Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
File: aHmbdytVHbeE7rqLDhFaDEM807o.mft (raw, json)
Hash identifier: 3yM+9NwHs9HISv5/f4vz3iP29GWlxo0rMAMn3/mFIAU=
Subject key identifier: 45:92:AB:B9:14:58:5E:DA:47:3B:E2:C6:18:DB:C2:15:92:22:76:DA
Authority key identifier: 68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
Certificate issuer: /CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Certificate serial: 019CAAFD3BE04381C530AA94EE1A40DC0409
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 20:00:48 +0000
Manifest this update: Sun 01 Mar 2026 20:00:48 +0000
Manifest next update: Mon 02 Mar 2026 20:00:48 +0000
Files and hashes: 1: aHmbdytVHbeE7rqLDhFaDEM807o.crl (hash: DzdedS71GHCWtQ+bntjNs8fewJYHegG2qS3JywziqSM=)
2: lomzg8TRXkBkQAJV3SYj7kC0l0k.roa (hash: gnOZFo1e3nzIFcl3On+9oUhEAr2nhDp2g8Ki0TCHhqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:3b:e0:43:81:c5:30:aa:94:ee:1a:40:dc:04:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Validity
Not Before: Mar 1 20:00:48 2026 GMT
Not After : Mar 2 20:00:48 2026 GMT
Subject: CN=4592abb914585eda473be2c618dbc215922276da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9f:72:8d:61:e7:24:87:99:6b:70:4c:84:e2:
af:83:5d:64:01:1e:0c:fb:7e:cd:4d:a7:2b:a8:b7:
8c:fa:e0:32:92:9c:ba:41:aa:4a:96:43:37:72:52:
c9:5c:62:c5:cf:14:45:5d:2a:e0:5c:4f:9a:74:9b:
7a:b6:39:f8:0a:d7:0b:34:d1:02:fe:1e:37:3c:98:
db:2a:0c:3a:c6:1f:92:b5:c3:3f:1c:52:83:ea:95:
74:14:dc:16:63:6b:03:a7:ca:98:47:bb:fe:ae:2c:
8c:3a:6f:87:45:bd:a5:f0:d4:77:ba:a3:d5:90:1a:
a3:11:81:05:71:5a:00:7f:0b:2f:04:78:07:76:e8:
55:ff:01:8d:a6:95:9b:86:f7:88:19:4b:e2:4b:59:
7a:09:19:87:4d:1f:8c:ac:4f:ac:79:cd:82:0c:a7:
4e:35:4c:23:26:d4:8e:c1:19:08:44:67:ea:c7:98:
45:11:fa:a5:86:a0:3a:8d:4b:d0:9f:d7:f7:c4:21:
41:67:2c:5b:35:b4:af:b9:6b:42:ba:f2:1a:0f:62:
ec:44:15:be:3b:3c:a7:8c:5d:26:df:46:2b:9d:e9:
53:0d:fb:6c:4e:6a:90:55:66:37:2c:1b:98:f2:94:
b7:7c:3b:6f:6c:8c:2d:d7:a4:2b:4a:f9:c0:d8:3a:
b9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:92:AB:B9:14:58:5E:DA:47:3B:E2:C6:18:DB:C2:15:92:22:76:DA
X509v3 Authority Key Identifier:
keyid:68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cd:1a:63:69:e3:17:5b:47:34:67:0c:26:19:43:5e:d9:1e:
46:3b:9a:8c:c3:44:8e:98:6e:9a:8e:36:e3:9c:c9:93:64:42:
c9:ae:63:5b:16:dc:82:4a:d5:16:12:5c:e0:0d:b8:eb:14:f7:
