Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: fKOCUWJ7AHBSQZcRtTOKO30X4u8691fkF4WzORrJX5U=
Subject key identifier: D8:B3:88:16:6C:4C:7A:19:EB:1D:DE:0D:04:9F:51:08:44:68:D6:48
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 019D9C9AAF60C89616359B1516C451608EB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 02AB
Signing time: Fri 17 Apr 2026 18:01:16 +0000
Manifest this update: Fri 17 Apr 2026 18:01:16 +0000
Manifest next update: Sat 18 Apr 2026 18:01:16 +0000
Files and hashes: 1: XCvwouQb8EHjnYaba0fCxCrBwa0.roa (hash: 7OCxz9+g4uYWDzH37RsGVsHV2ZDZWkC8HmqPtc1bvkQ=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: 6wreT829DdRc7q1OoMyIMsX8yEtfF7ylUicrTbZslUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:af:60:c8:96:16:35:9b:15:16:c4:51:60:8e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: Apr 17 18:01:16 2026 GMT
Not After : Apr 18 18:01:16 2026 GMT
Subject: CN=d8b388166c4c7a19eb1dde0d049f51084468d648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:03:c0:b4:b2:16:18:d6:f3:cb:b2:11:29:e3:
63:9a:11:af:72:d9:21:e2:5f:b5:2f:99:9b:3d:44:
5f:95:1e:62:a1:fb:6b:60:8d:93:9f:07:cc:7e:77:
7e:05:2f:61:76:ac:0c:ff:2c:ef:4f:c9:0b:bf:8c:
b0:d5:33:99:85:59:07:40:3e:56:7f:86:7f:81:33:
4f:5a:f4:14:27:c7:b1:f3:c1:98:32:a3:a5:67:4b:
5c:a1:32:c6:61:4e:9b:99:ff:c4:40:7c:e3:68:3c:
0d:b0:64:82:f4:75:74:de:06:39:8e:0a:da:d4:fa:
b4:d3:bd:ca:16:69:ea:8b:b6:03:95:db:cf:bf:46:
c1:3a:de:fd:b5:03:99:28:e4:11:43:a0:ca:ce:b2:
c4:b8:af:26:d3:12:73:bc:1e:7c:0c:2a:78:25:c1:
96:b7:82:bd:82:ca:b8:cb:c8:92:cc:3d:49:41:a8:
c9:2b:b5:3c:e1:73:f0:9f:61:77:c0:c6:c0:81:f1:
4f:db:f4:a9:02:35:62:ce:46:21:c5:50:c3:00:9c:
b4:56:8a:b7:08:6e:81:3f:6e:ef:ea:b6:db:9f:b3:
ab:9b:68:53:b1:55:e4:5f:84:f0:02:c7:81:2b:a5:
a4:2d:52:3c:1f:b4:c5:fb:0e:21:88:43:53:68:6e:
4d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B3:88:16:6C:4C:7A:19:EB:1D:DE:0D:04:9F:51:08:44:68:D6:48
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:19:cf:f7:c6:e8:18:bb:3b:31:4d:4e:02:3d:2b:f5:16:eb:
89:7c:8f:ec:13:16:65:6d:8c:e7:e3:9f:0f:45:e0:14:3f:c2:
39:4e:28:f3:da:27:68:0c:06:d3:a6:bc:0f:db:15:17:92:15:
ec:cc:96:d8:ce:f5:8e:80:3e:42:1f:45:b9:95:11:ba:c2:42:
00:d0:4f:7a:9f:76:19:6e:18:5c:e8:7d:2b:98:f1:82:d7:45:
4a:cb:98:36:64:8c:84:af:6f:38:27:69:3f:c4:ee:0a:54:00:
80:9e:87:7c:bc:ce:ac:c6:c6:12:d0:f4:52:88:a9:87:92:5a:
86:21:1e:b4:4a:70:30:6a:3f:76:91:ea:bf:3f:46:a6:76:7b:
0f:bb:8c:4f:98:de:53:7c:9b:86:93:e9:42:22:00:06:91:26:
7c:7b:d0:0f:2e:aa:1a:73:90:26:2d:c5:ed:dd:75:5e:81:a9:
ac:16:81:37:d7:93:12:98:b9:33:f4:dd:38:ea:50:46:c0:5a:
e1:f9:ff:ee:85:ef:8f:c2:3f:50:2e:10:5f:7d:ca:f9:f5:3e:
42:4b:d2:de:c2:8d:c8:ff:27:cb:7c:9f:7d:73:d8:3f:83:7c:
c4:d5:9c:0f:ef:68:41:a1:57:2f:19:03:09:fd:44:27:aa:61:
65:cf:50:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:47:18 2026 by rpki-client