Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: 28MfThbxWTfyvmHyDqLtj7Kvebz8TtsuALeoNSVGzF8=
Subject key identifier: A2:C1:76:D2:5A:D5:4F:0D:E1:A8:DF:7D:E5:17:32:0B:F2:70:D7:6A
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 019EFE70FC3DC10404D41AE60FA325E63691
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 1879
Signing time: Thu 25 Jun 2026 11:01:17 +0000
Manifest this update: Thu 25 Jun 2026 11:01:17 +0000
Manifest next update: Fri 26 Jun 2026 11:01:17 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: pv7GIXvbDT1jC1D06JbTtoysqm4a+qx7XSsm50kVCwQ=)
2: gNhszUNFjUvnmp6uYZywKw0VK4Q.roa (hash: OoYbjhXKEH09k93nIljEgaEwB00MnQM3qMLjic/Ifxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 08:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fe:70:fc:3d:c1:04:04:d4:1a:e6:0f:a3:25:e6:36:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Jun 25 11:01:17 2026 GMT
Not After : Jun 26 11:01:17 2026 GMT
Subject: CN=a2c176d25ad54f0de1a8df7de517320bf270d76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e9:1a:00:88:c2:0a:4e:4d:9c:ae:ec:b8:2f:
74:4c:34:34:a4:0f:03:62:11:1f:9a:17:95:8c:a0:
3f:e5:ac:01:02:05:0d:fc:4b:a8:1d:4e:cc:4d:8b:
9f:35:95:55:64:50:2d:35:df:42:78:f1:d0:df:d5:
7e:d0:fd:20:09:54:71:ea:ca:c8:f1:ea:d1:1b:20:
d1:38:86:77:a4:d1:e6:ca:fe:18:f0:e7:ae:c1:7e:
5f:82:cd:03:90:79:3b:65:4f:99:17:54:2f:a0:6b:
41:4d:97:ed:f5:e5:de:e6:e2:e2:db:3f:69:e5:0e:
df:88:70:09:02:25:41:c1:49:0e:46:76:e9:48:ee:
e0:c0:b7:2a:f4:84:0d:33:c0:af:58:86:0c:5d:f7:
ec:5b:aa:b9:34:99:7b:5b:e0:ca:c3:ba:2d:0c:84:
18:4a:55:61:4b:bd:1c:0f:bd:6f:de:89:b7:63:a8:
dd:fb:0a:b3:15:ef:0d:5f:fa:c4:cd:92:0e:90:7d:
0e:f6:94:0f:e1:71:9b:cd:a9:20:d2:d4:f5:dd:d1:
33:de:1d:f3:34:48:a7:63:1f:5c:ee:b3:c9:db:c4:
a8:6e:f5:e6:ce:58:9a:5d:46:23:a6:d7:52:be:11:
2d:97:0a:a9:a3:7b:80:c9:93:64:9a:7f:09:09:25:
a4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C1:76:D2:5A:D5:4F:0D:E1:A8:DF:7D:E5:17:32:0B:F2:70:D7:6A
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:8f:9c:28:22:68:d6:75:92:99:7e:8f:25:4d:7f:7a:bc:00:
20:c7:3f:57:76:25:f1:96:a7:16:33:12:ee:89:03:d1:b3:d5:
51:d3:51:f0:be:d0:f6:db:e3:4b:2b:94:ef:f5:53:37:f2:6d:
12:44:f2:a6:e2:37:7e:e5:09:11:54:6f:8d:b9:d2:60:77:a7:
9c:43:97:8e:b7:5b:70:94:47:90:29:d0:a7:a8:7d:a7:e2:97:
89:5c:76:e5:e9:59:c7:69:46:15:e8:ac:a1:5e:1c:7d:57:c9:
4d:08:4b:e0:f2:7e:73:04:96:f0:dd:9d:ff:5c:77:25:dd:3a:
75:f7:ee:82:a0:dc:c3:03:29:ab:9a:b8:c6:ab:67:59:af:13:
c1:5c:4d:d7:88:b2:c2:ba:f0:41:ff:08:3f:ea:46:0e:75:2f:
2f:17:f1:81:eb:37:c7:95:17:1b:05:f8:f2:eb:cb:47:16:ae:
72:5a:bb:51:c5:5c:1b:00:10:83:c2:b0:ef:29:90:a3:6d:23:
bc:0d:5d:88:69:60:74:af:0f:c3:08:6f:08:ed:b5:24:0e:12:
15:d8:e9:11:fe:e0:78:5c:74:d8:3e:a5:5f:64:71:fd:21:38:
22:15:a3:2e:d1:1b:60:19:51:af:2a:0e:2a:e0:96:c7:c1:5c:
c9:b6:ae:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 12:42:55 2026 by rpki-client