Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: Gz+ek6/wLnQpSt1iw9/FBKFdvGbt1PrOwuXsqLPPq4k=
Subject key identifier: B1:89:B6:8E:AD:19:90:C5:DD:78:9B:9B:88:68:02:A3:1A:A5:5B:CE
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 019E1FEC94CDE4370CEEAFDB24A12CC0CB57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 02EF
Signing time: Wed 13 May 2026 06:00:58 +0000
Manifest this update: Wed 13 May 2026 06:00:58 +0000
Manifest next update: Thu 14 May 2026 06:00:58 +0000
Files and hashes: 1: XCvwouQb8EHjnYaba0fCxCrBwa0.roa (hash: 7OCxz9+g4uYWDzH37RsGVsHV2ZDZWkC8HmqPtc1bvkQ=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: rbPbfiD//ioWNM5TwhAw5xKv6oz8k55JyFm0UcOSjQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:94:cd:e4:37:0c:ee:af:db:24:a1:2c:c0:cb:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: May 13 06:00:58 2026 GMT
Not After : May 14 06:00:58 2026 GMT
Subject: CN=b189b68ead1990c5dd789b9b886802a31aa55bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:f4:7c:a8:bd:84:c9:00:25:87:cb:65:16:
fa:75:0e:41:e5:1f:40:56:91:34:d2:d6:02:5a:b0:
d1:f8:13:f1:72:99:88:48:7f:1e:9f:73:c6:10:2f:
35:fd:87:4c:40:37:08:59:4f:a0:2a:f3:10:c6:3a:
77:dd:1d:29:c7:43:ab:72:b3:4c:ea:bb:2f:e6:f0:
e8:ff:92:c5:79:56:9b:7b:05:9a:bf:c5:84:9d:87:
80:22:97:97:d0:43:35:68:fd:8f:9d:24:4d:56:a1:
db:c0:10:9a:f0:a4:77:38:78:68:92:8b:c3:d7:0d:
1d:1c:fa:58:e3:16:86:83:01:0b:ce:4e:de:80:05:
03:d3:2a:d4:fc:72:25:f9:05:2b:21:2a:12:7f:8b:
83:c7:f3:81:12:8e:b5:26:9a:6d:4f:8a:f3:e6:a6:
aa:34:3c:34:a3:34:c5:18:1a:41:31:8d:62:67:3c:
fa:43:43:66:d0:8e:b5:ab:1f:45:f1:69:bc:e8:d9:
6e:3a:36:09:7a:13:85:16:0d:4c:f6:c9:d9:f6:07:
19:ff:91:cd:82:6f:cc:5e:7e:16:e0:95:51:62:3b:
de:e9:ad:85:39:18:c8:88:ce:5d:14:7e:4e:fa:7b:
42:01:56:e6:ee:c9:46:b8:60:fa:6a:2b:4c:9a:e2:
03:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:89:B6:8E:AD:19:90:C5:DD:78:9B:9B:88:68:02:A3:1A:A5:5B:CE
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:bb:34:fc:de:98:69:02:b4:60:a4:f6:a1:cf:e3:54:e8:39:
2e:b5:7a:7f:a8:a4:3b:d8:7c:35:bd:88:14:66:3c:60:e7:54:
6e:5c:2e:13:70:61:6d:8b:24:08:00:07:86:af:c3:84:dc:a1:
08:98:2a:52:2f:cd:ee:8e:3f:aa:26:9b:a0:59:dc:af:ba:62:
4e:61:77:31:0d:f7:7c:9d:8e:99:69:b4:76:41:61:a9:58:49:
00:cf:d3:24:65:d7:aa:bf:a1:8c:e2:9e:64:72:29:b1:e9:8b:
20:15:a5:06:85:42:6d:8e:9f:04:08:41:80:6a:77:ec:df:5b:
ae:31:9a:2c:d5:1f:51:11:32:d1:37:a2:bc:4e:15:02:9c:be:
ae:7e:61:88:31:28:d7:51:08:e7:33:b1:4c:39:12:bc:ad:4c:
68:66:17:9f:0e:d7:0c:50:66:2b:6c:25:82:6f:98:1d:b8:df:
91:dc:09:d8:86:f1:d4:d7:b2:d8:fa:5c:9e:c9:b5:54:7a:4f:
57:a8:07:5b:89:b9:75:0a:a3:4f:60:be:54:a7:e1:67:94:b2:
fb:59:0b:99:ff:0e:9a:7c:c4:f8:df:4d:ab:2f:a3:9a:71:b8:
e0:95:43:97:b4:91:2a:df:05:d1:9c:e7:de:9f:4e:f3:f2:43:
06:35:3d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:38:51 2026 by rpki-client