Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: kDthpk/Q8tO743x8+AeHl50HbP8thbWGpX1PcZgV554=
Subject key identifier: EC:A4:20:30:23:E0:25:97:D6:76:DE:2F:4C:C3:76:C3:BF:40:B0:BC
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 019EBE476FDC0C2FC37A007282F0AD5BE06D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 1225
Signing time: Sat 13 Jun 2026 00:00:13 +0000
Manifest this update: Sat 13 Jun 2026 00:00:13 +0000
Manifest next update: Sun 14 Jun 2026 00:00:13 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: m/UptNCNhJNuLDXkMUITeVBMAfkFDL4CnfoEE9XpHtQ=)
2: NSYoMgdv_GgQV27_GIPye5U9jPQ.roa (hash: 4AlK45WxtVu086BCXSG5HnwL06CQHoIesX5EAX9HMxU=)
3: RQ8JIGxsT6j17dfeEPWw2-YRi2c.roa (hash: qbacCBbHQjk4PtD2GWcsUuyb/kcc9ZQ6pfK2TjjwNeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:6f:dc:0c:2f:c3:7a:00:72:82:f0:ad:5b:e0:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Jun 13 00:00:13 2026 GMT
Not After : Jun 14 00:00:13 2026 GMT
Subject: CN=eca4203023e02597d676de2f4cc376c3bf40b0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:90:a4:ac:5f:47:e0:19:a5:b7:03:d7:27:58:
31:8a:1c:e6:03:fe:15:c9:45:df:a9:4b:71:f7:e4:
36:bb:94:7c:08:6b:d0:ae:37:55:90:89:35:d9:3a:
3e:b8:55:98:e0:13:6c:39:12:56:d7:1c:60:cd:e2:
71:36:7f:ee:aa:08:de:4f:b4:31:84:e5:76:fd:87:
de:03:33:b6:d6:c2:98:aa:ac:c2:43:86:51:68:e9:
90:ea:bd:97:53:4b:34:8b:cd:1c:71:fe:0a:c1:7b:
1e:8e:6d:a6:1f:96:24:03:0b:86:dc:3f:17:cc:8b:
7b:69:14:f3:0c:d6:02:ba:a2:60:5d:28:cf:db:5b:
4a:ef:cb:6c:12:94:56:1b:57:95:10:bb:d3:b5:c4:
5f:6c:d0:62:91:f8:c5:de:97:3b:bc:e4:37:d8:e7:
68:bf:dd:fc:d4:e6:c5:27:76:1b:9e:19:41:b8:d1:
ae:9d:44:64:0f:18:2d:ba:6b:f5:76:37:67:3d:ee:
94:b7:34:9b:67:65:d8:92:da:26:a0:26:dd:c0:5d:
c5:79:57:a9:cd:35:5b:99:17:d7:7e:4b:38:46:b1:
e1:a9:a5:ed:21:10:10:7c:b7:dd:2d:39:56:75:49:
79:d7:6f:84:a6:d7:a9:2a:aa:2e:24:02:87:79:de:
6e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A4:20:30:23:E0:25:97:D6:76:DE:2F:4C:C3:76:C3:BF:40:B0:BC
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:2b:30:58:13:87:70:ba:e8:77:09:3e:b7:41:d7:7f:f4:c9:
c7:6f:a6:1b:a2:bb:11:27:3f:16:3a:f3:73:d7:a1:ab:b3:c1:
39:7d:0d:bd:0f:24:7c:81:ff:b3:87:fe:45:62:23:63:56:67:
9c:96:23:d8:1b:c9:d4:56:9b:48:d9:01:f5:f8:38:55:95:5a:
6a:f6:1a:38:c7:11:04:b3:ed:73:13:1f:49:4a:a0:5e:b0:ec:
92:b1:39:3b:12:84:a0:d2:a6:e2:9b:20:a3:a7:f4:a7:88:86:
bc:9f:b9:b1:78:9e:dd:7e:71:65:59:fb:80:1f:eb:ff:54:6d:
7c:ad:cb:5e:b3:37:c6:96:fe:6b:45:8e:b3:8c:a9:7d:64:8f:
dc:ab:6e:66:d3:74:35:de:89:5a:ec:ec:9e:7b:7d:34:90:69:
6d:8f:c4:46:51:df:cd:f1:83:ed:44:52:9e:c9:01:11:85:30:
4f:37:ff:13:19:3c:3f:37:ca:60:97:92:86:9f:f3:98:2c:b7:
6d:2f:31:d4:9a:ed:33:69:ad:d3:09:b5:6e:37:46:75:15:bb:
0f:91:be:08:f9:60:3a:fa:71:69:02:37:97:9a:30:7e:c2:b1:
fe:21:e9:a1:fe:0c:d2:4f:d4:b0:7a:25:75:7d:04:03:f1:76:
5d:fb:32:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+R2/cDC/DegBygvCtW+BtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYTU2YzQyZWQ3Y2I5NjNmMjg1NTAzY2VjMDYwNmQ2MGQw
YWIzODcwHhcNMjYwNjEzMDAwMDEzWhcNMjYwNjE0MDAwMDEzWjAzMTEwLwYDVQQD
EyhlY2E0MjAzMDIzZTAyNTk3ZDY3NmRlMmY0Y2MzNzZjM2JmNDBiMGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZCkrF9H4BmltwPXJ1gxihzmA/4V
yUXfqUtx9+Q2u5R8CGvQrjdVkIk12To+uFWY4BNsORJW1xxgzeJxNn/uqgjeT7Qx
hOV2/YfeAzO21sKYqqzCQ4ZRaOmQ6r2XU0s0i80ccf4KwXsejm2mH5YkAwuG3D8X
zIt7aRTzDNYCuqJgXSjP21tK78tsEpRWG1eVELvTtcRfbNBikfjF3pc7vOQ32Odo
v9381ObFJ3YbnhlBuNGunURkDxgtumv1djdnPe6UtzSbZ2XYktomoCbdwF3FeVep
zTVbmRfXfks4RrHhqaXtIRAQfLfdLTlWdUl512+EptepKqouJAKHed5uCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOykIDAj4CWX1nbeL0zDdsO/QLC8MB8GA1UdIwQY
MBaAFAGlbELtfLlj8oVQPOwGBtYNCrOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMt
ZWQwN2Y1Y2FkNmQ3LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMtZWQwN2Y1Y2FkNmQ3
LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfSswWBOH
cLrodwk+t0HXf/TJx2+mG6K7ESc/Fjrzc9ehq7PBOX0NvQ8kfIH/s4f+RWIjY1Zn
nJYj2BvJ1FabSNkB9fg4VZVaavYaOMcRBLPtcxMfSUqgXrDskrE5OxKEoNKm4psg
o6f0p4iGvJ+5sXie3X5xZVn7gB/r/1RtfK3LXrM3xpb+a0WOs4ypfWSP3KtuZtN0
Nd6JWuzsnnt9NJBpbY/ERlHfzfGD7URSnskBEYUwTzf/Exk8PzfKYJeShp/zmCy3
bS8x1JrtM2mt0wm1bjdGdRW7D5G+CPlgOvpxaQI3l5owfsKx/iHpof4M0k/UsHol
dX0EA/F2XfsysA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:22:45 2026 by rpki-client