Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
File: AFetCa6aGpgBInWFGqvmnk4VovQ.mft (raw, json)
Hash identifier: vTf0yBV22GTTZcVRhA2rp6EAu4AaHQ0XKy6SwFB0j3E=
Subject key identifier: BF:75:D5:AD:4F:5F:37:4F:EC:AC:13:5C:54:50:AB:BF:68:C5:DD:70
Authority key identifier: 00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4
Certificate issuer: /CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4
Certificate serial: 019F189EE6795734874C6A0A4B9A4BD349B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
Manifest number: 1270
Signing time: Tue 30 Jun 2026 13:01:34 +0000
Manifest this update: Tue 30 Jun 2026 13:01:34 +0000
Manifest next update: Wed 01 Jul 2026 13:01:34 +0000
Files and hashes: 1: AFetCa6aGpgBInWFGqvmnk4VovQ.crl (hash: /3rakzbHCuNuGCt9g0Oh7R6eahsKA5eI5AmiTNvsiXM=)
2: YF-tWCFsSuAIoswUePA1e2Wc2vc.roa (hash: pEIfFvCDAADSX4Ka/xFTpfoKfdGNNPSk4G6XnaiqnGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:e6:79:57:34:87:4c:6a:0a:4b:9a:4b:d3:49:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4
Validity
Not Before: Jun 30 13:01:34 2026 GMT
Not After : Jul 1 13:01:34 2026 GMT
Subject: CN=bf75d5ad4f5f374fecac135c5450abbf68c5dd70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:96:f2:a6:f0:8a:de:59:4c:e8:e2:73:e0:eb:
9b:aa:a0:ab:91:dc:17:51:d5:99:00:c5:99:b4:64:
0f:b7:cc:40:e1:6c:ad:f3:a8:56:79:9c:e6:74:d7:
29:71:35:18:98:61:ee:75:93:33:72:42:29:a4:19:
ee:d1:6a:6f:6e:9b:c6:5b:6e:5b:06:45:86:fe:a0:
ed:11:8e:6f:6a:99:b0:65:cb:58:ad:e5:c1:a7:60:
0b:01:47:c9:a2:0b:37:46:b6:a6:69:4f:1f:fc:e2:
1c:47:1f:11:a6:bf:dd:e4:e3:af:e6:c6:6b:5b:b7:
3c:cc:99:97:31:6a:6d:52:f3:93:99:83:0f:41:a0:
1d:15:1b:7a:31:ea:7d:50:72:44:d9:37:32:65:e3:
ea:34:2a:44:34:b0:b0:0c:e7:3b:8a:fb:2b:4c:ff:
d8:fe:ce:c4:99:e5:69:6b:bc:18:8d:85:af:66:90:
5a:0c:8c:60:c3:d1:ec:dc:84:6a:1c:46:4f:b9:26:
11:c4:0a:8a:da:31:85:f6:06:af:a1:c1:32:c4:75:
34:3e:7a:3d:b5:3e:a7:89:6d:31:52:5e:fb:dc:be:
08:39:d3:36:7e:ba:dc:32:41:53:92:02:02:e6:94:
9f:8d:7c:4e:f8:6b:f4:e4:19:e4:ab:b8:08:94:88:
9b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:75:D5:AD:4F:5F:37:4F:EC:AC:13:5C:54:50:AB:BF:68:C5:DD:70
X509v3 Authority Key Identifier:
keyid:00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:88:a4:0d:a9:a5:66:f8:98:bf:fc:d3:88:2f:04:13:7a:8d:
f1:c7:13:81:55:d7:85:eb:e8:58:d8:57:24:69:f4:7b:91:a4:
