Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: g2JxFkgIj20mOHudHioD28Yllq+AfWJycZdW5G0z2Tk=
Subject key identifier: FB:8E:94:A7:C4:21:6C:65:05:88:64:E2:3A:EB:F5:58:72:90:78:97
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 019CAED9F169638180CC7FC95F1EA7336080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 179C
Signing time: Mon 02 Mar 2026 14:00:44 +0000
Manifest this update: Mon 02 Mar 2026 14:00:44 +0000
Manifest next update: Tue 03 Mar 2026 14:00:44 +0000
Files and hashes: 1: HqknbCtl1Axe3TPw1P6jDONpLVc.roa (hash: ZnfnJYZ+e5B0J97RREAVHfbNjcFtOONy33iXAx75Pag=)
2: XUSo3Kod1tZHWF61VODjOx3wrpM.roa (hash: QhGQD15vAX85W4GYn0mpZU7ZappGzzCqkYs2qWxrAto=)
3: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: Sqf0FmQmwcjC+a3CWvtUTASKO0n76oJJKg4Y2R2h5Yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:d9:f1:69:63:81:80:cc:7f:c9:5f:1e:a7:33:60:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: Mar 2 14:00:44 2026 GMT
Not After : Mar 3 14:00:44 2026 GMT
Subject: CN=fb8e94a7c4216c65058864e23aebf55872907897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:aa:a2:5e:b4:b3:00:32:c0:59:c4:43:7f:82:
c3:67:28:72:c3:cf:92:93:e9:eb:84:73:78:0b:cd:
7f:65:98:63:c1:79:da:43:e1:ab:02:3e:55:bd:bc:
a7:b2:14:bc:89:59:29:c4:41:c9:88:40:09:a0:44:
63:3e:ff:b0:64:6b:f4:ee:42:10:48:b8:bd:7e:76:
44:13:c3:28:83:e3:4b:7d:28:43:26:ed:94:1f:78:
b0:02:73:75:c4:a0:3d:44:bd:26:3b:e0:82:90:6d:
6a:c0:11:eb:01:1a:7b:de:53:62:b3:c1:a6:92:67:
76:4d:ee:8a:33:25:36:1b:2f:4f:7f:b8:8d:d5:79:
9c:4f:39:f9:14:c3:a6:e4:f3:8a:1c:13:10:46:af:
87:29:73:bd:33:89:80:40:ec:79:48:46:62:01:13:
3c:0c:bd:66:e9:ad:13:7f:81:bd:11:6d:cf:72:ab:
17:95:42:27:79:29:cb:a5:77:85:d0:de:63:25:f8:
5a:76:82:b8:68:84:dd:08:ed:b6:fd:50:16:09:5b:
6f:35:9e:7c:5e:0b:d0:68:61:b9:23:03:a5:d8:e4:
a0:58:03:b5:e0:e7:53:b8:89:8e:80:e4:77:25:12:
5c:09:5f:52:0a:e8:ad:41:fb:d6:cb:50:7d:06:17:
fb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:8E:94:A7:C4:21:6C:65:05:88:64:E2:3A:EB:F5:58:72:90:78:97
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ef:7a:4a:d2:e3:6e:2f:d6:78:ef:2c:4b:67:6d:5a:bd:39:
1c:c9:d4:ca:2b:26:2e:16:3c:39:f9:d9:cc:6c:e8:22:a6:cb:
2e:13:bf:d9:d1:58:a2:c4:cb:58:b8:df:20:c9:bd:4f:3b:14:
f4:4a:1f:6b:24:87:ba:44:c8:a3:31:62:c3:80:c1:36:59:d2:
d9:d4:2d:b2:45:0c:56:73:8a:0f:9e:5e:d8:23:00:ac:40:0f:
9a:48:15:46:03:b7:ef:29:16:24:58:c3:e7:c3:25:e2:a4:6d:
e1:f0:8b:7c:5d:1c:3e:3a:ca:97:6b:3f:c7:b1:79:b1:69:5e:
8b:1a:00:59:96:5a:de:61:cf:5b:e3:0f:2e:84:21:67:13:90:
a9:26:dd:25:86:ed:75:0a:d0:10:37:6c:d8:db:5d:45:77:d8:
6b:a4:70:86:14:0c:0e:a9:d6:82:38:3b:b0:a3:0d:19:0a:c0:
ad:0b:60:23:d5:f4:4f:c6:2f:b1:1e:71:9f:ff:aa:d6:5f:3b:
da:64:4c:38:20:73:65:e9:7e:62:61:a7:58:b4:0c:33:5f:3c:
3d:e4:fe:d6:ce:aa:d8:ff:11:d8:68:a6:ba:69:e8:53:67:00:
e1:91:88:93:d3:2f:7c:ee:16:31:81:5c:b8:69:8d:ee:59:37:
b4:3e:00:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 22:48:58 2026 by rpki-client