Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: wXkEm1cEwaGBEB/UR0xaueTafmIFndLNy8AxilDMwfc=
Subject key identifier: 6E:40:BF:E0:55:B5:0E:D6:DD:5C:CC:BC:AB:6C:AB:CE:61:A7:CD:3E
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 019EBEB5E6BB33FC0B56C82E872353597021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 1498
Signing time: Sat 13 Jun 2026 02:00:52 +0000
Manifest this update: Sat 13 Jun 2026 02:00:52 +0000
Manifest next update: Sun 14 Jun 2026 02:00:52 +0000
Files and hashes: 1: 6tZKYli0xFjSrMTaPxgthKbfu_g.roa (hash: lqL9qb+FKGUxGrpBLb7Tf9OnZbQiDT4OvdfFGjgah0c=)
2: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: JLDxSRTNVFY5Al9wEoSjLTWxUKvPiwd4oQB4s8fdI+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b5:e6:bb:33:fc:0b:56:c8:2e:87:23:53:59:70:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Jun 13 02:00:52 2026 GMT
Not After : Jun 14 02:00:52 2026 GMT
Subject: CN=6e40bfe055b50ed6dd5cccbcab6cabce61a7cd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e1:96:9e:3e:15:17:ee:59:87:95:e2:e8:59:
00:66:85:76:91:10:d7:38:ec:fd:9c:84:04:51:04:
f6:ce:8b:42:1f:81:5d:87:81:ea:d2:ee:c7:00:08:
b9:fb:31:a4:52:96:6b:5f:24:3b:60:93:e8:70:65:
b3:ac:c8:77:f0:31:8c:c8:2a:4b:5e:52:34:f4:ee:
a2:c6:79:cd:11:62:29:59:93:77:e3:af:99:a4:26:
88:62:2e:fe:46:2d:ea:51:d1:46:62:5f:8a:8a:9f:
aa:f6:45:00:c8:80:f9:57:32:f2:6d:a8:4b:8e:0c:
3e:08:a1:60:f7:f0:15:30:ef:9f:67:0e:d8:a4:6d:
38:86:c4:0e:33:6b:76:68:9f:04:72:64:ca:f4:26:
b3:a2:0f:3a:a3:0b:f5:57:d4:48:9e:f3:81:cd:ef:
12:03:b1:4b:95:84:9a:d0:cd:24:4b:ea:39:f1:df:
30:39:ab:2b:dc:79:0e:58:15:5a:56:c9:37:dc:aa:
9a:ea:73:11:38:3d:de:22:d6:5f:7b:7d:8c:a9:ef:
f2:6c:a4:ef:74:4a:0f:47:40:89:3c:dd:d3:c9:bd:
ee:05:e0:13:bd:20:84:09:91:34:82:91:c6:43:92:
51:dc:9b:e2:0b:ac:18:fd:f3:55:c2:95:60:48:45:
08:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:40:BF:E0:55:B5:0E:D6:DD:5C:CC:BC:AB:6C:AB:CE:61:A7:CD:3E
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ae:be:8a:d8:1a:44:1a:f5:78:1a:46:60:ba:c4:90:de:42:
dd:f9:45:82:ae:39:0c:3e:3e:b1:31:17:c6:94:77:42:be:64:
83:1e:f7:07:73:41:7b:b9:fd:d8:3c:4f:5c:a5:47:16:44:ff:
f1:43:f1:05:dc:d5:dc:b8:33:32:f3:f6:79:92:0b:c2:c3:58:
6a:bd:e9:15:f9:9f:b5:1c:d3:8f:36:d0:82:84:c9:79:7c:c0:
79:12:f5:40:6d:94:05:e5:a1:26:24:87:18:11:b7:fc:91:23:
c9:05:1d:6f:1c:71:4b:f6:c9:d5:08:88:c0:82:98:7e:e4:43:
76:80:85:77:1a:3f:2a:9b:83:a3:ab:9c:f0:b5:9e:cd:46:c9:
d2:f9:3c:a9:b2:f7:9f:7d:dc:06:91:8a:98:b4:e1:1a:5d:a7:
f7:f2:1a:91:7d:32:aa:16:5f:b5:e4:4a:b3:16:1f:75:65:de:
b1:b7:a6:2f:7c:d1:2d:d3:1b:3d:e7:22:d3:90:3b:66:c3:2c:
11:5d:29:b7:e2:e9:46:85:a3:8f:9a:9d:6f:c9:36:fc:4d:59:
ab:64:dc:40:fd:b1:49:81:99:94:bf:c2:80:86:87:e9:ea:48:
f7:9d:03:14:3e:bd:d7:ca:47:b1:9e:15:aa:00:a9:5c:b5:f9:
2a:80:09:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:03:53 2026 by rpki-client