Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: 1CMCL8/y/sEHm1d7fFcoAj7olKIybUoQENgeZK6hAUM=
Subject key identifier: 97:1B:72:66:D1:27:7D:73:D8:B3:0A:8C:24:08:5A:8D:31:D5:FA:7C
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 019ED4621F44ED145F3C62F7AF901910844A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1965
Signing time: Wed 17 Jun 2026 07:01:00 +0000
Manifest this update: Wed 17 Jun 2026 07:01:00 +0000
Manifest next update: Thu 18 Jun 2026 07:01:00 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: 9sfWQ5ZlnfrS/cOkVnqvxb0eBI0HmEAUmp41IbT4Jik=)
2: eJ3f1i44Rqh5dEICPulbHl4WkkI.roa (hash: kZed20xL2+OJp4rVcGTuqnAX+7hPge7JicJ6LEk/ItE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 07:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:62:1f:44:ed:14:5f:3c:62:f7:af:90:19:10:84:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Jun 17 07:01:00 2026 GMT
Not After : Jun 18 07:01:00 2026 GMT
Subject: CN=971b7266d1277d73d8b30a8c24085a8d31d5fa7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:40:19:ee:a2:9e:9d:d2:46:1d:22:fc:a6:d5:
bb:cc:0c:01:3e:22:b9:8d:91:64:9e:bb:87:26:92:
75:a9:e0:ad:ad:38:d8:85:b5:fc:cd:fc:bd:29:34:
d0:ac:38:28:e9:1e:51:08:b6:06:60:61:e7:84:a5:
95:f6:89:79:b8:2f:3f:44:bf:8b:d2:bd:14:2f:53:
63:d5:8f:8e:25:dc:4d:cf:33:a8:57:5d:49:89:e7:
0d:36:17:49:1b:ff:e5:77:e4:56:94:c3:b8:77:ba:
43:61:d6:7b:a7:7d:5e:2f:c1:74:ff:5d:2e:9d:db:
56:18:a2:c2:43:98:79:23:df:86:a0:57:a5:4f:7f:
f6:b3:09:28:e0:af:fb:52:51:5e:15:fe:53:78:a9:
65:8c:12:49:32:5b:0a:9b:19:45:33:80:dd:c2:8c:
37:45:a8:ab:9f:42:9c:df:dd:43:c8:8f:d1:ca:92:
2a:b2:d8:49:0c:9e:29:c7:dc:4b:66:c6:4b:e1:5b:
33:54:1b:91:6e:fc:b3:7f:5e:d4:ee:79:f2:03:d2:
3a:ff:94:78:c6:f8:8e:4b:cf:82:af:0e:34:4d:ce:
91:70:87:f5:d4:b2:6f:38:ee:01:b7:8f:ee:c5:a5:
e1:1f:4f:86:fa:e0:4d:c7:9b:0c:41:3f:10:d7:e2:
12:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1B:72:66:D1:27:7D:73:D8:B3:0A:8C:24:08:5A:8D:31:D5:FA:7C
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:be:74:26:c6:88:e0:e0:ee:bd:c5:a9:a2:f7:6b:29:22:a5:
2f:4e:e7:37:4c:a6:e1:f0:60:db:7e:6c:a9:37:3f:f1:19:52:
7d:9a:dd:d8:ad:d3:cd:c7:89:f0:cd:db:be:41:a6:69:a2:7d:
f3:29:0e:61:a9:26:1f:5d:8f:5a:98:ba:4a:f2:12:88:a8:81:
d8:61:e0:eb:ef:51:0c:f2:c3:f7:8b:c8:d7:b2:df:a7:69:d6:
b2:b0:cc:44:0b:3f:cd:cd:c6:58:27:a5:12:ee:62:b0:d8:91:
64:b8:f0:08:e6:da:cf:b1:21:0c:a1:ba:65:05:0b:a4:48:9a:
c1:a4:e8:3c:e1:08:d2:72:de:a1:b7:70:fb:d0:60:f5:16:1d:
bc:b0:d1:e2:6b:97:e6:55:f6:b8:ca:79:f4:ca:d5:61:94:5f:
9b:b7:1f:52:19:18:56:be:4c:b9:54:f2:70:14:37:04:d3:f8:
3d:e3:1a:22:20:26:d1:6f:74:96:49:1b:e8:56:b9:58:35:89:
73:00:5e:9b:b1:cd:54:ce:96:b3:11:d4:42:b5:39:44:53:89:
e8:ea:a3:4f:4b:59:43:76:58:73:33:f5:85:15:36:ce:e0:7e:
63:bd:0d:30:0d:d7:73:ab:b3:4c:19:17:ed:30:21:df:6f:68:
a8:c0:af:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:01:07 2026 by rpki-client