Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: amOZCoLPB18Vo9vEvWJNgybrduYnsc032PbG0SoTSBo=
Subject key identifier: 6A:A2:D6:81:39:FA:5E:BA:73:1C:9C:D4:54:66:75:46:63:06:CA:3C
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 019EEDEBAD3D85CAD931E22A7DA2D1729A2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 08DC
Signing time: Mon 22 Jun 2026 06:01:45 +0000
Manifest this update: Mon 22 Jun 2026 06:01:45 +0000
Manifest next update: Tue 23 Jun 2026 06:01:45 +0000
Files and hashes: 1: TxCuEKO4UFBws6tMJ89yfNDgvSA.roa (hash: ye0le9kc8j89F6B3VF5KOiTRqH3PrXwEdQjOQuRJ7Js=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: sn4UhGDTuxS++0Y5ARtUaUIHGntiSOtEnqn6TGvWCx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ed:eb:ad:3d:85:ca:d9:31:e2:2a:7d:a2:d1:72:9a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Jun 22 06:01:45 2026 GMT
Not After : Jun 23 06:01:45 2026 GMT
Subject: CN=6aa2d68139fa5eba731c9cd4546675466306ca3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:3e:3d:b4:e4:ed:2d:94:2d:d2:3e:ef:63:3f:
64:e3:99:cc:72:ef:b9:98:40:79:18:d0:2f:2c:c8:
7c:09:39:73:f7:92:83:b8:d4:5f:24:06:10:ea:82:
fe:08:08:c9:04:a5:d4:57:f6:f7:55:57:da:74:59:
16:84:f9:88:3f:ef:08:64:72:1d:e3:9f:fa:ed:6c:
ea:44:b8:c7:6a:45:2d:c1:bc:f7:45:38:f6:20:03:
90:c5:a5:85:b5:8c:f7:c4:bf:2d:08:ef:72:52:be:
c9:e4:99:d5:31:fa:9a:cc:e4:4f:23:cf:1b:be:3f:
c9:9d:70:aa:bb:f9:99:12:ce:c1:0b:75:89:7d:1b:
12:3a:22:e7:02:d0:d0:69:fb:0e:ba:c6:9d:8c:ae:
17:1b:fa:63:32:b0:e3:8a:59:c8:b5:cb:0f:d8:36:
43:16:88:54:39:6e:26:17:1b:80:3b:d6:23:9d:28:
a0:0d:86:22:e8:49:3f:4c:5f:14:9c:ab:69:fd:50:
ea:35:78:9b:92:a4:6e:cc:7a:f9:54:68:c5:11:4b:
0e:68:c4:d2:09:93:1d:4d:e3:06:65:fe:fb:80:d4:
44:73:94:ae:59:24:65:4b:17:d2:64:e1:fb:79:f0:
fa:ab:a4:9d:94:12:81:4c:b5:a9:34:23:51:d0:dd:
b7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A2:D6:81:39:FA:5E:BA:73:1C:9C:D4:54:66:75:46:63:06:CA:3C
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:10:89:57:ac:64:04:94:05:fc:37:28:28:0b:9c:a0:bb:e5:
71:f5:ab:14:20:1a:b2:da:f6:eb:fd:e6:74:4f:16:20:c9:9a:
f3:51:6d:43:80:e8:e0:3e:6b:3d:3e:09:b2:69:ba:f0:89:53:
2c:bd:5c:12:da:fb:5a:d7:c1:51:64:4f:3b:e5:65:04:76:9e:
6c:0a:33:9e:e2:94:18:47:0d:96:73:ba:f4:34:77:5a:36:cb:
0c:57:5d:bc:a6:0d:3c:d5:1f:26:5e:56:79:79:a0:f7:69:bf:
59:a9:18:91:2a:87:2d:ee:9a:e3:b3:73:a4:48:f7:80:1d:54:
c2:d9:98:62:39:26:a9:7f:b9:11:92:70:a5:d1:72:d9:25:79:
5d:a9:ad:11:20:dc:48:fa:d4:8f:44:79:c9:c5:32:ae:01:14:
62:4f:9d:6e:d7:be:ac:d0:9b:ed:60:83:c6:7c:c4:69:de:ef:
ec:25:d5:25:71:80:c7:17:2a:31:39:5e:9e:f9:ec:fd:9d:5c:
93:c6:f1:e7:49:56:79:69:2c:15:75:74:6d:5c:36:43:f2:88:
7a:ba:04:93:57:5f:50:05:df:0e:24:ba:a3:02:77:70:ee:c5:
87:fa:fd:9c:56:28:90:ff:b8:a1:91:61:80:b4:a8:97:37:fa:
fb:89:aa:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 11:05:14 2026 by rpki-client