Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: mMlU779eprBdkmQfzhvxkHgaBc1UvIGXVJBhcMn2XSk=
Subject key identifier: CB:CD:C0:A3:15:A5:E5:E2:07:52:7B:B6:E1:A7:92:FF:DE:79:F9:65
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 019DA3E6D862A0CCF8F7A64C684541916B4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 15E0
Signing time: Sun 19 Apr 2026 04:01:48 +0000
Manifest this update: Sun 19 Apr 2026 04:01:48 +0000
Manifest next update: Mon 20 Apr 2026 04:01:48 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: saLkGNwmNF9kCxdPemLHLJSUL/bwgOFqifGmlD8h4+E=)
2: c0z-_U_7s_3lnaiWBwRIuVlkh7c.roa (hash: EAYr21bopytQdXh3mLIBfLUMzK/qGgq6jONJ7Pmqm+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:d8:62:a0:cc:f8:f7:a6:4c:68:45:41:91:6b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Apr 19 04:01:48 2026 GMT
Not After : Apr 20 04:01:48 2026 GMT
Subject: CN=cbcdc0a315a5e5e207527bb6e1a792ffde79f965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:da:5e:a0:db:a1:fd:b0:0c:c0:22:3f:e3:ee:
6f:c1:77:fe:25:a9:61:28:7c:06:2e:a5:16:cb:22:
56:2c:73:c3:23:b9:91:21:87:6e:5d:de:6b:9c:75:
c6:7c:c5:e8:04:6a:21:11:16:fb:62:6f:1f:2e:73:
fd:d9:44:c2:71:b9:a1:c6:31:7b:71:6a:8b:1f:74:
17:66:c8:52:c5:c8:82:f5:11:95:84:0d:28:16:c4:
0e:d4:75:c0:4e:e0:a8:a0:f0:73:ff:66:da:79:63:
05:49:2c:5a:87:2f:b8:b7:e6:c9:c5:b5:5e:81:fa:
7d:1d:0e:63:d3:7c:a1:4d:ef:1e:32:f2:43:cd:4b:
cd:b0:5b:d4:d6:08:6f:8b:05:96:d6:ac:42:d9:7c:
67:aa:7f:e7:48:f4:5c:db:1a:61:83:35:55:97:ef:
aa:4b:d3:4c:4d:30:42:1c:2a:0c:ea:5d:be:23:1a:
8c:5b:2b:77:d4:a6:e0:8c:f2:e5:f0:b1:f0:2b:b0:
10:5d:62:65:a8:2c:85:16:44:33:e3:6f:0c:0b:e6:
02:b3:a7:0e:f7:74:44:60:32:ea:3e:1b:0d:64:0c:
4d:5b:88:c0:d5:90:8a:f7:98:e6:7f:a5:cc:1e:72:
49:7e:6e:ff:9c:de:57:d5:70:75:55:4f:8f:bf:f7:
69:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:CD:C0:A3:15:A5:E5:E2:07:52:7B:B6:E1:A7:92:FF:DE:79:F9:65
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:b6:52:4d:cf:af:29:32:65:6b:b8:25:14:74:21:7a:67:bd:
9f:ec:47:18:79:6b:c0:72:54:8c:3e:54:74:8b:f3:ce:bc:68:
f3:f7:54:11:70:09:f1:06:5c:73:8e:1e:15:35:cc:b2:6c:3f:
46:82:12:fb:ee:d6:fc:64:0e:6d:e3:1b:a3:6e:2a:ea:d9:9b:
90:53:d5:fb:ab:25:71:76:a9:d8:07:c4:af:d5:2f:ab:6c:e3:
6b:aa:e0:6e:d1:22:22:54:c0:43:e8:9c:8b:a1:03:52:d7:3b:
78:83:f3:4f:53:22:59:b2:b3:86:41:f3:05:5e:7e:6f:f4:eb:
30:92:6b:49:e6:68:e3:cc:6d:c7:f6:12:5c:80:05:b1:b3:b7:
27:09:76:74:e9:39:93:27:6a:b8:de:26:e9:9b:1b:b9:89:ad:
53:8a:19:41:ec:29:c9:2f:f0:3e:81:7c:f7:aa:bf:2d:e6:e7:
4d:4b:c3:e0:29:a4:d2:56:36:3f:c4:b7:bb:6c:53:23:f1:d0:
91:5b:a5:d0:60:2e:06:47:92:b6:d3:9c:9a:f2:f2:da:63:b9:
da:77:ad:46:e3:e0:fc:fc:3f:a3:49:c1:24:1a:51:35:43:7f:
57:c2:48:2d:7f:5c:a5:77:59:90:27:16:5f:4a:99:6f:04:a2:
d3:dc:eb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:25:52 2026 by rpki-client