Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
File: 1AjPCbarAFupM7KnpKbSfqa7cso.mft (raw, json)
Hash identifier: uhDsGE1AardNGWPeZvR8BKzGOG5dKMrq0ZXGqqAf++k=
Subject key identifier: 75:39:69:E4:A2:D9:51:F8:77:84:FE:2A:CC:B0:49:C6:09:A0:04:75
Authority key identifier: D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
Certificate issuer: /CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Certificate serial: 019F190CD030C4608B3ED5F5E7698905F494
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
Manifest number: 06A1
Signing time: Tue 30 Jun 2026 15:01:37 +0000
Manifest this update: Tue 30 Jun 2026 15:01:37 +0000
Manifest next update: Wed 01 Jul 2026 15:01:37 +0000
Files and hashes: 1: 1AjPCbarAFupM7KnpKbSfqa7cso.crl (hash: xsm1++t0V6xoHCdC01L2lnlKrapKxUViHrTLd1uXmt4=)
2: tK1_7kYoh8HPJEz9gt6VcaD4nUE.roa (hash: S18bPoeACVyQQ3iZwMpVkRKWBkpl4d3ZgQ7DJM72ZW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:d0:30:c4:60:8b:3e:d5:f5:e7:69:89:05:f4:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Validity
Not Before: Jun 30 15:01:37 2026 GMT
Not After : Jul 1 15:01:37 2026 GMT
Subject: CN=753969e4a2d951f87784fe2accb049c609a00475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3c:22:04:bf:ad:b7:63:27:54:c4:c4:7a:50:
bb:c3:ff:27:a9:0c:da:00:1f:5f:37:ae:a7:c8:a5:
2d:23:c3:0e:c6:e6:fe:df:08:37:bf:64:88:44:be:
6c:87:bd:1c:91:3e:f4:e7:ae:f6:5d:8a:35:92:f5:
62:34:c2:85:e0:49:60:f9:64:ef:8e:29:79:72:00:
79:01:b3:63:e0:5f:04:9b:9b:6a:00:da:e9:7b:cd:
4b:9e:50:56:78:60:78:ef:a3:8c:21:99:fb:f4:f2:
ec:97:ff:94:7a:0b:f4:c6:0e:70:b2:f1:79:11:47:
e6:88:eb:e6:e5:5d:4b:18:49:8e:20:6c:14:19:03:
e0:a0:6c:be:14:4a:92:8d:e1:aa:4f:f1:82:dd:25:
c5:48:08:ca:ac:83:81:4a:bc:e0:7c:ed:7d:a7:5c:
09:f5:9b:d0:52:20:3b:8a:b2:91:81:1e:dc:6a:93:
ce:81:7d:b6:38:fc:a1:b5:c0:7a:d8:dc:13:f7:f5:
6a:b9:36:5b:6f:38:af:ec:dd:93:cf:0e:af:73:5d:
0a:63:c6:13:7a:30:ac:c5:0f:fd:c0:33:74:16:74:
40:33:1f:d1:04:31:a4:e1:8f:9a:5c:af:2e:11:78:
e5:53:a6:6b:9f:8d:57:18:0c:1a:65:a1:33:eb:4d:
d9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:39:69:E4:A2:D9:51:F8:77:84:FE:2A:CC:B0:49:C6:09:A0:04:75
X509v3 Authority Key Identifier:
keyid:D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:bd:e2:51:2a:f9:c1:79:4f:91:c9:e3:8b:ab:1d:29:f9:ac:
33:5e:c5:30:cf:d2:c0:63:1d:7d:21:22:88:87:4b:d7:ab:99:
fd:26:3f:27:9d:9c:0e:2a:b3:dc:a4:cf:5e:1d:1d:0b:86:66:
1b:9a:cc:5b:86:6d:7f:43:f0:f1:c7:95:a4:43:61:fa:f0:77:
c1:60:89:be:28:f1:8a:aa:14:2d:b8:10:76:35:8e:de:ba:44:
78:ac:c2:76:b2:39:94:02:2a:f8:5f:4d:3d:ae:ca:25:5e:7f:
55:74:9b:c8:a0:68:f8:84:67:5c:4b:26:87:15:74:8b:70:ef:
7f:73:35:35:7c:5c:f3:29:e1:6f:a6:2b:2d:8b:64:e5:44:bf:
18:39:29:ab:1b:ad:02:98:b9:84:1e:0f:e5:fb:5a:0d:32:6b:
49:9a:0d:32:21:a8:9a:c3:71:5c:76:26:7f:f5:72:b2:19:4f:
06:0e:cc:8e:14:f3:7d:a6:84:62:7b:5e:66:6d:01:92:9a:fa:
7b:4e:5c:c0:a0:53:c9:60:7a:65:6c:7e:10:01:32:7d:ec:56:
30:41:19:3c:e6:4b:03:5a:c5:67:72:df:5c:9e:7c:c0:fd:78:
a7:15:bb:91:a4:b2:bc:e8:79:f5:3f:8e:ad:f9:93:47:52:3e:
47:f2:53:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:11:32 2026 by rpki-client