Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: s0XjRIqtjLgzM+/UZcHDB9EyYIzPbdT2Z/GSY9pEeTA=
Subject key identifier: 40:E9:B8:A6:96:B7:0D:A1:85:A0:B4:44:9F:D3:05:A7:3E:F5:9C:9E
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 019E1DC75EE8A124C9172ECF882D4E2D3EC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0FEC
Signing time: Tue 12 May 2026 20:01:05 +0000
Manifest this update: Tue 12 May 2026 20:01:05 +0000
Manifest next update: Wed 13 May 2026 20:01:05 +0000
Files and hashes: 1: 7Mj5v1lcOBzmcBBC8jLwVKnmF6E.roa (hash: FZGMBdbWDI4SBVgHGU6EFIDpQ6waV160tdsD6LVMmXc=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: 5zLfa11Gk/1xeFAkhYtFN+BZhdtdcmv67b3oQ1ftA0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:5e:e8:a1:24:c9:17:2e:cf:88:2d:4e:2d:3e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: May 12 20:01:05 2026 GMT
Not After : May 13 20:01:05 2026 GMT
Subject: CN=40e9b8a696b70da185a0b4449fd305a73ef59c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:64:0b:c3:70:bf:51:08:b1:5a:68:37:9a:12:
49:7f:50:35:e1:e0:06:1b:21:70:5c:1c:33:38:0a:
35:8b:18:6c:4c:96:a5:27:b2:97:3d:76:76:c3:fb:
eb:74:e3:f7:d0:ad:ec:a9:0f:cc:92:2f:08:1b:58:
62:dc:93:61:ff:74:38:6b:62:04:48:d8:d2:a7:56:
0a:c3:cb:47:69:7b:38:9d:5f:9b:fd:20:3d:94:d4:
83:5e:fe:72:d7:4f:fc:ee:53:8f:21:ad:8e:50:46:
ff:1d:eb:b3:a3:ca:c0:5f:72:9d:15:f7:6e:66:ac:
88:8e:ac:3b:d4:97:d4:16:1a:d9:af:69:8a:89:1d:
b1:77:92:c2:16:d1:ab:b2:c8:f4:0d:7f:db:51:3c:
73:24:db:cb:e2:08:28:7b:32:ba:f7:f0:99:48:b6:
50:ad:b9:15:e3:5c:e6:d7:ef:18:20:a7:b6:f3:61:
05:05:bf:67:eb:77:d7:4d:69:9e:91:10:97:6e:bf:
b5:8d:e9:9d:13:1e:85:0a:ce:a5:c9:c5:01:6b:4b:
3b:cf:33:52:ce:d9:56:95:00:b9:be:a3:45:5a:a1:
2b:8f:8a:cf:e8:e1:e5:61:b5:37:cd:1e:50:a3:1b:
27:4f:34:44:b2:e3:66:d5:c4:ba:df:bb:27:30:50:
d4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E9:B8:A6:96:B7:0D:A1:85:A0:B4:44:9F:D3:05:A7:3E:F5:9C:9E
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:83:35:f3:e7:e8:a1:a7:3c:a3:b2:e4:29:ee:2f:85:5b:21:
4b:be:a4:d1:37:85:ef:2a:b4:cb:75:7f:72:c3:a8:f7:63:ff:
a9:3a:49:71:39:8d:ca:d3:8a:00:4a:e9:da:dd:5f:a5:63:b7:
e6:48:ab:c3:8f:13:42:e0:b7:6e:26:73:41:87:5e:ed:a5:5a:
e1:ee:fa:e3:3c:5d:c1:51:d9:83:2e:61:33:6c:d7:41:a1:17:
e3:8b:73:54:7d:90:18:44:ef:83:a7:97:f6:59:c3:fd:63:69:
90:52:95:09:ef:4f:f3:e0:94:f6:78:fa:94:26:9c:eb:5a:e3:
8f:cb:dd:b3:ca:f4:e8:cf:c4:09:12:59:83:c7:4e:30:8f:e5:
b6:f0:98:ed:c4:69:b2:17:a0:84:5c:5d:9e:41:9e:4c:1b:6c:
56:14:5c:a0:b6:44:aa:3d:ff:71:eb:f5:07:5c:a9:da:c6:46:
e7:82:a2:aa:10:d5:2d:a9:36:af:d7:24:e6:5f:1a:39:9c:b0:
56:a7:af:48:04:e0:83:82:ee:66:b2:c2:ef:b8:20:96:89:21:
32:2a:80:a1:4e:51:48:9f:78:75:3a:b3:4f:2b:2f:f9:eb:7e:
9c:9d:c7:a5:8a:85:d6:04:16:f0:d3:77:d7:85:a0:b2:9a:bf:
23:ee:e9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:29:49 2026 by rpki-client