6c:5d:b0:ab:55:d4:4e:56:93:a5:16:ca:cd:07:ea:72:d3:ff:
e3:48:7b:76:69:48:0a:13:7d:73:d2:20:27:ea:d2:5d:a0:5a:
f7:95:2c:98:d0:e4:ae:ea:5c:5b:74:c4:6c:5d:a5:6a:c0:32:
7f:69:e4:63:cd:c5:3f:dc:b1:2b:6e:df:95:53:c1:f7:40:51:
87:ea:cf:1a:46:29:d3:80:c1:23:5f:b2:8d:4a:8a:af:67:cc:
0a:17:ac:8d:7c:0a:f7:2e:dc:54:b5:0a:7d:69:c3:54:be:79:
89:61:7f:ef:2c:80:38:22:43:91:0b:de:14:db:25:76:20:50:
ad:3a:bf:03:e0:3a:35:b8:45:7d:16:15:e7:ac:e4:64:86:fb:
f4:7e:02:24:ba:18:57:90:48:8f:d5:dd:68:74:09:bc:92:64:
21:c2:87:f6:47:51:2b:a5:4a:d2:87:a2:fa:6e:ec:6b:23:cb:
e1:31:87:4c:0b:47:05:72:4a:13:8d:39:5a:00:1e:4d:39:f7:
a3:79:ae:d3:eb:14:c0:2d:ea:58:73:8c:06:3d:27:57:10:8b:
50:e9:75:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YnuZ5VzSHTGoKS5pL00mzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNTdhZDA5YWU5YTFhOTgwMTIyNzU4NTFhYWJlNjllNGUx
NWEyZjQwHhcNMjYwNjMwMTMwMTM0WhcNMjYwNzAxMTMwMTM0WjAzMTEwLwYDVQQD
EyhiZjc1ZDVhZDRmNWYzNzRmZWNhYzEzNWM1NDUwYWJiZjY4YzVkZDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJbypvCK3llM6OJz4OubqqCrkdwX
UdWZAMWZtGQPt8xA4Wyt86hWeZzmdNcpcTUYmGHudZMzckIppBnu0WpvbpvGW25b
BkWG/qDtEY5vapmwZctYreXBp2ALAUfJogs3RramaU8f/OIcRx8Rpr/d5OOv5sZr
W7c8zJmXMWptUvOTmYMPQaAdFRt6Mep9UHJE2TcyZePqNCpENLCwDOc7ivsrTP/Y
/s7EmeVpa7wYjYWvZpBaDIxgw9Hs3IRqHEZPuSYRxAqK2jGF9gavocEyxHU0Pno9
tT6niW0xUl773L4IOdM2frrcMkFTkgIC5pSfjXxO+Gv05Bnkq7gIlIib8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL911a1PXzdP7KwTXFRQq79oxd1wMB8GA1UdIwQY
MBaAFABXrQmumhqYASJ1hRqr5p5OFaL0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUZldENhNmFHcGdCSW5XRkdxdm1uazRWb3ZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy80YzMyYjktZjc3NS00ODY4LTkyM2Qt
ZGNhMzhkNTlhMTU4LzEvQUZldENhNmFHcGdCSW5XRkdxdm1uazRWb3ZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy80YzMyYjktZjc3NS00ODY4LTkyM2QtZGNhMzhkNTlhMTU4
LzEvQUZldENhNmFHcGdCSW5XRkdxdm1uazRWb3ZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYikDaml
ZviYv/zTiC8EE3qN8ccTgVXXhevoWNhXJGn0e5GkbF2wq1XUTlaTpRbKzQfqctP/
40h7dmlIChN9c9IgJ+rSXaBa95UsmNDkrupcW3TEbF2lasAyf2nkY83FP9yxK27f
lVPB90BRh+rPGkYp04DBI1+yjUqKr2fMChesjXwK9y7cVLUKfWnDVL55iWF/7yyA
OCJDkQveFNsldiBQrTq/A+A6NbhFfRYV56zkZIb79H4CJLoYV5BIj9XdaHQJvJJk
IcKH9kdRK6VK0oei+m7sayPL4TGHTAtHBXJKE405WgAeTTn3o3mu0+sUwC3qWHOM
Bj0nVxCLUOl1HQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:13:55 2026 by rpki-client