Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json)
Hash identifier: Ezyj4AQTlCtaic1Y/xQw+NG5+q2fnqKJnsXm69dn2AY=
Subject key identifier: 20:25:ED:96:AB:0F:49:AA:CE:7C:EA:71:C7:1B:1F:96:25:5F:FE:8C
Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249
Certificate serial: 019EC41385CCD575EB8FFFA0909328A2CE81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
Manifest number: 0344
Signing time: Sun 14 Jun 2026 03:01:14 +0000
Manifest this update: Sun 14 Jun 2026 03:01:14 +0000
Manifest next update: Mon 15 Jun 2026 03:01:14 +0000
Files and hashes: 1: XCvwouQb8EHjnYaba0fCxCrBwa0.roa (hash: 7OCxz9+g4uYWDzH37RsGVsHV2ZDZWkC8HmqPtc1bvkQ=)
2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: cHyw0Ptgf8laD9ubUf+gwV2B/A9bWQdEPM1Skw5Xl4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:13:85:cc:d5:75:eb:8f:ff:a0:90:93:28:a2:ce:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249
Validity
Not Before: Jun 14 03:01:14 2026 GMT
Not After : Jun 15 03:01:14 2026 GMT
Subject: CN=2025ed96ab0f49aace7cea71c71b1f96255ffe8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8c:7a:55:e3:41:e9:b5:48:f4:4e:2a:06:1a:
e5:2d:5d:ce:57:17:6f:b7:88:a9:e3:ac:f4:d4:37:
4b:78:5f:99:d3:b9:a8:db:61:8c:cd:b0:de:cb:a9:
a6:32:76:c7:22:49:20:5b:ad:34:0b:b2:15:ad:db:
41:0f:2e:a8:17:c1:26:09:4e:72:c7:6a:9a:53:e4:
33:33:a9:2d:27:62:ff:95:ed:66:4a:fc:65:01:c7:
a5:db:b8:82:30:c3:42:6e:c3:bd:1d:40:ad:95:70:
37:61:a7:93:08:e9:f7:1d:a3:62:f3:3d:ab:0c:ad:
8c:81:3a:7f:c5:44:1e:b8:eb:c2:f2:b5:47:11:32:
81:99:32:d7:55:05:c8:78:67:69:92:9c:0c:aa:67:
8b:36:3b:c8:e6:39:f7:e6:c6:4f:96:56:ba:39:dc:
0d:56:de:d3:8a:71:75:d1:b7:86:d4:b8:e1:15:9d:
ff:3f:f7:ad:6b:a2:28:97:f1:0b:d0:db:05:b4:5b:
dc:ad:23:ba:80:74:58:69:eb:91:eb:ef:b9:14:8b:
e5:0b:2b:43:80:c9:9e:0b:06:fd:53:85:c9:01:b8:
f5:d0:04:33:f5:07:05:e7:60:8a:51:01:c2:56:77:
d1:49:12:5f:4d:6a:f5:b2:be:a3:18:7d:b5:02:db:
23:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:25:ED:96:AB:0F:49:AA:CE:7C:EA:71:C7:1B:1F:96:25:5F:FE:8C
X509v3 Authority Key Identifier:
keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:89:46:09:9c:db:8b:72:d5:07:ef:52:c0:a4:db:3e:77:bc:
44:3b:23:7d:6c:95:2d:71:41:6b:14:0b:ff:d9:b5:98:07:59:
95:d1:cf:9a:23:91:98:5a:73:be:e3:04:72:1d:c0:9b:65:a2:
9e:18:b5:44:92:da:3e:e3:43:7a:9c:3a:de:d6:bc:39:92:e9:
66:9a:94:0e:b4:d0:ca:99:57:d6:1a:d9:bc:a6:0c:ec:f4:95:
ae:1f:a1:20:5c:da:59:73:4f:63:39:d7:98:bd:99:bc:83:6e:
5b:f7:64:1e:96:f4:30:3d:f8:b7:cf:7b:3d:78:4d:32:f2:37:
86:d1:65:9e:30:23:e0:b5:f3:18:af:19:ab:ee:1d:d8:92:d6:
34:90:ef:70:0a:16:d9:5e:56:09:e5:df:be:7b:df:46:e7:8e:
05:7a:a3:a8:5c:83:1b:63:a9:f8:e4:49:10:4a:f1:a3:73:55:
49:4a:07:4b:3c:e9:07:60:dc:66:53:ae:93:4e:a2:18:5e:9a:
c0:9b:31:54:2a:69:c8:bd:f0:89:c5:ad:0b:c8:b0:17:fa:2c:
88:aa:d2:39:bb:af:dd:9e:fa:83:46:69:5e:31:50:25:ab:f9:
d7:81:08:28:e5:37:ef:53:05:dd:fc:a6:11:0a:29:ab:08:1b:
d8:01:d2:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 08:21:22 2026 by rpki-client