:83:A0:E4:A2:3F:FE:27:40:D6:9C:1E:0F:C0:4B:DC:30
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:04:6d:d3:96:09:b8:a8:7c:7f:1a:31:35:77:fa:ef:fc:b4:
45:5d:be:00:bb:79:75:42:65:58:6d:e2:4e:2b:2c:ed:f4:94:
d3:3a:af:7e:69:4c:56:88:8c:45:a7:9b:a6:e1:49:f8:a5:34:
b4:68:c6:8d:19:74:41:fc:49:eb:fa:fc:93:71:79:52:9e:94:
46:8c:3f:9e:ef:87:12:0c:99:3f:bd:94:c0:44:fd:57:9a:42:
78:55:20:37:23:b2:c5:d9:c5:55:77:32:4e:09:51:e0:c8:ab:
a2:18:64:01:a8:a0:60:a9:de:5e:6c:8c:e7:7f:e4:4e:8b:86:
8b:f8:d9:a3:a0:69:9d:95:a1:c8:92:11:c9:85:36:5d:5b:e4:
3a:d4:04:2d:fe:09:99:3d:a5:18:ab:01:42:6d:a5:03:4a:32:
98:8f:6b:7f:45:a1:99:ff:4a:cd:5c:cc:e5:a1:1f:f2:e9:2a:
42:51:4a:38:b1:0e:a2:0b:77:8a:29:84:a5:28:7d:df:81:91:
b5:74:12:00:be:45:88:e0:54:41:38:5a:49:6d:b9:97:4e:8e:
8e:b9:da:91:af:df:7e:18:50:c2:9b:de:bb:ce:70:2f:36:05:
57:c6:00:62:0d:db:3f:ba:c3:93:b6:8e:bc:db:78:ff:38:00:
f1:97:08:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cYx2b9vPxkjsQvkT4WqzBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YzVmMDliM2E5MDM5NTBmM2ZjZDFiMjU1MDg2ZWRlNDg3
NmViMTEwHhcNMjYwNDE3MTcwMDM0WhcNMjYwNDE4MTcwMDM0WjAzMTEwLwYDVQQD
EyhjMjhhYzI4MDgzYTBlNGEyM2ZmZTI3NDBkNjljMWUwZmMwNGJkYzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDVb3xw4GPVvbSGZbnLR28iECEHM
imjboJVJAa2pDgxx1qnXx8SqtuZsMPoMPvIOdrihd4qv8afxVVAfjmidR7E0ajWI
ga9pF/dpQxcO/DnRYPDcQ28KZTbJyYvwtdPxS7bBpgvdxTc2wFjLG4BBUruVdIGN
a0jan2EBOVWIN0T1V4swN/eiRj7IUBgLF8skzravspRuohy7f2hQOmR3fS/eRtPU
1ANr8u/b115jV2taoneHDiiCOXzTwJuxJD01n4e+Du1CRZC+Vh6kC8UY3z6fV1jR
N1/8i9NMy6sKsHu9lubd/wjVAygly/rfHYg8Isyn1hfqc3Bk38G5xuZyFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMKKwoCDoOSiP/4nQNacHg/AS9wwMB8GA1UdIwQY
MBaAFGjF8Js6kDlQ8/zRslUIbt5IdusRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgt
OTQ4MDI2MzZiYWQ5LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgtOTQ4MDI2MzZiYWQ5
LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZgRt05YJ
uKh8fxoxNXf67/y0RV2+ALt5dUJlWG3iTiss7fSU0zqvfmlMVoiMRaebpuFJ+KU0
tGjGjRl0QfxJ6/r8k3F5Up6URow/nu+HEgyZP72UwET9V5pCeFUgNyOyxdnFVXcy
TglR4MirohhkAaigYKneXmyM53/kTouGi/jZo6BpnZWhyJIRyYU2XVvkOtQELf4J
mT2lGKsBQm2lA0oymI9rf0Whmf9KzVzM5aEf8ukqQlFKOLEOogt3iimEpSh934GR
tXQSAL5FiOBUQThaSW25l06Ojrnaka/ffhhQwpveu85wLzYFV8YAYg3bP7rDk7aO
vNt4/zgA8ZcIEA==
-----END CERTIFICATE-----
Generated at Sat Apr 18 00:27:41 2026 by rpki-client