Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json)
Hash identifier: EFAjHJZrckPIocn/80dJFFLxekMP4pJ32dqFom9k9J4=
Subject key identifier: F7:97:E3:BE:14:98:F2:98:F1:13:B5:B9:5A:46:18:B0:01:97:74:7F
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 019F18D6A816CBEF7C5A5098846C305AC26C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
Manifest number: 198A
Signing time: Tue 30 Jun 2026 14:02:28 +0000
Manifest this update: Tue 30 Jun 2026 14:02:28 +0000
Manifest next update: Wed 01 Jul 2026 14:02:28 +0000
Files and hashes: 1: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: T1NErjYjDxFZOAdUm7Yzl64ba3b5hrPMHKAwFrhRoyk=)
2: s_Oj6JBKTNB4x3fb0XdQ9zvwP1o.roa (hash: 0jQdDlhdIZaz2WGN97YHIXqbtv/kRGloASKQBe2397Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:a8:16:cb:ef:7c:5a:50:98:84:6c:30:5a:c2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: Jun 30 14:02:28 2026 GMT
Not After : Jul 1 14:02:28 2026 GMT
Subject: CN=f797e3be1498f298f113b5b95a4618b00197747f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:27:91:d5:80:19:69:ae:82:d9:e6:95:47:cf:
ac:d6:7d:fd:25:f3:7c:73:1b:32:fa:25:64:34:eb:
de:da:11:9d:9f:1f:8b:93:4a:9f:b6:2a:6c:16:7a:
cf:1f:a6:76:a5:a0:5e:cc:02:5b:8e:23:8d:b4:ba:
7e:f4:78:b8:13:aa:ff:b9:ea:e9:5e:44:43:56:df:
56:23:90:47:55:7c:45:82:8e:b8:14:04:ec:77:8a:
dd:73:f0:e3:8b:82:d8:86:be:c4:a5:9b:32:e0:8a:
28:d2:5d:e7:b5:8d:06:f2:f6:5c:3a:43:37:18:93:
0c:10:a8:09:63:c3:a8:7e:0a:bf:3d:6d:eb:7f:c8:
bd:81:21:a6:06:d2:48:49:f0:18:ae:86:7f:55:f8:
d7:ef:85:e1:5e:c5:cf:24:9e:75:0a:6c:4d:46:39:
4e:76:90:e0:45:7b:8d:21:af:bc:b4:45:ef:f9:a7:
24:be:e4:23:4a:c3:f2:67:6e:ee:96:4a:53:12:0c:
78:f0:fe:db:8e:57:70:8d:17:a4:9c:fe:79:2d:9a:
b1:13:e4:6f:ea:82:b6:27:55:24:a5:db:ec:ba:57:
b3:48:31:e5:a0:2c:42:e8:5c:ef:9c:d6:f6:66:57:
ac:82:bf:67:84:48:14:6b:4e:21:a3:16:53:cd:de:
bc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:97:E3:BE:14:98:F2:98:F1:13:B5:B9:5A:46:18:B0:01:97:74:7F
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:a7:15:45:a7:ec:74:ee:f3:1d:66:ce:0b:a0:fb:9f:a4:e7:
88:7d:85:d3:49:f2:60:b1:55:ec:00:21:1a:af:4a:0c:cd:9e:
2f:b4:96:dc:3e:a1:bc:39:fa:1f:28:67:b6:98:40:04:fc:6d:
ef:59:ed:4f:9f:07:47:29:6c:38:40:dd:4b:5e:1a:53:9d:b6:
ed:6d:df:8d:b2:0b:ae:96:63:6e:b5:ff:4a:b5:75:f3:4d:67:
fb:10:d2:0c:23:0d:7c:11:e8:09:73:2f:37:79:89:63:35:96:
bf:e5:c5:9a:fc:b9:da:1e:59:82:e8:bf:20:8e:80:12:e9:4d:
89:6a:e0:cc:b4:20:85:db:28:45:82:a3:b5:38:69:2d:d6:54:
8b:79:6f:a9:31:47:1b:32:a6:15:e5:aa:39:fe:5e:38:7a:3e:
78:a5:87:9b:80:55:0d:93:e3:00:14:f2:1d:f3:7b:da:83:50:
e2:75:90:5f:fc:d7:ac:2d:2b:cf:83:ee:b4:d5:7f:0e:41:f0:
41:a2:90:ef:9d:76:e7:03:b9:40:bb:1b:2d:18:9c:8c:da:e3:
84:c2:b9:16:2c:13:fc:e7:c6:61:04:6c:0c:fb:8c:9c:6e:3f:
27:03:da:b0:50:a7:15:ec:2a:ad:6d:79:ed:82:00:c8:56:0c:
c7:05:5f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:40:47 2026 by rpki-client