Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: 6JQEjn6EZqAECcmCRpqqoFaypA7Cv3I0BDscc2frjjg=
Subject key identifier: 95:5D:3B:71:9D:92:CE:E3:71:3B:19:61:74:7C:A7:47:7E:E4:75:FC
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 01A79B81B039383943544548DC6EDEF2F239B013
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 046C
Signing time: Wed 13 May 2026 09:25:50 +0000
Manifest this update: Wed 13 May 2026 09:20:50 +0000
Manifest next update: Thu 14 May 2026 13:19:50 +0000
Files and hashes: 1: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: rUverdX1k2lqvsIRXHJyZh91XBEoOg23lCPuyq9KXJY=)
2: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 13:19:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:a7:9b:81:b0:39:38:39:43:54:45:48:dc:6e:de:f2:f2:39:b0:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: May 13 09:20:50 2026 GMT
Not After : May 14 13:19:50 2026 GMT
Subject: CN=955D3B719D92CEE3713B1961747CA7477EE475FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:50:94:6b:98:ec:93:68:f1:f0:d9:2a:c8:3d:
50:d3:19:38:20:f8:41:8d:91:f4:34:27:26:16:e1:
f2:55:e7:69:4f:6b:fa:83:6c:05:a5:d8:65:e3:73:
a2:ae:04:bf:9b:c4:50:5f:a4:e7:18:d1:d4:1e:38:
be:61:79:0b:7c:b1:38:3d:32:84:02:17:c1:5c:d6:
40:2f:f7:1b:fd:da:e9:47:92:90:98:96:88:a2:3c:
bc:1a:a3:78:e9:dc:4e:54:cb:d3:c2:c6:b4:d3:46:
db:c9:15:66:17:91:c5:45:9b:7b:20:2a:42:0d:87:
33:d8:c5:95:7c:0f:f2:d7:4a:ac:7b:75:0a:6e:92:
1d:5f:17:e1:58:73:74:2e:43:b4:e7:59:47:c1:8e:
77:62:18:52:9e:3e:8d:da:6e:3f:c3:ed:0b:75:2f:
f8:33:f8:3b:eb:45:96:51:ae:63:9c:f8:95:a1:9e:
f3:ba:90:fc:b6:e8:cf:68:9b:d3:fd:20:f0:8f:d7:
06:57:fa:28:a3:d8:25:88:62:d3:4e:47:45:03:74:
6a:93:f2:4d:e0:8b:a8:2f:de:9d:17:53:43:30:36:
69:07:dc:7f:0e:72:20:5f:83:bd:86:bf:0c:a9:ae:
06:59:c5:ff:ff:28:b1:59:f9:9f:b7:7e:85:f3:d5:
fd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5D:3B:71:9D:92:CE:E3:71:3B:19:61:74:7C:A7:47:7E:E4:75:FC
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:9f:d7:f5:53:09:87:ad:f9:2a:9d:f5:07:7c:33:22:07:42:
fb:c0:c0:2d:f9:2f:f1:fb:28:96:32:9c:71:32:e5:66:7c:d3:
a7:e2:7d:98:3f:ac:bf:f4:ab:89:ab:36:40:18:2c:f0:00:04:
cc:4e:e3:c7:0b:18:b8:16:2b:ea:31:89:bb:5c:44:5e:be:54:
ba:a0:0a:97:ab:49:70:df:e0:66:ba:16:4f:50:15:73:ff:ec:
93:b3:62:08:83:81:c5:7b:90:b9:aa:ce:cc:cf:16:a4:eb:48:
81:c4:7b:5f:89:c7:3e:7a:12:7a:51:7c:9e:4f:df:ce:ab:7f:
51:7d:e3:95:3d:49:6e:e0:ce:d6:87:e3:de:61:da:0a:42:1c:
47:1f:e9:96:d9:89:30:d0:b7:bd:1b:b0:2c:f6:2d:08:67:05:
7b:a9:47:f1:42:97:1d:f3:d3:20:a7:06:bd:6a:36:65:39:36:
ba:73:1b:c3:14:3e:27:5e:f0:de:33:34:1e:f4:23:c5:a2:ba:
31:4f:84:e2:2d:56:d9:94:ab:b5:cb:93:47:df:d3:20:9d:67:
74:c5:b0:16:db:f9:de:44:1c:20:31:45:a7:f7:72:ac:71:5e:
e5:b3:46:84:1f:89:57:51:ce:07:dd:b5:21:71:f1:cd:b6:d6:
71:cb:85:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:48:47 2026 by rpki-client