Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: gxjWeXjHi9IZBW958V+BctKyMdACn4K3A+86AeFmLTA=
Subject key identifier: 0B:50:10:A2:29:C3:17:9F:FF:C9:E8:62:FB:45:EC:6A:D6:E2:ED:9A
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 019F17F9DF1E252F0974706A1540F7541BD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 198A
Signing time: Tue 30 Jun 2026 10:01:19 +0000
Manifest this update: Tue 30 Jun 2026 10:01:19 +0000
Manifest next update: Wed 01 Jul 2026 10:01:19 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: An2FElpd9lRHXKpmCn0D4JnjPGjb1xbh2Chf5i9sxmg=)
2: GSCpplFtfkTN5C3emWdSBHM2s_U.roa (hash: uafjHLArE68enYzHEZipyUcJy+2TVAQsxPWk3VzbutI=)
3: T4PSpNaqkAOQJjuBdAFdx3zKgyY.roa (hash: sU9bxlF1T+hrGzv9LaagfpQyLm85yMt1O7DFm4yEcJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:df:1e:25:2f:09:74:70:6a:15:40:f7:54:1b:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jun 30 10:01:19 2026 GMT
Not After : Jul 1 10:01:19 2026 GMT
Subject: CN=0b5010a229c3179fffc9e862fb45ec6ad6e2ed9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:48:f9:9f:06:df:01:eb:65:62:b2:14:17:3a:
57:c9:e8:04:53:da:69:c3:da:f3:1d:4c:e2:b1:1f:
c5:15:75:32:33:03:a3:14:b3:18:10:e0:60:0c:2d:
36:e2:14:87:c8:80:bc:62:97:71:d5:47:8e:b6:5e:
67:e4:26:12:9d:b3:0d:44:0f:05:f1:2e:25:48:52:
2c:b1:48:84:63:ea:56:e0:1c:49:a4:6e:13:85:b5:
09:00:5b:39:74:9f:17:5a:2d:42:ad:9d:57:02:10:
02:97:a3:41:a0:8b:1e:54:11:d3:d0:7e:d8:46:dd:
db:02:b8:58:86:02:88:ef:e7:39:73:83:93:40:fb:
20:ae:be:bb:e5:d2:98:e7:a4:69:6d:b0:52:dd:9d:
23:6a:74:85:0f:33:5b:b7:a8:1f:df:c1:5b:9e:47:
ca:d9:e2:c7:c8:76:e7:c7:95:aa:6a:c9:2c:0b:3a:
4b:9e:54:a0:79:c2:8d:e8:4a:96:25:b3:24:17:11:
05:ea:85:18:9e:02:78:3a:a7:e0:f4:94:2e:89:8d:
da:cb:8e:9f:5b:bd:88:9f:25:fe:5f:93:93:e8:63:
1c:2b:3b:84:0b:4b:43:5f:81:43:03:59:5c:ed:ef:
01:6d:0b:33:de:fb:62:e0:8c:84:6f:e2:23:fe:09:
f6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:50:10:A2:29:C3:17:9F:FF:C9:E8:62:FB:45:EC:6A:D6:E2:ED:9A
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:67:ce:cf:0c:e2:6d:cd:30:e8:84:93:d4:3b:23:77:41:e9:
3b:e2:c2:e7:cb:9f:fc:07:d5:38:af:61:c2:f5:bf:15:4b:2f:
05:d7:bd:c5:6b:74:22:0b:df:20:8b:ec:75:8b:75:3c:32:b9:
a2:74:e3:60:b0:b5:b4:7f:00:88:f7:ab:e4:78:bd:97:49:00:
45:38:eb:b8:eb:56:d7:c9:49:b8:07:50:40:91:e9:f4:bf:89:
07:31:6a:51:c0:04:af:21:83:b1:01:73:10:b2:6f:64:ef:73:
28:59:53:f9:9f:a3:23:e4:a4:00:b2:f0:3b:19:4f:0a:46:26:
2c:40:08:ae:4c:c1:b5:fc:7a:df:14:e9:3e:c1:43:13:66:2a:
4a:89:38:49:e5:f8:8e:2e:e4:a7:82:7e:cb:82:50:a9:41:97:
d6:97:1a:95:4a:04:7c:23:b5:fc:6f:42:00:b5:fb:b0:ba:03:
db:a5:e2:ab:b1:9c:e3:67:03:8d:68:89:5d:2c:6b:6e:22:c2:
3d:3f:22:4e:32:07:1b:d3:c0:4b:f1:a5:56:4c:a6:1e:33:72:
0a:e9:be:89:af:ab:d9:b9:dc:ed:19:59:d4:93:83:65:bd:40:
83:f0:77:f9:0b:af:91:62:2f:c7:c0:30:5f:bc:13:67:01:b4:
24:5d:94:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+d8eJS8JdHBqFUD3VBvSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzJjMDhmNzRkMmE4NDJhNzFmMjNhYjYxNDk5YjUyNjk0
ZmM3YTUwHhcNMjYwNjMwMTAwMTE5WhcNMjYwNzAxMTAwMTE5WjAzMTEwLwYDVQQD
EygwYjUwMTBhMjI5YzMxNzlmZmZjOWU4NjJmYjQ1ZWM2YWQ2ZTJlZDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Uj5nwbfAetlYrIUFzpXyegEU9pp
w9rzHUzisR/FFXUyMwOjFLMYEOBgDC024hSHyIC8Ypdx1UeOtl5n5CYSnbMNRA8F
8S4lSFIssUiEY+pW4BxJpG4ThbUJAFs5dJ8XWi1CrZ1XAhACl6NBoIseVBHT0H7Y
Rt3bArhYhgKI7+c5c4OTQPsgrr675dKY56RpbbBS3Z0janSFDzNbt6gf38FbnkfK
2eLHyHbnx5WqasksCzpLnlSgecKN6EqWJbMkFxEF6oUYngJ4Oqfg9JQuiY3ay46f
W72InyX+X5OT6GMcKzuEC0tDX4FDA1lc7e8BbQsz3vti4IyEb+Ij/gn2bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAtQEKIpwxef/8noYvtF7GrW4u2aMB8GA1UdIwQY
MBaAFABywI900qhCpx8jq2FJm1JpT8elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYt
NjY3ZDY2NDY5Y2Q5LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYtNjY3ZDY2NDY5Y2Q5
LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIWfOzwzi
bc0w6IST1Dsjd0HpO+LC58uf/AfVOK9hwvW/FUsvBde9xWt0IgvfIIvsdYt1PDK5
onTjYLC1tH8AiPer5Hi9l0kARTjruOtW18lJuAdQQJHp9L+JBzFqUcAEryGDsQFz
ELJvZO9zKFlT+Z+jI+SkALLwOxlPCkYmLEAIrkzBtfx63xTpPsFDE2YqSok4SeX4
ji7kp4J+y4JQqUGX1pcalUoEfCO1/G9CALX7sLoD26Xiq7Gc42cDjWiJXSxrbiLC
PT8iTjIHG9PAS/GlVkymHjNyCum+ia+r2bnc7RlZ1JODZb1Ag/B3+QuvkWIvx8Aw
X7wTZwG0JF2UHQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:20 2026 by rpki-client