Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: MO0ssc3PUc1xLlEBGizN9QvWndogyrNT5tm6ng4BZrM=
Subject key identifier: DC:B3:C1:FB:40:94:E3:EE:FA:F6:DE:C6:7F:D0:B9:78:B1:81:3F:D1
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 019D9A3E20080E1FAEFC6D1F3CE039A15334
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 07:00:55 +0000
Manifest this update: Fri 17 Apr 2026 07:00:55 +0000
Manifest next update: Sat 18 Apr 2026 07:00:55 +0000
Files and hashes: 1: CwgZcUkyKLt048Oqe9IkcFcNcGM.roa (hash: 863NNHY2dcVFVj1Sa4r+ACtbVTP+iPOTXWUzEVvig7k=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: GOCHSZujys892PLWrGJy4M29Cf5VlKWEoPbE4WHqh+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:20:08:0e:1f:ae:fc:6d:1f:3c:e0:39:a1:53:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Apr 17 07:00:55 2026 GMT
Not After : Apr 18 07:00:55 2026 GMT
Subject: CN=dcb3c1fb4094e3eefaf6dec67fd0b978b1813fd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8c:b1:2a:d2:d3:09:02:a7:1f:87:11:cf:06:
f0:09:df:62:46:fc:af:3e:d6:a6:06:dc:c6:97:57:
49:4c:66:71:12:04:e0:ac:05:b4:3e:42:65:3c:bb:
c4:87:13:b9:53:bf:05:29:a6:a9:01:ab:c1:56:49:
5f:97:6d:f0:a0:fc:04:ca:5d:94:83:ed:0f:5d:e8:
f3:a6:89:5d:28:c1:77:e6:c8:34:f3:d9:54:9e:73:
36:c1:b5:af:cc:dd:a4:a5:28:37:30:fb:01:09:4f:
8e:75:3f:6a:10:65:60:9f:4a:ba:a0:c5:1f:7c:b8:
39:0e:a0:5b:58:13:c3:14:dc:3b:b8:a6:4c:af:f9:
be:2c:cc:09:9f:9a:3e:4a:bc:2d:eb:fc:b8:ff:32:
2f:77:2a:90:7d:6a:21:79:38:44:b8:6e:fd:3e:d0:
a2:59:00:13:da:eb:e2:04:47:4c:ef:ff:2c:96:47:
b2:07:22:c4:a4:fb:8a:f9:e6:3a:d9:54:d9:c3:f9:
24:65:54:e8:31:e1:3f:39:fc:50:00:7f:f7:11:15:
71:55:bb:ee:7d:af:72:cb:f9:45:bb:69:59:fe:93:
2b:7f:eb:8f:37:ed:05:01:68:40:64:2b:6d:5f:a5:
c8:b0:73:6e:48:9a:9a:ca:31:a6:04:46:01:d2:92:
a7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B3:C1:FB:40:94:E3:EE:FA:F6:DE:C6:7F:D0:B9:78:B1:81:3F:D1
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f3:7b:8a:fd:ee:07:f8:a7:09:1a:06:b6:f6:f0:74:d5:28:
24:d7:58:c9:95:09:ac:47:56:52:dc:66:e3:90:b8:8c:5a:6d:
3f:ba:a6:36:a2:bd:32:b6:96:51:14:35:b4:20:89:96:f3:cc:
c6:f7:60:49:d3:d7:77:34:f7:d0:dc:ff:39:de:3b:12:cd:50:
2f:cf:76:4e:34:b8:e7:22:93:62:76:36:64:68:00:18:9a:d4:
6b:f0:a2:bd:8f:45:e8:24:d8:2d:75:a8:dc:df:48:e5:ec:82:
2b:68:1d:73:ef:f1:72:dc:8e:00:c2:9a:1c:e8:53:e0:7d:b2:
2b:14:91:0f:c9:b2:04:0e:e7:1f:11:81:20:51:66:05:b0:fe:
14:60:73:d4:77:69:5c:ee:62:93:32:d8:a9:a7:7d:d5:eb:b1:
17:28:e4:cc:26:66:d0:c8:9e:d7:72:69:bf:45:7d:72:ba:9d:
23:73:4b:a0:1b:12:87:72:4b:74:95:4a:f2:48:1a:59:17:4e:
62:58:0d:1d:f4:03:d5:c5:e3:af:5d:13:02:4f:08:37:84:84:
b2:e3:01:d4:e3:ec:1a:a1:78:bc:dc:9e:8c:d0:35:6e:a8:65:
7c:ed:0d:5b:42:5c:28:b8:ec:a0:6c:a7:97:2b:c5:98:23:4e:
a8:72:19:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:36:09 2026 by rpki-client