Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.mft (raw, json)
Hash identifier: z4TqZyaOMsLEifOnTu/jwkpaLkMK4dzQsOijgcN58S0=
Subject key identifier: B5:6D:56:F2:6B:37:10:01:B1:84:84:AB:35:B0:44:E3:0A:21:40:A5
Authority key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Certificate issuer: /CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Certificate serial: 019EC4EEA933D42349BAD44AEBB11BD86226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
Manifest number: 1677
Signing time: Sun 14 Jun 2026 07:00:35 +0000
Manifest this update: Sun 14 Jun 2026 07:00:35 +0000
Manifest next update: Mon 15 Jun 2026 07:00:35 +0000
Files and hashes: 1: YlYRZ37O-pzL7R_8WiFUYYasSE0.roa (hash: pASfCwUDt1iiJW6IS3OTekooh+sWxZnThm/3hjuqE+0=)
2: aa24Jfn9vKDNfHkB3reiKuF5fAY.crl (hash: qoVlSRxTswnnwyREFCXOWA3esvON1i5YISB8Z8Inl1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:ee:a9:33:d4:23:49:ba:d4:4a:eb:b1:1b:d8:62:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Validity
Not Before: Jun 14 07:00:35 2026 GMT
Not After : Jun 15 07:00:35 2026 GMT
Subject: CN=b56d56f26b371001b18484ab35b044e30a2140a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:86:66:42:fc:1e:1a:aa:e3:ba:b5:c2:45:93:
d4:18:2c:d8:b1:56:62:94:ae:0c:ce:6a:42:8b:dd:
6e:23:49:a6:5a:89:1c:f7:ef:29:e6:53:9c:fe:73:
6c:60:07:e4:72:cd:6b:96:78:f4:05:01:76:ec:e0:
3c:9a:8a:3d:14:54:27:cc:80:96:55:72:72:38:75:
64:ba:87:56:03:a2:4b:9f:59:77:c3:17:27:5a:48:
29:16:7c:30:27:d5:dc:16:8e:a5:45:84:39:55:f3:
11:0b:f3:0c:2a:1a:ed:8c:33:3c:a4:8c:64:36:6f:
25:0b:66:05:cb:6c:2b:16:64:cf:bc:7d:0f:80:3e:
ce:6e:6e:93:32:6b:5a:fd:8f:65:e1:51:e6:8a:b1:
fb:9b:29:71:85:5e:bf:92:91:3a:31:e3:04:4b:31:
05:18:73:dc:62:4e:7d:ae:a1:09:4b:a4:35:1e:e5:
f8:19:a8:68:e0:bd:6c:86:67:05:29:0d:b7:03:61:
b2:ef:b5:fa:32:61:ed:30:1c:d7:a3:ba:c8:10:94:
71:2d:f6:be:81:64:0c:56:66:4f:0b:57:c6:ff:40:
16:9e:df:a7:81:84:b3:54:a4:e3:78:98:34:95:2a:
d8:da:3d:9d:60:0d:25:1b:af:cf:89:02:9d:f5:80:
0e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6D:56:F2:6B:37:10:01:B1:84:84:AB:35:B0:44:E3:0A:21:40:A5
X509v3 Authority Key Identifier:
keyid:69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:2a:79:22:3c:2d:03:66:80:e2:c2:29:1c:02:f2:94:24:9f:
27:47:31:67:37:d4:ad:eb:f4:27:c3:76:27:74:84:a3:81:0c:
43:9e:4e:8a:90:70:1c:52:fd:a6:c2:3d:5e:6c:4f:aa:26:ae:
b5:f4:05:fa:37:79:de:41:cb:3a:bc:45:7a:1b:11:81:c7:81:
ab:19:2b:dd:7a:c0:65:a1:8c:a0:da:d2:21:88:fb:45:f7:59:
95:96:eb:57:65:dc:3f:c3:17:79:79:8f:ed:24:77:a7:bd:bf:
52:e9:25:74:13:a0:04:65:dd:e4:e6:2c:e1:74:27:fe:80:b1:
8f:a6:3d:b5:31:b5:b3:ce:32:fe:02:d5:80:d3:4e:49:86:4f:
d4:15:d6:a5:c1:83:2d:f6:b4:af:6e:b7:03:64:bb:79:28:11:
44:4e:e9:39:4a:75:1f:04:12:ed:95:0b:65:f9:f3:dc:82:29:
bf:94:1d:20:6f:be:a2:00:df:1c:22:4d:6a:c1:f5:75:2c:cb:
3a:85:a7:8b:e1:62:a3:6e:f4:8b:c5:4c:d6:0b:ec:88:98:65:
4f:8b:8a:da:bb:43:f9:10:ee:82:76:e4:84:9a:26:df:4d:1b:
64:51:73:48:2d:3e:45:f1:70:2b:53:99:d9:0c:6d:55:db:50:
e2:6d:2b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 09:56:34 2026 by rpki-client