Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: 1Lb+CU+SzW2etvJ+fezZjKpWBURU8U8SPIPGQdIQAqw=
Subject key identifier: 5E:3E:2A:EC:DA:E9:8B:40:02:A9:A6:25:AA:85:94:24:07:CD:60:4E
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 019CAF10E0E31A1F2AA8E93EA97A183E99AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 0230
Signing time: Mon 02 Mar 2026 15:00:44 +0000
Manifest this update: Mon 02 Mar 2026 15:00:44 +0000
Manifest next update: Tue 03 Mar 2026 15:00:44 +0000
Files and hashes: 1: XCvwouQb8EHjnYaba0fCxCrBwa0.roa (hash: 7OCxz9+g4uYWDzH37RsGVsHV2ZDZWkC8HmqPtc1bvkQ=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: MvUiLEVODE6Dqaz1GIHTXsO9YBsnSX3+aom1NWY0bvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:e0:e3:1a:1f:2a:a8:e9:3e:a9:7a:18:3e:99:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: Mar 2 15:00:44 2026 GMT
Not After : Mar 3 15:00:44 2026 GMT
Subject: CN=5e3e2aecdae98b4002a9a625aa85942407cd604e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:45:95:dd:00:53:d6:77:b8:9f:40:22:3f:f8:
d0:fb:c4:77:53:3d:fe:48:ec:37:70:26:be:6b:be:
7d:50:39:e9:8c:57:40:d9:fa:55:74:13:1f:0a:31:
39:17:34:04:95:d6:2a:b3:fa:ab:24:ac:d0:a4:2e:
78:5e:63:08:03:85:a2:6a:ef:ec:da:ce:2b:bc:73:
04:17:72:bd:06:3b:1e:b8:9e:f8:2f:17:e4:5d:e0:
f9:8b:6f:75:3b:8f:2e:00:d1:72:43:a6:64:bc:7f:
84:f8:1a:36:bf:eb:79:c6:78:e5:ac:61:52:ed:1a:
5c:5e:fd:29:0b:cb:19:32:a1:06:ed:7f:31:97:b8:
64:33:49:8d:fb:24:12:e7:df:67:e3:3d:70:47:66:
28:cf:cc:bc:e3:21:53:16:f9:4e:b8:74:62:f8:e2:
3f:4b:e6:0c:83:e5:4c:76:bd:af:25:eb:6e:7b:ff:
e0:1a:b6:fc:2b:01:20:53:a3:c0:31:c8:7a:0e:34:
77:96:a9:86:2e:ef:af:c5:5f:82:2b:56:04:92:47:
89:44:a3:a9:a6:89:b9:f5:3d:99:a3:e6:3e:57:8a:
44:46:a5:e3:e8:13:22:df:24:62:af:eb:9c:07:c5:
a2:2d:6c:e5:c0:97:16:6d:f8:ae:a5:fe:3c:c0:2a:
08:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:3E:2A:EC:DA:E9:8B:40:02:A9:A6:25:AA:85:94:24:07:CD:60:4E
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:86:b5:70:90:86:0b:81:55:16:0d:7c:15:73:cc:ea:8a:5e:
5a:a1:fc:20:d7:08:bc:a6:12:b8:09:92:df:0e:d3:f2:c8:1e:
07:8c:54:5a:0f:55:9f:f4:98:40:ca:4b:86:e6:64:e8:e2:08:
17:38:3d:03:47:30:00:e1:45:db:3f:e4:25:3d:c3:9b:96:2c:
99:4a:16:a9:77:d3:9f:8e:75:da:5d:7b:31:f3:ab:66:40:4d:
10:13:14:3d:8a:35:ac:d4:30:6f:0b:4c:bc:f9:42:e8:0c:76:
a1:f5:4c:a1:39:95:58:85:85:09:d6:2e:f8:89:5d:f5:12:80:
2c:b1:5b:fd:ac:c1:3f:61:fd:a9:48:9c:6e:57:80:1c:f2:32:
8f:14:a9:76:a6:76:99:a2:39:1d:3d:c6:b5:f0:78:26:32:7d:
ef:9d:fe:4d:13:8c:1f:34:75:a2:e7:7d:89:24:ba:a0:10:a3:
fc:a4:1d:68:ad:8f:ef:88:4c:d5:c9:88:36:37:d5:e9:b2:76:
f1:81:5c:2a:b3:e1:df:53:04:06:c0:37:7e:5e:34:aa:df:5f:
0d:b9:f0:e3:fc:de:fc:2b:2f:97:97:5c:52:5f:5f:20:f0:55:
a4:d1:78:dc:cd:72:ef:4f:a6:5b:3d:7a:b2:2d:b9:30:1d:e8:
19:fa:2e:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvEODjGh8qqOk+qXoYPpmvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGFlMTc1ZmJlNjNiMGU5MzA0NjkwOTdjOTQ5MmQ0MmVk
NzkyNDkwHhcNMjYwMzAyMTUwMDQ0WhcNMjYwMzAzMTUwMDQ0WjAzMTEwLwYDVQQD
Eyg1ZTNlMmFlY2RhZTk4YjQwMDJhOWE2MjVhYTg1OTQyNDA3Y2Q2MDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0WV3QBT1ne4n0AiP/jQ+8R3Uz3+
SOw3cCa+a759UDnpjFdA2fpVdBMfCjE5FzQEldYqs/qrJKzQpC54XmMIA4Wiau/s
2s4rvHMEF3K9BjseuJ74LxfkXeD5i291O48uANFyQ6ZkvH+E+Bo2v+t5xnjlrGFS
7RpcXv0pC8sZMqEG7X8xl7hkM0mN+yQS599n4z1wR2Yoz8y84yFTFvlOuHRi+OI/
S+YMg+VMdr2vJetue//gGrb8KwEgU6PAMch6DjR3lqmGLu+vxV+CK1YEkkeJRKOp
pom59T2Zo+Y+V4pERqXj6BMi3yRir+ucB8WiLWzlwJcWbfiupf48wCoIVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4+Kuza6YtAAqmmJaqFlCQHzWBOMB8GA1UdIwQY
MBaAFGkK4XX75jsOkwRpCXyUktQu15JJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgt
OGEwODZlYTk0YmU1LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgtOGEwODZlYTk0YmU1
LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaYa1cJCG
C4FVFg18FXPM6opeWqH8INcIvKYSuAmS3w7T8sgeB4xUWg9Vn/SYQMpLhuZk6OII
Fzg9A0cwAOFF2z/kJT3Dm5YsmUoWqXfTn4512l17MfOrZkBNEBMUPYo1rNQwbwtM
vPlC6Ax2ofVMoTmVWIWFCdYu+Ild9RKALLFb/azBP2H9qUicbleAHPIyjxSpdqZ2
maI5HT3GtfB4JjJ9753+TROMHzR1oud9iSS6oBCj/KQdaK2P74hM1cmINjfV6bJ2
8YFcKrPh31MEBsA3fl40qt9fDbnw4/ze/Csvl5dcUl9fIPBVpNF43M1y70+mWz16
si25MB3oGfouwQ==
-----END CERTIFICATE-----
Generated at Tue Mar 3 00:42:34 2026 by rpki-client