Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: 2K0DiRB5YQOPQeAT5NlCf7R+R0KIA0NY+ynjtevAxhI=
Subject key identifier: FF:C8:A1:33:A1:A1:EE:64:1D:29:58:99:2B:83:29:9E:32:54:9E:73
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 019D28845F026019D478442FFEE6E33E7ED8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 05:00:56 +0000
Manifest this update: Thu 26 Mar 2026 05:00:56 +0000
Manifest next update: Fri 27 Mar 2026 05:00:56 +0000
Files and hashes: 1: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: DKC+wQ2rJhG7KeLTm2V/T9/U04aJCF8ldBwaqjmg7kk=)
2: sn9U2RuOQ1wrwQLlWSSxVdSW5_4.roa (hash: 8JLFpcnBG6xPlIQ4AyWjjJuV8xetbTR/ok+0e12gEvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:5f:02:60:19:d4:78:44:2f:fe:e6:e3:3e:7e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Mar 26 05:00:56 2026 GMT
Not After : Mar 27 05:00:56 2026 GMT
Subject: CN=ffc8a133a1a1ee641d2958992b83299e32549e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e9:0e:36:16:76:f1:02:3d:f2:da:a8:b1:74:
6e:b8:69:10:11:c1:e8:7c:24:43:92:cb:83:93:db:
dc:bf:59:7b:bc:b1:2b:11:53:d1:fd:a9:e3:49:2c:
96:d0:b4:34:85:22:7e:15:57:11:6e:b8:87:61:31:
12:39:89:2a:78:8e:01:e1:80:b0:d7:f2:82:d6:c6:
5d:1c:a5:6d:33:ec:0f:b5:ff:36:c5:9d:e3:40:aa:
bc:c4:cd:fa:5a:c6:f5:ee:f3:22:83:2c:72:35:76:
4a:ae:cf:a7:10:11:3a:27:d5:30:c2:74:7d:d6:cf:
04:b5:7c:9e:ca:63:50:c4:48:da:12:44:80:de:b6:
8c:1e:b3:1d:f4:2f:3d:79:d4:a9:08:ca:44:83:be:
00:f4:67:4a:a0:6c:26:72:06:c5:61:05:15:ed:39:
e7:3c:91:8f:f3:af:c5:cc:35:8e:7f:0c:79:dc:20:
1d:ad:83:68:73:c9:bf:17:b2:6d:59:d9:0d:80:c5:
4e:4c:76:d8:44:09:0b:2e:d0:b9:63:f7:3d:39:e9:
f3:dc:f4:e7:13:be:e5:cd:39:80:8d:04:af:52:6b:
f7:eb:e4:6e:9e:40:05:d9:73:26:9b:17:48:01:b4:
5c:a2:30:a0:5a:1a:ad:04:93:c6:5f:0b:59:63:f6:
c9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C8:A1:33:A1:A1:EE:64:1D:29:58:99:2B:83:29:9E:32:54:9E:73
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:89:5b:f8:53:08:dc:7c:29:0d:b8:90:15:90:2e:f6:74:51:
14:9c:01:cd:d1:66:d2:c4:60:9a:e6:07:93:08:5d:7a:e0:80:
f3:de:fb:e1:05:7e:ff:96:77:02:72:a5:87:de:5e:d7:47:00:
8b:eb:46:64:06:ec:3c:7d:22:07:22:3d:d6:f6:e2:26:a7:e9:
82:57:5b:8a:72:cd:6c:df:34:2d:94:cf:26:03:7f:07:bb:5d:
8a:bf:bc:0b:51:d8:0d:ff:2e:b3:41:96:9d:bf:91:15:75:e4:
bb:82:7f:cf:05:05:f2:18:1c:db:23:ea:02:45:65:80:51:54:
20:fb:4a:13:a4:b1:c8:c1:8c:86:7f:6c:98:9f:81:dc:2d:2d:
82:20:91:70:5c:58:78:aa:4c:69:98:c7:b7:dd:bf:59:e3:82:
2b:67:62:f6:e3:87:88:ff:72:b1:81:58:21:c4:ae:0c:2f:1b:
4f:b9:96:ba:c1:19:f5:98:48:07:1e:34:19:2e:dd:8a:ca:4e:
92:a3:00:2e:f3:18:89:64:8a:05:f4:5f:d6:e0:d5:f8:2a:ad:
9b:44:a2:bf:6d:eb:4f:09:02:c4:77:5e:51:34:56:47:22:55:
55:2c:5e:b0:ab:25:f5:c1:05:b4:b2:61:6f:10:8f:88:fb:3b:
1a:e8:92:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:42 2026 by rpki-client