Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: XDOo/Me7K1sNxt3EyQ86E26ER9+Ua7EknN0qPw/wmJk=
Subject key identifier: 75:6D:38:A9:AF:6D:86:24:D5:93:20:E3:51:57:C6:B3:20:CF:DB:AD
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 019F190CEDE666156B3D9FA1BD2DB5D57B9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0C2D
Signing time: Tue 30 Jun 2026 15:01:45 +0000
Manifest this update: Tue 30 Jun 2026 15:01:45 +0000
Manifest next update: Wed 01 Jul 2026 15:01:45 +0000
Files and hashes: 1: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: rN7lBeEx0ifbSE8oXEhwN596oPJ9f6qFtS3skLNiaTU=)
2: MaRtt04jowFFk86_uuutN8hcKss.roa (hash: fZU76DAwqdxnrxuVOqFEOQy5RWDLvAlUDG+K/0ngLTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:ed:e6:66:15:6b:3d:9f:a1:bd:2d:b5:d5:7b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Jun 30 15:01:45 2026 GMT
Not After : Jul 1 15:01:45 2026 GMT
Subject: CN=756d38a9af6d8624d59320e35157c6b320cfdbad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:1a:14:21:87:2b:22:ae:07:99:57:79:60:9a:
e3:36:d0:4a:6d:11:9f:3c:7b:0c:0b:98:ef:fe:eb:
22:63:f6:76:e7:4c:f0:04:7a:36:2f:f6:12:0d:0b:
c9:dc:f3:47:68:f3:fd:d8:77:a4:a2:e2:41:54:ce:
a0:c3:ed:4f:74:b3:fd:96:52:e1:b4:2e:68:13:f1:
3f:17:6b:7f:53:0c:7a:b2:c5:2a:51:40:94:1b:47:
8a:84:57:e1:a8:e4:70:bc:cd:1c:ee:95:54:04:01:
4d:d3:78:bc:d2:17:aa:d3:f6:e6:22:a9:15:c5:de:
3c:79:96:44:b4:3a:76:46:57:f9:18:ed:dd:01:6f:
37:69:56:10:c1:39:29:7c:a4:b2:dd:17:c6:b1:2c:
83:e4:55:7d:fe:36:16:1c:97:5e:6b:85:f9:43:c9:
52:b9:e9:c7:51:fc:95:a9:48:92:a3:df:58:cc:e3:
eb:9d:f2:a4:5d:0e:e6:c5:35:75:21:91:0d:6c:36:
01:33:6d:b5:ec:d9:05:d2:03:f2:a5:0e:af:b6:55:
91:8e:fd:e7:8c:66:94:c8:7c:a3:24:08:66:3b:49:
e7:60:24:d8:4c:ab:8b:f2:13:28:e8:87:7e:ae:b9:
30:20:99:e9:fe:41:83:db:19:31:fe:5e:03:2b:58:
0a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6D:38:A9:AF:6D:86:24:D5:93:20:E3:51:57:C6:B3:20:CF:DB:AD
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:77:63:76:5b:38:9d:47:86:c3:0c:a8:c3:db:8f:12:78:87:
01:e3:f8:6d:6b:23:50:14:87:51:9b:e0:03:4c:d3:10:15:46:
cb:ce:d6:14:fd:6c:5f:ac:9d:04:e2:32:50:6c:e4:b1:cd:ac:
a0:1e:df:14:1e:79:60:1b:34:62:7a:b9:54:0b:61:73:f2:06:
8c:91:47:e8:bc:e3:24:62:5c:4b:37:bc:96:35:a8:2d:b2:a8:
b0:2e:ea:a9:1e:ca:d5:cd:94:38:b6:45:31:86:d7:0b:85:ce:
73:39:57:97:ad:ea:5c:f8:fd:cf:8a:ea:db:ba:02:49:bd:58:
0c:fc:16:a3:aa:6e:24:2c:9f:64:f9:6e:2a:32:f8:08:2f:c2:
d6:85:b8:6b:66:76:73:30:13:b8:22:a5:f0:a1:d0:da:15:f1:
d4:63:0e:89:9e:da:f2:d5:43:19:e3:4e:f2:f7:dc:a9:ee:42:
eb:0a:27:58:61:18:c6:38:ce:00:11:fe:07:ba:6c:b9:1c:55:
ea:d0:41:f0:92:27:54:52:5a:c1:2f:48:6b:0d:56:2f:fb:89:
ed:fa:cd:96:42:fa:6f:96:b0:31:56:08:d7:18:b8:a1:d4:e6:
97:f6:55:4e:53:2e:83:90:14:22:9a:29:d7:40:90:c9:8f:d5:
29:71:f3:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZDO3mZhVrPZ+hvS211XufMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYTg1ZWNlMmM1MzlmNTg1MGZhNzAxZjJkNDVhMjEyN2Rj
ODY3NTUwHhcNMjYwNjMwMTUwMTQ1WhcNMjYwNzAxMTUwMTQ1WjAzMTEwLwYDVQQD
Eyg3NTZkMzhhOWFmNmQ4NjI0ZDU5MzIwZTM1MTU3YzZiMzIwY2ZkYmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8xoUIYcrIq4HmVd5YJrjNtBKbRGf
PHsMC5jv/usiY/Z250zwBHo2L/YSDQvJ3PNHaPP92HekouJBVM6gw+1PdLP9llLh
tC5oE/E/F2t/Uwx6ssUqUUCUG0eKhFfhqORwvM0c7pVUBAFN03i80heq0/bmIqkV
xd48eZZEtDp2Rlf5GO3dAW83aVYQwTkpfKSy3RfGsSyD5FV9/jYWHJdea4X5Q8lS
uenHUfyVqUiSo99YzOPrnfKkXQ7mxTV1IZENbDYBM2217NkF0gPypQ6vtlWRjv3n
jGaUyHyjJAhmO0nnYCTYTKuL8hMo6Id+rrkwIJnp/kGD2xkx/l4DK1gKlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHVtOKmvbYYk1ZMg41FXxrMgz9utMB8GA1UdIwQY
MBaAFAGoXs4sU59YUPpwHy1FohJ9yGdVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEt
NzUyYTQ1YzMyZGZmLzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEtNzUyYTQ1YzMyZGZm
LzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4Hdjdls4
nUeGwwyow9uPEniHAeP4bWsjUBSHUZvgA0zTEBVGy87WFP1sX6ydBOIyUGzksc2s
oB7fFB55YBs0Ynq5VAthc/IGjJFH6LzjJGJcSze8ljWoLbKosC7qqR7K1c2UOLZF
MYbXC4XOczlXl63qXPj9z4rq27oCSb1YDPwWo6puJCyfZPluKjL4CC/C1oW4a2Z2
czATuCKl8KHQ2hXx1GMOiZ7a8tVDGeNO8vfcqe5C6wonWGEYxjjOABH+B7psuRxV
6tBB8JInVFJawS9Iaw1WL/uJ7frNlkL6b5awMVYI1xi4odTml/ZVTlMug5AUIpop
10CQyY/VKXHzVg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:29:32 2026 by rpki-client