fd:ea:f5:8c:eb:be:32:9b:0b:e8:67:ec:6d:96:29:a0:66:e6:
af:37:20:c2:d6:98:01:ff:92:72:2b:14:e6:97:7b:87:b0:33:
ad:99:a5:da:93:90:4e:11:22:26:0e:0a:68:5d:7f:3d:bf:2f:
92:13:0a:ff:1b:cd:f9:c9:b7:b2:47:70:a5:e7:2f:5d:de:44:
4f:4a:0d:cb:28:ad:f3:c4:8c:be:b8:49:ea:a0:89:a7:02:14:
6f:45:e0:58:dc:e6:18:e8:dd:53:7f:8a:79:e7:f8:f6:eb:8e:
9f:cc:bb:5a:b8:80:0b:d6:d1:35:5c:af:6a:ac:1e:56:72:b9:
0a:bf:b6:ed:fc:82:77:62:8a:5c:8b:d1:ad:f1:ab:b8:48:10:
a1:f8:dd:3d:34:27:05:28:65:4d:ae:87:4d:ef:07:5d:ed:df:
33:42:1c:61:2e:96:d5:c5:da:4b:d7:b9:36:a3:00:bd:b6:c4:
6b:24:e4:d4:3f:7e:2f:bb:2d:62:4e:9c:03:94:eb:1d:91:9f:
ca:51:05:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyq/TvgQ4HFMKqU7hpA3AQJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4Nzk5Yjc3MmI1NTFkYjc4NGVlYmE4YjBlMTE1YTBjNDMz
Y2QzYmEwHhcNMjYwMzAxMjAwMDQ4WhcNMjYwMzAyMjAwMDQ4WjAzMTEwLwYDVQQD
Eyg0NTkyYWJiOTE0NTg1ZWRhNDczYmUyYzYxOGRiYzIxNTkyMjI3NmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk59yjWHnJIeZa3BMhOKvg11kAR4M
+37NTacrqLeM+uAykpy6QapKlkM3clLJXGLFzxRFXSrgXE+adJt6tjn4CtcLNNEC
/h43PJjbKgw6xh+StcM/HFKD6pV0FNwWY2sDp8qYR7v+riyMOm+HRb2l8NR3uqPV
kBqjEYEFcVoAfwsvBHgHduhV/wGNppWbhveIGUviS1l6CRmHTR+MrE+sec2CDKdO
NUwjJtSOwRkIRGfqx5hFEfqlhqA6jUvQn9f3xCFBZyxbNbSvuWtCuvIaD2LsRBW+
OzynjF0m30YrnelTDftsTmqQVWY3LBuY8pS3fDtvbIwt16QrSvnA2Dq51wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEWSq7kUWF7aRzvixhjbwhWSInbaMB8GA1UdIwQY
MBaAFGh5m3crVR23hO66iw4RWgxDPNO6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUhtYmR5dFZIYmVFN3JxTERoRmFERU04MDdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi85NjJmMmQtNzI4Mi00MjFlLWE2MzEt
MGM3NmEzMTZiNTJlLzEvYUhtYmR5dFZIYmVFN3JxTERoRmFERU04MDdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi85NjJmMmQtNzI4Mi00MjFlLWE2MzEtMGM3NmEzMTZiNTJl
LzEvYUhtYmR5dFZIYmVFN3JxTERoRmFERU04MDdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABM0aY2nj
F1tHNGcMJhlDXtkeRjuajMNEjphumo4245zJk2RCya5jWxbcgkrVFhJc4A246xT3
/er1jOu+MpsL6GfsbZYpoGbmrzcgwtaYAf+ScisU5pd7h7AzrZml2pOQThEiJg4K
aF1/Pb8vkhMK/xvN+cm3skdwpecvXd5ET0oNyyit88SMvrhJ6qCJpwIUb0XgWNzm
GOjdU3+Keef49uuOn8y7WriAC9bRNVyvaqweVnK5Cr+27fyCd2KKXIvRrfGruEgQ
ofjdPTQnBShlTa6HTe8HXe3fM0IcYS6W1cXaS9e5NqMAvbbEayTk1D9+L7stYk6c
A5TrHZGfylEFHg==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:27 2026 by rpki-client