Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: 8OszgamvJ5cwHWFbXMFcSdCo2iKBpSdYCEruNgpKRZA=
Subject key identifier: 8D:7E:27:EA:F7:4B:81:01:16:A0:B4:A9:5B:E1:00:03:5C:C6:F9:81
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 019EC25BFCE413735251BDF6820804676536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 06C7
Signing time: Sat 13 Jun 2026 19:01:08 +0000
Manifest this update: Sat 13 Jun 2026 19:01:08 +0000
Manifest next update: Sun 14 Jun 2026 19:01:08 +0000
Files and hashes: 1: BcT1YlHw7D1Dk2z_LIFmn3rThJY.roa (hash: Eovd3kGKSBHE8soZjKT4R8yDeoxnP/onLhr4NTs+e6o=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: hwQ9yk737DC2OzZIJsGFW4/RQ+3DDFEWBc62XFAv7Mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:fc:e4:13:73:52:51:bd:f6:82:08:04:67:65:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Jun 13 19:01:08 2026 GMT
Not After : Jun 14 19:01:08 2026 GMT
Subject: CN=8d7e27eaf74b810116a0b4a95be100035cc6f981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:da:bf:e6:91:80:bb:2f:c9:5c:e8:14:cc:59:
fa:c8:fd:2e:3f:d9:bc:e1:01:8d:b0:c0:81:7b:fd:
08:24:6a:90:98:4b:44:33:6d:0a:b2:de:55:cc:30:
3b:ba:b8:9b:9a:e8:85:70:99:4d:46:89:10:18:68:
e8:13:14:ec:e8:6c:e4:e1:fb:a9:40:3c:d8:d7:5d:
18:ce:8e:ab:90:65:de:df:27:6c:02:2e:85:55:f1:
e8:d1:81:f2:ee:ec:60:01:38:e6:0c:19:0c:6c:5b:
79:3b:2d:67:9a:f5:91:09:80:ef:ec:01:0c:4f:4f:
fa:a9:b1:93:18:bc:49:26:bd:c0:12:78:86:66:54:
71:89:18:64:45:25:32:19:4e:31:58:8d:1c:d1:6a:
15:fc:87:d5:1b:89:4b:16:e0:10:ae:ee:fb:d0:35:
f4:8a:c3:0e:6f:d8:c6:a1:dd:bb:28:0e:68:68:a9:
f5:9c:45:4e:7f:09:09:68:f9:d2:6f:54:f6:ed:6e:
0c:8c:23:bf:e9:43:b6:7a:24:cb:06:52:0c:2d:3e:
d3:3d:65:38:b4:a8:d2:da:3e:52:9e:18:69:fd:65:
5a:33:5f:11:a0:4a:9d:d1:f1:89:6d:9f:f7:aa:13:
5b:08:96:27:20:e4:9c:56:ef:f0:00:a3:0e:39:61:
a5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7E:27:EA:F7:4B:81:01:16:A0:B4:A9:5B:E1:00:03:5C:C6:F9:81
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:14:17:bf:ea:a8:b6:d6:52:20:2d:a5:13:53:55:5c:9b:f7:
08:f7:56:4e:27:45:78:08:a3:7e:17:d7:5f:6c:7f:8e:0b:82:
a7:f6:13:30:f5:b8:72:44:b2:92:68:65:79:f3:bb:65:5a:5d:
d2:5c:e1:e2:68:1e:66:8b:d8:7a:0c:60:96:d9:f6:bc:23:7f:
5e:4b:d2:c9:fb:2f:01:86:c1:db:2a:c1:03:d6:4a:66:a5:53:
ab:0a:81:4d:c5:bd:38:76:73:02:cc:52:5f:b6:ae:41:c3:c6:
e8:92:a3:51:49:55:ce:77:79:56:fe:75:db:77:54:6e:b4:c9:
6c:58:ef:d4:93:5d:a7:38:8b:c7:3c:cf:c2:c8:14:8d:70:63:
9e:43:d2:9d:6c:11:18:5c:36:ec:5a:41:2c:ac:5d:21:79:05:
9b:ef:c4:9b:f7:cd:db:c4:f9:b7:aa:41:47:5b:76:a1:55:aa:
5f:bf:57:5b:3b:67:02:ca:7d:c4:d6:16:ba:e7:6f:04:b6:68:
df:19:19:ea:73:52:0c:61:51:08:11:81:75:5d:a5:00:52:97:
58:cd:57:ee:55:2e:29:32:17:6b:57:91:41:93:72:b3:8d:51:
95:4c:e5:25:80:31:16:02:1e:df:cd:b0:e4:89:4c:47:43:58:
ac:b3:6c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:21:01 2026 by rpki-client