Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: aAdGqw3keN0QpjfTnlaxl95qGXWccS9XHI88JtcBZxg=
Subject key identifier: 8F:91:FD:F2:69:D9:9F:B0:D5:55:D1:0B:2E:9F:63:88:B2:0A:32:B9
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 019EC1B780C067A3C908DDA7B9C9AEECE2F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 0AB6
Signing time: Sat 13 Jun 2026 16:01:29 +0000
Manifest this update: Sat 13 Jun 2026 16:01:29 +0000
Manifest next update: Sun 14 Jun 2026 16:01:29 +0000
Files and hashes: 1: EvlHWqhQzmdjRG2k6tk-9HD_zOg.roa (hash: CaEBziMi2C6rN6WGf7O34W/+WtB1Ogao7r0fRD3u2XA=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: 7M4W3SKmqWmDdcCJg2YBlOGk5ZRRqJcfbjedssM+MsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:80:c0:67:a3:c9:08:dd:a7:b9:c9:ae:ec:e2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Jun 13 16:01:29 2026 GMT
Not After : Jun 14 16:01:29 2026 GMT
Subject: CN=8f91fdf269d99fb0d555d10b2e9f6388b20a32b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ca:6b:64:ef:80:73:01:71:e5:81:1e:06:2f:
d3:18:ae:29:f9:76:c3:1c:03:c2:da:0a:56:c4:6f:
08:1e:13:eb:a2:3d:32:0d:1d:c5:05:48:a7:3c:4e:
50:41:42:7d:ae:fe:7f:fa:51:cd:70:a4:ee:33:fd:
6b:a3:6c:95:76:92:ae:a7:cf:d8:32:21:33:4a:ad:
49:dc:43:6c:8c:d6:be:ed:28:f5:7f:3f:44:e2:9e:
9d:9f:67:88:dd:b6:c9:d6:17:f4:ec:72:e5:b3:69:
1c:13:8e:70:b7:ec:88:36:94:38:0a:fa:a5:e4:0a:
08:84:7c:b6:7b:b2:cc:14:0a:30:10:f7:f0:e9:e8:
d2:d7:af:a1:50:94:1e:4b:65:1a:12:57:0c:22:59:
af:38:1f:26:ee:2c:b4:39:52:62:e6:e6:c8:14:4a:
71:c5:0e:14:dc:9b:28:22:9c:ac:72:3b:04:f6:44:
26:ea:82:48:17:13:a7:2f:6b:9d:ac:9b:ca:ab:7a:
cf:46:7d:96:a5:8a:61:a0:73:f4:f0:b4:7e:7a:f5:
e6:fa:1b:e0:e6:8c:32:e1:af:4a:1a:d9:b1:e5:bf:
80:02:f9:9c:af:ae:d1:b8:20:98:b7:09:77:d4:11:
ab:72:9d:9f:11:cc:58:bb:5c:d8:28:d9:4b:6f:1a:
76:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:91:FD:F2:69:D9:9F:B0:D5:55:D1:0B:2E:9F:63:88:B2:0A:32:B9
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:f6:6a:6c:b9:a3:7b:fd:05:de:92:ad:fc:e8:14:e1:38:66:
07:00:04:c0:1e:01:12:d3:1c:86:30:cf:ad:2d:08:8b:8c:bd:
35:d3:e9:1c:44:4f:cb:ab:33:da:d4:e3:30:87:96:3a:6c:24:
95:2c:fa:b0:3a:75:df:5c:68:26:cf:c7:d4:af:6f:c5:7c:24:
40:54:53:f5:a5:35:0e:40:52:90:92:7e:6c:6b:71:a8:ed:09:
f7:8d:8f:f4:d1:66:35:5d:de:6f:0e:3b:40:09:92:b5:98:9c:
2f:86:e1:93:e0:50:56:81:ad:ea:aa:28:4a:da:66:c2:35:dd:
6d:de:b0:07:46:9a:d9:5b:6b:93:3b:b0:25:6a:87:cd:7a:74:
98:0f:66:3d:7a:44:49:85:01:bc:4c:01:a7:2e:cf:b1:77:c7:
9f:5e:7a:ad:4b:d7:a5:51:14:14:dc:09:2d:92:2f:5a:70:1a:
f5:78:24:24:da:1d:34:9a:fb:fc:1e:47:90:bd:46:69:76:46:
68:13:92:eb:de:e3:fb:20:ee:16:aa:c1:cc:ba:6c:25:9b:46:
2a:23:70:d6:69:98:79:c9:3b:ce:7e:52:3b:05:a6:88:c2:36:
cf:ba:43:c6:be:d9:97:46:c5:02:c8:ef:ed:be:ba:44:e4:13:
2b:ef:de:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:06:45 2026 by rpki-client