Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
File: aVu9VCkSpm_uajQSijqM9wl9xps.mft (raw, json)
Hash identifier: hPLRvyRMhaJ9ShZvIDpkOo534S+iHH8X4cS+6PpedjQ=
Subject key identifier: C6:FA:4D:D2:B8:E1:52:02:4F:54:68:C3:E7:42:69:1C:32:6C:60:81
Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Certificate serial: 019EB87CEFE2D690424BE4461588727FA755
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
Manifest number: 0971
Signing time: Thu 11 Jun 2026 21:00:56 +0000
Manifest this update: Thu 11 Jun 2026 21:00:56 +0000
Manifest next update: Fri 12 Jun 2026 21:00:56 +0000
Files and hashes: 1: aVu9VCkSpm_uajQSijqM9wl9xps.crl (hash: wdN4aEx2l66VxqwIC6vbE/z7WfBBEaDwYTCSAJ6R3Ak=)
2: kD6KbG2HjbabIdgR62fkFbl77WA.roa (hash: zAnnRMEkzTArkloWuwnMCm7SOof7tWB+G0YPKyy3r8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:ef:e2:d6:90:42:4b:e4:46:15:88:72:7f:a7:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Validity
Not Before: Jun 11 21:00:56 2026 GMT
Not After : Jun 12 21:00:56 2026 GMT
Subject: CN=c6fa4dd2b8e152024f5468c3e742691c326c6081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:67:98:f2:52:9f:50:da:b7:5a:4a:3e:37:b7:
57:a4:b0:93:5a:db:6f:b3:3f:39:9e:17:9c:66:ea:
f6:fe:18:18:d6:bf:b2:d7:2c:e2:65:d0:8b:74:46:
1c:04:e0:97:d1:56:6b:34:fc:2f:db:bc:a2:c9:34:
b6:66:2d:76:4d:c2:a5:fa:a2:14:51:07:7b:40:54:
9b:9d:af:68:7e:01:41:c4:70:45:d5:8e:d0:a2:b4:
09:8a:8e:17:36:07:ea:17:77:67:ce:b0:64:7b:b8:
7f:22:41:b2:37:d8:df:0a:1b:dd:08:2a:3a:f7:3e:
34:cb:6a:bb:e2:f9:ec:45:ff:c5:80:71:81:ab:cc:
ee:ea:f5:7f:dd:82:9d:87:24:ff:f6:e8:fe:e9:fc:
1d:2a:b9:9e:d3:4c:d7:f9:8f:8b:6f:32:0f:7a:36:
e0:43:01:7a:26:b7:36:88:39:31:07:fe:b4:ad:9b:
4e:30:2d:76:46:68:26:04:34:74:ba:72:03:7d:ee:
28:d5:4b:2c:af:38:c4:bf:74:28:54:3c:f7:ee:da:
89:4d:b4:6d:5b:9e:02:03:45:bf:b8:a7:c5:eb:ea:
a8:0c:83:26:91:ec:2c:08:e1:3a:1b:ca:3f:20:a2:
73:8c:b6:f8:c4:76:62:14:a6:f4:e0:d3:d9:91:2c:
97:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:FA:4D:D2:B8:E1:52:02:4F:54:68:C3:E7:42:69:1C:32:6C:60:81
X509v3 Authority Key Identifier:
keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:0a:fc:bd:11:9c:25:b0:48:df:33:14:fb:ce:6e:b3:c6:61:
05:16:31:d8:0c:89:f2:7a:af:11:d0:88:8d:61:fa:15:03:63:
cb:db:3a:f7:99:5a:61:87:4b:91:64:db:e9:17:8a:9d:a3:40:
98:2b:7e:9a:e0:12:db:3c:5c:e9:57:26:67:7c:2f:b3:0a:23:
29:21:92:21:d6:58:47:51:be:5c:e8:bc:2e:79:0d:68:ac:6a:
8e:b6:35:80:ef:3e:02:de:1e:60:ec:07:3d:2a:99:c2:74:dc:
55:8a:06:e4:c3:3e:da:bb:9a:d5:cd:85:c2:d0:d4:a4:92:e7:
6c:c3:a2:77:41:78:a5:1d:c1:71:d7:7b:c6:de:f0:2f:f5:c8:
71:d6:4a:7f:32:68:b9:22:3d:7b:e4:a8:22:c6:0b:34:0b:d5:
cd:ab:cb:5e:2f:83:01:df:ce:ca:78:c0:86:ec:46:3f:e8:fb:
41:74:fc:8b:da:98:a7:15:80:50:65:eb:72:2b:39:e8:f2:2d:
fc:d8:69:a7:29:7a:31:1b:ee:7c:d6:7a:54:e3:b8:d9:67:26:
67:95:11:cd:d7:68:81:a3:1d:3e:be:fb:a1:9a:18:f5:0c:0a:
ac:25:16:76:b4:37:c2:ae:37:b6:74:d6:8f:d6:5c:43:e2:45:
14:e4:ec:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:54:02 2026 by rpki-client