Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
File: aPQ7W7zEligG6pMi7Ckum2bdzMU.mft (raw, json)
Hash identifier: Ccqhxg5zxbWwgTNFVQ5A8LrO55lHhLnumBoyQhBCA6Q=
Subject key identifier: 69:E5:AB:EA:B7:11:C7:82:C1:C1:9B:BD:6B:F0:54:27:B9:5A:33:36
Authority key identifier: 68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5
Certificate issuer: /CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5
Certificate serial: 019E1E6CCB5F22D74B807B14F4AFE9025331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
Manifest number: 0339
Signing time: Tue 12 May 2026 23:01:46 +0000
Manifest this update: Tue 12 May 2026 23:01:46 +0000
Manifest next update: Wed 13 May 2026 23:01:46 +0000
Files and hashes: 1: A5tB2m_AKkFH2MRYLSZP1qj6r7Y.roa (hash: JU4CZpqlBacShwjyBoLo9X21T9K67+NvyzH3SwXTo+Y=)
2: XHzhckAnu87gDfunEM3sM2fHJc4.roa (hash: J4SR1s2pClNQQ3/S6LW+95K5vqFvopp0j499gt2QsWY=)
3: aPQ7W7zEligG6pMi7Ckum2bdzMU.crl (hash: sBfc1Cl+IlRy86ei/PSqOnMCaBWfA7LZtubfkNCTpSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:cb:5f:22:d7:4b:80:7b:14:f4:af:e9:02:53:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5
Validity
Not Before: May 12 23:01:46 2026 GMT
Not After : May 13 23:01:46 2026 GMT
Subject: CN=69e5abeab711c782c1c19bbd6bf05427b95a3336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:48:73:c6:ef:d9:58:00:da:69:a3:d5:e0:77:
0f:88:30:6f:d7:a3:38:25:0d:ed:df:39:84:61:83:
37:3d:59:65:e9:0f:0c:23:85:23:01:06:23:61:ee:
95:5f:47:a1:a3:fe:38:99:83:7a:3c:3e:ab:ce:2c:
c1:b2:2b:49:92:9a:59:e5:17:a6:8e:f6:eb:f2:07:
ad:d8:24:8c:20:3e:10:6f:70:29:1d:d7:86:c4:48:
4c:b0:89:d3:79:cf:ba:74:ce:d5:12:2a:31:19:ee:
c1:6a:c5:d4:dc:b7:c2:b5:74:fe:fb:c2:e9:75:07:
1f:80:6e:a2:ae:68:f6:c9:42:bc:a6:4a:05:e2:08:
84:9e:cd:90:0c:82:ca:10:95:89:49:5e:a6:8e:fc:
58:53:11:34:4c:51:27:84:ec:dd:0d:2c:11:af:bb:
73:53:c2:4d:d6:a6:4e:68:cb:0f:c0:56:56:a6:dc:
81:c1:48:a2:47:68:7f:fd:fb:c6:ec:79:73:6b:1f:
7d:68:93:66:af:8d:ac:80:ca:a0:6e:d0:13:48:c4:
51:5e:de:f1:ec:3b:c6:b1:2a:36:c0:47:5f:08:06:
27:97:c1:d6:fd:2f:a0:db:e7:ba:dd:3f:12:2b:b2:
08:d6:fa:65:3a:5d:1b:9f:77:b7:97:5c:9d:5f:56:
59:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E5:AB:EA:B7:11:C7:82:C1:C1:9B:BD:6B:F0:54:27:B9:5A:33:36
X509v3 Authority Key Identifier:
keyid:68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:91:a6:e1:ea:6a:96:16:57:6b:52:23:ad:df:7e:be:a3:a3:
1a:b3:b6:8d:47:73:ab:4b:c8:2f:61:4c:bc:b2:97:5f:ac:ac:
d0:e9:f9:ed:ff:1d:ed:35:08:7e:07:13:94:2f:e6:53:e3:a4:
ef:6b:cf:30:10:d6:bb:0f:9d:a0:05:7d:94:22:d1:0f:df:4c:
27:47:f3:50:28:12:d0:9f:c6:a0:3c:0d:04:df:0f:b5:4a:d0:
13:97:1a:de:83:46:88:02:8c:7e:42:9a:ec:90:f5:24:20:93:
e1:43:3c:4a:f0:a4:00:2d:bb:59:72:d3:60:13:e6:8c:da:bc:
ad:33:f0:93:6b:7a:2a:71:f2:27:97:73:21:02:b2:d7:4d:40:
0c:41:dc:c9:25:49:ef:8c:c0:c1:fd:56:cd:0c:57:05:a0:ac:
83:ec:10:d8:53:ac:4e:7e:76:5e:cf:25:b1:0c:c5:53:95:d3:
3a:83:84:59:e7:cb:c0:d5:1a:d4:10:a8:8c:20:41:f0:1d:a7:
48:f8:6e:83:79:8d:13:7e:db:f7:10:87:72:2e:79:55:b8:85:
08:0e:31:4a:c2:69:13:a6:11:c7:0a:11:5c:bb:06:01:9e:6c:
4e:62:60:29:78:1f:33:88:32:56:73:7d:cb:85:71:09:72:3d:
20:1f:4f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:38:36 2026 by rpki-client