Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: tKW1PfbIrmY1cbo8XUvdLsH/Pgw5PLjXm9uyKB8daYk=
Subject key identifier: 38:F8:5A:1F:A2:14:2A:DE:B5:DA:54:DD:52:B4:C2:65:45:9B:9E:18
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 019CACB4FA200E92FF64B17B50524056EBE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 1560
Signing time: Mon 02 Mar 2026 04:01:07 +0000
Manifest this update: Mon 02 Mar 2026 04:01:07 +0000
Manifest next update: Tue 03 Mar 2026 04:01:07 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: Lw9uWlR2g4EYpxCGt3CeHrwdbT1MOKltp1srLAezaT4=)
2: c0z-_U_7s_3lnaiWBwRIuVlkh7c.roa (hash: EAYr21bopytQdXh3mLIBfLUMzK/qGgq6jONJ7Pmqm+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:fa:20:0e:92:ff:64:b1:7b:50:52:40:56:eb:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Mar 2 04:01:07 2026 GMT
Not After : Mar 3 04:01:07 2026 GMT
Subject: CN=38f85a1fa2142adeb5da54dd52b4c265459b9e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:f9:eb:dc:5b:43:dd:36:ad:41:8c:cb:c9:
8d:62:3a:09:e8:f9:24:95:d0:70:06:7b:23:93:d7:
7a:c4:8e:58:f2:f8:6d:ea:76:f2:bf:5d:72:2f:bf:
1d:0e:2a:d1:50:91:96:39:99:e0:2c:1a:a6:5d:d6:
ff:b0:fd:ca:3b:d7:90:10:4a:6f:37:4b:a4:f6:b7:
a8:67:0f:36:c5:c8:5f:20:ca:00:b9:88:49:55:7b:
61:25:71:87:a8:cf:1c:28:c8:3c:ae:ee:17:92:7b:
9c:cb:53:8f:0e:b2:52:5e:3f:32:86:be:68:2b:57:
c9:34:31:7f:cf:f0:3f:92:d1:1d:4f:bc:41:a7:7c:
82:36:05:7d:df:ec:4a:88:26:56:34:87:58:34:1a:
49:39:b5:f9:e0:ed:77:29:61:d2:f2:0c:ca:92:aa:
17:b4:e4:2b:98:95:09:3b:44:52:3f:8a:16:81:96:
fe:4e:46:80:eb:26:60:6b:6f:f8:03:fa:dc:6a:53:
78:e5:9b:ee:22:f8:8a:b2:36:7d:8b:8e:90:c9:6c:
dd:db:78:76:fb:41:b9:75:55:ad:63:e3:8f:de:5f:
2f:f0:ff:5e:fe:3d:ae:c3:62:d9:00:d8:f0:1e:b8:
03:65:bd:42:a3:34:fd:fe:2d:7e:62:05:bf:46:ee:
52:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F8:5A:1F:A2:14:2A:DE:B5:DA:54:DD:52:B4:C2:65:45:9B:9E:18
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:e3:a6:57:b9:b0:66:3d:bf:49:08:6e:dd:c9:10:06:ca:73:
f9:6d:4d:b6:61:3c:f7:9b:39:9c:53:c7:b2:0c:1b:d9:42:ab:
25:3d:8e:65:42:18:cc:48:4a:3d:11:cd:f0:cb:83:04:d3:cf:
a7:43:da:18:59:5d:f9:b3:af:dd:a4:7b:aa:3f:61:85:71:6b:
07:44:41:5e:fc:fb:54:2e:e5:77:81:c1:5f:68:32:54:76:0b:
73:90:08:e4:c2:60:42:8f:c1:fc:6f:0f:26:08:eb:6a:51:e1:
31:de:7c:76:47:61:28:d5:e6:fc:79:14:0c:33:8e:fb:82:65:
c0:4f:66:5c:a3:46:96:e9:63:20:c9:7e:ed:cc:16:c7:d7:69:
e6:54:82:11:1d:20:a3:76:a1:7c:c8:c5:44:4b:40:08:ff:4c:
26:9c:57:ff:2b:ee:7d:ec:3f:41:b5:36:79:36:d7:62:81:c6:
58:3a:2f:f6:08:d0:a0:9d:cd:4d:d2:1e:5a:1a:25:30:01:3b:
2c:93:59:d5:d5:16:22:52:65:f3:e6:58:71:2e:9c:90:06:b6:
41:ec:d6:17:68:52:96:42:09:2d:b5:9e:37:50:43:76:92:4c:
bc:e3:d5:1a:b3:53:4e:e2:28:be:17:b6:a5:63:e0:1e:93:d8:
ff:c5:e4:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:33:52 2026 by rpki-client