Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: r14C0Dn8oFjyvSUxaUEzLKDa4JQjHpDK+YgLE4h58mc=
Subject key identifier: 10:73:B3:44:A4:4B:8C:D8:1B:07:28:0C:61:56:21:5B:5A:D9:CC:C5
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 019CAAC6C6CCFCECB16D70D3649DD7663276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 19:01:19 +0000
Manifest this update: Sun 01 Mar 2026 19:01:19 +0000
Manifest next update: Mon 02 Mar 2026 19:01:19 +0000
Files and hashes: 1: CwgZcUkyKLt048Oqe9IkcFcNcGM.roa (hash: 863NNHY2dcVFVj1Sa4r+ACtbVTP+iPOTXWUzEVvig7k=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: qN1UmoOahtb+CVZNxsjc60wnubOR7b7b2jvrfQCekxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:c6:cc:fc:ec:b1:6d:70:d3:64:9d:d7:66:32:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Mar 1 19:01:19 2026 GMT
Not After : Mar 2 19:01:19 2026 GMT
Subject: CN=1073b344a44b8cd81b07280c6156215b5ad9ccc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:90:59:72:d3:bc:e0:b2:17:16:97:97:2f:e0:
9a:dd:d4:40:9d:d6:26:9d:45:78:92:45:10:e3:6d:
e1:6e:c5:9c:ea:66:b9:37:31:95:70:6d:d1:09:88:
be:28:bc:c6:6e:b3:46:8c:55:75:cb:83:ed:73:cf:
5b:d3:56:df:d7:c6:88:c4:cb:63:4c:bf:72:33:96:
16:b4:2a:d6:d4:b2:80:9e:bd:61:f7:a9:95:a0:8c:
e2:5d:48:b1:90:3d:9b:90:ed:f2:da:d1:6f:7f:da:
b2:cc:0d:70:f2:e8:37:b1:45:52:6e:01:e7:33:e2:
66:5d:3f:53:06:24:c0:b0:06:2c:00:52:c9:2e:06:
7f:a4:39:fe:6b:97:57:0f:d9:2a:da:fc:f7:c2:ca:
60:be:fe:ee:c5:da:aa:ec:e0:a9:56:58:07:1a:8d:
27:49:86:30:cb:70:7c:36:ab:49:10:dd:36:e2:2f:
09:1c:54:a1:58:78:63:f0:02:11:35:bd:aa:21:e1:
47:85:4b:60:4f:2d:84:81:a3:bf:0d:93:30:96:b4:
ab:d7:d7:95:41:4f:b3:0d:b9:73:b8:c9:cb:e6:17:
57:24:95:92:1b:57:3e:3f:ff:36:d6:11:37:ae:7f:
9f:ba:b8:f1:a7:ad:3e:1d:41:45:cb:85:56:a6:ae:
ee:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:73:B3:44:A4:4B:8C:D8:1B:07:28:0C:61:56:21:5B:5A:D9:CC:C5
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:7a:4b:f2:f8:0d:ba:85:fe:59:30:b7:5f:55:53:4e:57:33:
f0:21:2e:32:39:fe:8d:d8:92:92:c5:44:46:b0:9c:35:a7:dd:
38:1f:20:2d:ba:71:8d:21:3e:19:73:87:bc:d2:a8:53:4b:2d:
1e:c6:0a:cb:54:60:75:6f:64:be:65:9e:f7:a4:cd:0e:24:a3:
fe:91:29:90:91:91:ed:88:0a:5d:c8:d9:d6:82:d9:b6:55:04:
64:c3:f5:15:31:9e:34:61:4a:55:33:27:fd:70:e0:9e:c7:25:
36:06:01:51:04:6e:60:a2:f6:ad:aa:5e:bc:0e:7b:bf:67:d1:
13:80:98:01:a7:d1:59:f9:48:6a:e1:34:c6:23:30:f0:d2:42:
33:e3:9f:fa:44:f1:a3:b9:18:22:67:ab:34:1f:95:37:ff:c1:
ab:f8:32:e5:27:47:07:be:77:ae:bf:53:ab:b6:75:c4:8d:b4:
78:39:b4:89:92:ec:52:2d:4c:ac:86:b1:21:1a:3d:93:d6:ec:
bb:77:60:10:9f:c6:b0:cb:d2:d0:21:d1:c7:72:2d:ea:7a:7b:
7e:f0:25:15:b9:47:a4:7d:f1:11:74:07:24:1b:f7:5e:7a:7d:
c0:38:f2:cf:d2:87:e9:e6:f9:78:fc:c3:27:ba:3e:3b:a1:6c:
41:64:82:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:57:34 2026 by rpki-client