Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: t1MYitK+P+7OMTXf7QHnVV/Wtaac584CpwALdjG7p18=
Subject key identifier: 5A:01:BC:69:A0:5F:A2:DB:B2:60:06:F3:E1:BE:38:88:FA:05:C5:AE
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 019EE70D9B270245491198891F8C60AF6D36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 197A
Signing time: Sat 20 Jun 2026 22:01:28 +0000
Manifest this update: Sat 20 Jun 2026 22:01:28 +0000
Manifest next update: Sun 21 Jun 2026 22:01:28 +0000
Files and hashes: 1: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: uR3ZfNOm6N0bLB18YnmiTfnA118jOvZnJ7foTj8Y/qM=)
2: bKFR-ExETl9kc_NczqQy1RxK9rs.roa (hash: plcIB/DfvBpq4QLItxVjsjUSKb2BA3Zq8rL1ma4T6FY=)
3: pRSgM7v51dj4_nnKyTIe5vKbqck.roa (hash: zoPAj53DpixsBYDFs95Rz1APyotRYxKBCaNS8cQmVuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 21:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e7:0d:9b:27:02:45:49:11:98:89:1f:8c:60:af:6d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Jun 20 22:01:28 2026 GMT
Not After : Jun 21 22:01:28 2026 GMT
Subject: CN=5a01bc69a05fa2dbb26006f3e1be3888fa05c5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:83:a3:c4:2b:47:1d:07:ed:cd:41:83:39:
9a:f5:38:ad:eb:d7:2b:c3:82:42:82:82:80:4f:3b:
63:de:44:20:c8:87:e1:2c:32:67:40:1d:60:fb:6e:
f0:83:db:92:cf:63:d2:fc:1d:49:c6:f2:fd:b1:ac:
0e:b7:7d:2e:c7:89:df:4a:69:76:84:ff:89:14:80:
47:69:89:e2:49:9d:10:dc:48:40:1a:c5:68:6d:69:
9e:c6:3c:67:00:1d:d6:27:c0:c1:4a:6a:e2:d1:48:
16:5c:32:a9:d2:67:60:cc:e8:1c:9f:61:8e:8a:21:
63:46:b8:77:51:05:7d:75:9e:ff:53:dd:0c:37:ba:
f1:26:eb:ce:c4:9f:30:2a:3d:75:f8:a8:71:86:26:
5a:d3:68:68:46:c0:21:9c:61:b7:00:09:3e:48:07:
29:d9:d8:31:dd:3b:99:bd:64:be:2b:ef:04:12:ee:
4c:04:6c:d7:1e:f6:10:ee:1f:fd:18:04:fc:54:91:
99:5e:da:45:5b:ee:b0:9e:53:34:35:e1:5f:53:c9:
ef:cd:6c:8a:96:2d:c0:3f:0f:bb:95:3e:2f:38:12:
26:a5:b5:9d:6c:9f:ef:2a:58:4a:ce:59:d8:fa:e7:
c4:9d:83:f3:c8:d9:d1:bc:3c:58:e1:39:15:d5:84:
d4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:01:BC:69:A0:5F:A2:DB:B2:60:06:F3:E1:BE:38:88:FA:05:C5:AE
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e0:97:45:49:d4:91:c3:e4:27:3f:4e:08:6e:3a:8a:6d:0c:
40:56:63:95:10:7f:47:6b:e4:31:1f:96:41:5e:12:c5:13:92:
bb:e6:97:c6:a8:fe:e2:6a:de:29:1a:72:23:10:53:ac:15:86:
56:8a:e5:3c:cf:1b:65:d7:c8:cd:8b:4a:d3:32:83:71:b9:7c:
97:04:8e:89:e5:70:d3:bb:8a:47:72:29:9c:e3:ed:60:69:9e:
25:94:63:6a:1c:ba:bc:1a:83:ce:0a:0d:b1:d0:ee:f4:8c:6d:
1e:ef:66:3d:d3:6b:10:b3:7b:3f:a0:ce:4f:fd:0d:1d:4a:23:
ba:ef:eb:6a:41:1f:f5:fa:79:c2:cf:44:ab:39:0d:81:8c:a8:
05:d4:88:62:ef:15:31:2f:6f:72:d8:80:23:57:6d:1f:72:b6:
7c:f2:7e:51:80:25:df:d9:cf:b3:56:fb:7e:d0:38:2f:a8:1e:
94:52:48:48:3f:f1:3a:8a:20:5f:03:39:54:40:41:3f:ec:75:
9f:f7:db:4c:1d:48:1d:f3:63:d3:86:37:6b:b6:08:79:fc:db:
3e:b4:2e:fc:a8:48:51:18:ef:7c:d5:c7:1c:83:91:3d:2c:41:
43:7d:cb:b3:0b:a7:43:df:78:fc:17:52:d2:e6:d4:ef:a8:1f:
01:0b:3f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 06:06:18 2026 by rpki-client