Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: HGfXgIlLk6FgEZYxUU/a5tbY5mXXQ0TtBsxg8wmfbzU=
Subject key identifier: D2:47:A5:14:66:1A:6F:76:E1:1A:EA:7F:6E:32:63:CC:F0:45:86:EB
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019EC3002E4C5331C535E3C51C7373CF8E2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 22:00:29 +0000
Manifest this update: Sat 13 Jun 2026 22:00:29 +0000
Manifest next update: Sun 14 Jun 2026 22:00:29 +0000
Files and hashes: 1: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: /kEnLT7TPBssY0L1ZpAy/Ai2V85pKpL6C6PRJfAJwIE=)
2: dwxKXYq5F0w7--7RCrBYQ23c5iY.roa (hash: K/Q42vj3khDPlWwooNw7J1cFttbzhnLd2GjnJonXf1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:2e:4c:53:31:c5:35:e3:c5:1c:73:73:cf:8e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Jun 13 22:00:29 2026 GMT
Not After : Jun 14 22:00:29 2026 GMT
Subject: CN=d247a514661a6f76e11aea7f6e3263ccf04586eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b5:70:2b:a5:90:eb:f6:1c:40:b2:85:13:9a:
5c:5e:3d:eb:01:4d:0c:44:0f:03:e1:16:85:16:b0:
42:b5:b8:8f:c4:53:31:b0:a2:7e:01:45:38:a3:35:
20:45:69:68:0b:c5:52:3a:ca:aa:6d:65:69:a1:dd:
85:63:59:46:4b:f5:9b:8c:c4:00:07:ae:58:c4:f9:
20:a0:8b:72:22:ba:9b:3c:62:76:04:69:ad:c4:e0:
5d:a1:70:6d:65:0e:30:b1:c3:67:9b:e0:8b:ac:c9:
17:c3:ce:96:9b:21:5b:21:db:7a:b7:52:d0:bd:6d:
38:47:26:47:04:5f:9d:09:3b:5c:44:49:de:c2:9f:
f0:2e:ad:dd:d8:69:1e:0e:ed:d3:19:ab:b2:41:f0:
49:6b:5a:9f:54:6e:3e:06:39:2a:9d:a9:e9:b8:a2:
39:d4:99:3a:fb:37:03:c3:09:ed:95:cb:46:ca:c9:
c3:0d:3a:5d:9d:75:05:a7:70:81:c4:58:e2:80:7a:
99:02:6b:28:87:77:eb:c9:e5:8e:c3:50:88:76:66:
39:53:70:6a:3d:d5:66:e4:b7:90:3e:a9:b2:98:6e:
a7:63:c8:12:29:25:6b:cf:da:66:4d:a6:f9:8c:09:
d6:e8:5b:06:99:cc:d8:96:a0:73:cb:18:b3:4e:e1:
7f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:47:A5:14:66:1A:6F:76:E1:1A:EA:7F:6E:32:63:CC:F0:45:86:EB
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:87:58:e7:f0:be:1e:97:59:4f:ee:db:d7:16:87:0d:42:c8:
b5:8c:30:43:c7:df:f6:c5:f7:1b:6a:af:7a:62:5f:08:67:86:
52:52:72:0f:50:95:72:2d:32:6c:15:73:a3:91:22:17:1c:ec:
06:95:db:45:1d:3c:f2:f4:2d:8d:51:af:a7:02:c1:35:5a:e5:
01:1b:be:c0:d4:6f:c9:ac:4a:2a:3c:c0:92:10:e9:4c:c3:93:
02:da:e3:5c:9c:05:ba:a0:01:74:95:30:77:c1:cd:7c:9a:b2:
ed:3a:7e:14:39:51:fe:3c:c9:37:a5:c0:0d:5b:4c:dd:9f:e1:
f6:33:e1:47:90:13:a7:a4:38:d1:58:68:2e:58:0c:11:82:21:
ef:05:4c:07:59:12:75:ad:78:14:7c:d1:8c:72:66:36:63:03:
66:64:3b:8a:9a:c7:43:cf:14:1e:65:c5:17:99:7b:24:f7:2a:
7c:d3:6b:30:69:62:9d:95:36:4c:31:8b:84:d3:47:e4:6b:e9:
ca:6f:ff:5d:d8:a2:57:0b:25:a4:28:79:91:c0:e7:48:a0:4d:
35:47:13:57:c4:83:0d:4a:4d:e8:fa:58:94:3e:d2:59:a9:36:
74:e5:85:cb:6e:bc:76:b2:71:90:77:33:b1:29:0d:62:37:11:
1d:96:6d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:03:03 2026 by rpki-client