Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: h5I5Hm+NnyFg67UP/USJmaFdaqPH1NbOVRRcScsXpE0=
Subject key identifier: DF:A4:E5:54:80:C1:E6:7D:F9:EC:A2:53:77:A6:94:BE:A4:DC:7C:8A
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 019D28BBBCF2B10BF9F9CF0508EFD511652D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 026F
Signing time: Thu 26 Mar 2026 06:01:25 +0000
Manifest this update: Thu 26 Mar 2026 06:01:25 +0000
Manifest next update: Fri 27 Mar 2026 06:01:25 +0000
Files and hashes: 1: XCvwouQb8EHjnYaba0fCxCrBwa0.roa (hash: 7OCxz9+g4uYWDzH37RsGVsHV2ZDZWkC8HmqPtc1bvkQ=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: yBO13iOtkDPrCDtK+ViKBYQq6H1jFxnzD+ot/fPz+0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:bc:f2:b1:0b:f9:f9:cf:05:08:ef:d5:11:65:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: Mar 26 06:01:25 2026 GMT
Not After : Mar 27 06:01:25 2026 GMT
Subject: CN=dfa4e55480c1e67df9eca25377a694bea4dc7c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:cb:23:62:c7:95:c2:6a:9d:63:54:e9:de:
26:bb:31:82:5e:e8:08:c8:97:eb:99:20:77:96:34:
8e:f9:60:24:f0:7a:e1:64:fd:e4:68:c5:82:f6:50:
31:ec:f6:33:dc:32:04:c6:c0:bc:3f:0a:e0:8a:4d:
50:a3:e6:a9:18:d4:7e:e3:c5:aa:c4:0a:de:f0:91:
0a:f9:79:b1:b4:8c:bf:93:b6:41:ff:64:34:bd:01:
f0:f6:92:20:b0:29:47:40:89:50:b4:70:77:fe:f7:
1d:2b:0f:51:e1:44:ef:a4:1b:e5:61:40:e4:1c:ab:
d1:26:8a:1b:a9:1e:8a:4b:9e:ca:98:e2:42:75:73:
b4:49:cf:da:a9:c5:53:a5:2c:60:ff:fa:28:12:f4:
37:ae:69:b4:a3:e0:90:f8:93:6b:15:af:43:83:e3:
3a:0b:83:5c:ae:15:ca:b1:97:65:0e:e0:55:db:a6:
af:a6:bb:a4:c8:91:f0:99:63:14:00:2e:c3:4c:94:
9c:ad:1a:72:72:ad:28:d4:fb:39:7a:8a:7f:fc:8a:
1c:71:42:c9:72:26:cf:da:ee:86:ef:22:69:e5:24:
f0:7c:d7:43:b7:f2:3b:a1:80:87:e4:e3:ea:65:e1:
5d:06:69:ab:7f:1f:a7:9e:dc:20:02:2d:cd:78:34:
6d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A4:E5:54:80:C1:E6:7D:F9:EC:A2:53:77:A6:94:BE:A4:DC:7C:8A
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:0a:e7:5a:68:24:9d:c3:c4:8b:52:1b:3d:1a:4a:38:d8:0f:
71:d9:23:a6:31:e9:ce:80:5b:56:f5:37:39:46:9d:17:ee:d5:
b1:2b:1a:b6:b6:ee:03:ba:21:1d:0d:58:05:a6:d4:5a:ed:95:
9b:65:77:95:44:a7:b3:16:da:a3:c1:78:ff:2f:fb:9d:6e:9c:
0f:ba:c3:a0:58:f0:32:ed:b0:f1:95:3b:f0:a7:da:23:97:5b:
5e:bd:3d:10:c9:9d:0b:87:8b:83:b4:19:55:51:8a:01:3b:93:
25:ce:05:37:ec:ae:c0:3e:37:bf:59:36:18:4d:93:fd:7a:24:
e6:03:fc:35:6e:a2:19:b9:97:d5:52:be:e6:d4:8a:2a:ce:e1:
05:a4:07:6a:ee:06:85:1e:c6:d5:dc:ac:ec:5d:52:8d:e8:a0:
99:47:65:44:6e:21:32:a1:fc:3e:fd:71:21:15:fa:69:4d:42:
bd:2e:b9:67:79:00:bb:0b:36:e0:9a:bf:5c:99:8e:c7:bd:b3:
f2:fd:fe:21:05:6f:10:ea:89:9b:40:1c:16:1d:58:dd:42:f3:
8e:c0:35:83:dd:ec:c0:c2:2a:ac:9f:36:39:e2:4a:18:5f:54:
44:30:95:6c:40:d7:45:1a:41:6b:fd:36:88:58:c1:b4:9f:4a:
7d:43:e7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:29:03 2026 by rpki-client