Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json)
Hash identifier: db0H0YQW5gw60msNwGT5hENkpOJAcywnl2ncdFIbvX8=
Subject key identifier: EA:26:9E:10:DC:67:C9:09:1A:D8:40:06:74:F6:B7:04:69:28:68:57
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 019EB6FBC12A43D7981D0367A72EFB750ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
Manifest number: 195A
Signing time: Thu 11 Jun 2026 14:00:12 +0000
Manifest this update: Thu 11 Jun 2026 14:00:12 +0000
Manifest next update: Fri 12 Jun 2026 14:00:12 +0000
Files and hashes: 1: 9M-CJkVBZVuqIwi3Sawh0isCz1k.roa (hash: aFU0pADsAbTvFke0dF4U47/0s76HwBtoQCpl6QnSuNI=)
2: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: gkdKeVdc1HQn6yKOYlteZFlbQcmBdjFO5OHPbCfWNZk=)
3: KbY29WtKZkz8Fbjj7QvLlg811Iw.roa (hash: vGh5FY7zuISKMd7QAir+eppKFgiFx2llO5uFQh7FV0A=)
4: Yczj7zwVDs2cX_wNQ-ssqLpurf0.roa (hash: lpodXqk6t7MJFjfZg1Uow8LLK/4R3ylcdMkmlTgRneo=)
5: hkJYoKxZ5NaqYkSY0GG7dfC0J6M.roa (hash: M6l2Qx3MyNr2ADezdHbYqYOeyWWrHzzKzTBcWubDLyY=)
6: iN3PbeV3-UffGNWyXfh7JHJfK74.roa (hash: JtoeR6EU9pVtvyEClltI2vcG5Q/h7OJRN/rUzf7IfP8=)
7: qydppjeYfUzDVxdV73Ghn9vaAYk.roa (hash: F/o5ke8f18yC9oKEjHkU0hNCPxAS0/yMbN5QTK0st0g=)
8: sH1teYqG2FqEXd7RfMCaBcOnmaw.roa (hash: suxWcXpZV2IMJ73fGzjwM37LJ58quwhaki1YE7N0sRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fb:c1:2a:43:d7:98:1d:03:67:a7:2e:fb:75:0a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Jun 11 14:00:12 2026 GMT
Not After : Jun 12 14:00:12 2026 GMT
Subject: CN=ea269e10dc67c9091ad8400674f6b70469286857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c4:1c:3c:ef:ac:df:44:ff:1e:14:4a:77:4a:
a4:ac:74:92:b2:54:38:e6:4d:d6:f5:af:b5:cb:b5:
94:23:03:e5:c8:64:6f:bc:36:19:f6:37:53:34:55:
fe:48:b9:66:2a:2f:0c:00:e8:bf:63:83:7f:e4:d4:
b2:d0:c6:c2:f2:cd:9d:83:b4:4c:b6:51:c0:98:76:
c6:4c:0b:77:b4:4a:c3:2c:2d:b8:2e:6c:bc:62:8a:
fa:5d:fa:ae:78:f5:b7:59:ad:5e:1c:bb:8a:c1:c0:
96:68:24:cf:ae:c5:12:9a:8c:00:49:c5:41:52:a8:
ee:34:d2:6a:b5:c7:03:78:75:87:49:78:2e:c9:42:
07:c7:5e:33:f0:0d:de:94:f4:c7:cc:51:12:fb:71:
95:50:e5:4c:76:55:47:f4:47:8d:2c:ce:09:98:e4:
06:6f:b6:10:c0:80:3a:31:d3:d4:aa:b8:23:a1:eb:
b9:b5:ec:4b:7f:58:6e:37:90:73:07:76:b0:08:eb:
f5:6d:4a:8a:56:10:36:82:0e:d3:64:2d:3b:1d:75:
d3:a2:09:26:d8:6e:7e:bc:fd:ed:c6:f6:da:95:95:
86:bd:da:00:f1:68:40:45:24:65:98:c5:16:ae:21:
a1:93:2f:fb:d5:bb:03:e4:40:8b:53:d0:b9:a7:55:
ac:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:26:9E:10:DC:67:C9:09:1A:D8:40:06:74:F6:B7:04:69:28:68:57
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a5:b8:d9:8b:f9:f2:bb:04:5c:1c:64:fa:04:c5:d1:e4:b1:
5d:68:94:98:62:96:c9:4c:7b:55:62:2d:cf:f6:72:5b:74:17:
46:32:78:aa:96:66:f8:dc:8e:b4:6d:9c:47:d6:3e:90:93:1e:
ac:a2:a8:1c:f9:3a:1f:03:43:69:92:ed:8c:c9:3f:32:64:63:
af:ea:8b:14:50:a2:eb:09:b9:4a:90:ec:07:3a:96:19:65:5a:
77:b8:fc:5c:00:75:49:df:e2:f0:8e:71:cf:6b:75:87:f8:4e:
e1:5e:48:f1:84:02:14:52:08:78:6f:3e:e7:73:7b:43:7c:70:
5d:82:46:25:28:f6:ac:f2:cc:04:cc:90:61:a0:86:7a:73:1c:
5e:05:0d:3e:de:0b:b9:24:f8:1e:0b:13:c1:3a:09:7c:b9:20:
04:87:4c:27:ad:0f:69:f0:2d:c9:16:9a:e1:a7:c1:e8:4b:00:
6d:21:e5:17:1a:dc:16:1b:b3:8b:c7:b7:ce:35:4b:9a:4e:25:
60:65:f3:32:bc:43:e5:8e:01:aa:49:6b:25:cb:fc:99:27:ab:
dc:16:45:ae:8e:1b:d9:1d:74:c6:dd:8b:3d:14:93:10:b5:d3:
31:c7:8f:6b:33:99:4f:bd:0b:00:49:c2:75:f0:d3:78:87:90:
4f:4a:87:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:51:42 2026 by rpki-client