Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
File: aBnbgbSauhKxgQyzopnu5GMt1yA.mft (raw, json)
Hash identifier: I3CdpLCtV6D0YSiMX1LbgZaH/8O+FmREoafng8rk3fc=
Subject key identifier: D3:CC:4D:76:C0:CF:07:F8:17:05:F4:C8:3C:15:49:1A:10:1B:DD:4A
Authority key identifier: 68:19:DB:81:B4:9A:BA:12:B1:81:0C:B3:A2:99:EE:E4:63:2D:D7:20
Certificate issuer: /CN=6819db81b49aba12b1810cb3a299eee4632dd720
Certificate serial: 019DA566DAD5F15B047826C80A97A7406B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBnbgbSauhKxgQyzopnu5GMt1yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
Manifest number: 0498
Signing time: Sun 19 Apr 2026 11:01:14 +0000
Manifest this update: Sun 19 Apr 2026 11:01:14 +0000
Manifest next update: Mon 20 Apr 2026 11:01:14 +0000
Files and hashes: 1: PK2HVjD3GmdLB06ij0s7w3X0wCo.roa (hash: 1RKfa7PhpjR33QDEm1HWDfBtwC3Ch5Bq/qvovHpolJ0=)
2: aBnbgbSauhKxgQyzopnu5GMt1yA.crl (hash: 1Aqfqrv9SJXIFn3fFLCigrbJ1GVhb8Jjo/d/PtUkSZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBnbgbSauhKxgQyzopnu5GMt1yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:66:da:d5:f1:5b:04:78:26:c8:0a:97:a7:40:6b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6819db81b49aba12b1810cb3a299eee4632dd720
Validity
Not Before: Apr 19 11:01:14 2026 GMT
Not After : Apr 20 11:01:14 2026 GMT
Subject: CN=d3cc4d76c0cf07f81705f4c83c15491a101bdd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0b:84:05:40:27:f5:de:8a:9b:2a:61:2a:03:
de:d4:a3:3c:fc:e8:cd:f3:29:66:c0:79:c5:f8:af:
0f:a1:ac:e3:f7:cf:04:9d:c4:de:5a:67:ba:a9:af:
2e:97:02:26:a4:cd:4d:25:6b:8b:26:8e:43:3e:0d:
e2:a6:7f:41:23:a7:fe:df:05:b5:d0:0a:3c:c7:3e:
1f:b5:ef:28:d7:63:dc:cd:75:b3:29:55:6a:d0:fd:
80:ee:94:07:b5:ab:51:1e:c5:a1:a4:1a:52:43:55:
b9:8d:73:69:22:e3:f7:ca:d7:3e:f5:e2:7b:16:16:
28:c0:0b:1b:43:6a:7d:6f:2b:c3:05:a6:a2:40:81:
8c:5c:2c:4b:c9:47:c6:15:15:ac:70:57:0c:4c:2e:
99:e3:f9:df:d0:e3:ed:2f:f2:3f:b8:dc:ac:57:ad:
38:04:60:98:99:91:bf:e0:bf:6f:cc:94:1d:2f:f7:
ef:fd:8c:aa:f5:bb:9b:7e:a7:6c:2e:3f:dd:a5:ee:
af:dc:ad:ed:2a:61:56:69:ba:e2:4b:98:e6:21:a3:
ae:b2:61:5e:3f:09:fe:31:72:30:55:47:c6:58:88:
71:bd:f0:92:8c:51:3f:bf:df:5d:37:79:e3:af:59:
db:85:86:58:5d:df:cb:ce:89:44:ab:68:e8:63:92:
41:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CC:4D:76:C0:CF:07:F8:17:05:F4:C8:3C:15:49:1A:10:1B:DD:4A
X509v3 Authority Key Identifier:
keyid:68:19:DB:81:B4:9A:BA:12:B1:81:0C:B3:A2:99:EE:E4:63:2D:D7:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBnbgbSauhKxgQyzopnu5GMt1yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:30:59:cd:a0:0d:8d:71:a6:8b:e3:ed:55:2a:46:7a:42:91:
ea:48:89:84:cf:55:39:0f:37:33:ce:fc:39:f8:ef:cd:dc:55:
e9:b5:6d:18:9c:91:e7:73:fc:0a:12:75:14:c2:db:35:9c:6a:
ce:4f:f0:04:b5:ef:a9:e7:07:3e:e3:f5:5e:82:01:1f:f8:6a:
80:bf:ed:ab:4b:aa:34:c9:76:12:7e:be:29:35:87:6f:8d:8c:
93:da:53:2a:d6:15:73:ed:af:7e:b0:8e:08:59:12:3e:b5:e1:
4b:e6:83:3d:59:96:00:01:61:2c:b7:47:8e:c1:84:05:8f:8e:
5a:14:52:5c:ed:42:34:90:1d:75:67:03:f5:b7:23:55:e1:8b:
89:da:ab:5d:10:02:27:f5:89:92:40:73:aa:f9:a0:e6:ab:2b:
91:1f:ec:a6:d8:8e:58:84:c5:ca:bb:f1:3d:ca:c9:b6:91:0a:
4d:2b:63:c9:29:d8:c8:14:85:43:c2:64:57:d0:16:82:2b:b2:
bf:05:cb:18:33:ed:29:b6:42:42:85:86:c0:68:20:a3:4d:95:
78:0a:51:3f:4d:ee:dc:f8:31:d7:1c:73:36:71:89:57:17:f5:
04:80:c4:aa:5a:74:bf:23:06:49:5e:91:d2:65:9e:4b:f6:2f:
01:48:1a:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2lZtrV8VsEeCbICpenQGuWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MTlkYjgxYjQ5YWJhMTJiMTgxMGNiM2EyOTllZWU0NjMy
ZGQ3MjAwHhcNMjYwNDE5MTEwMTE0WhcNMjYwNDIwMTEwMTE0WjAzMTEwLwYDVQQD
EyhkM2NjNGQ3NmMwY2YwN2Y4MTcwNWY0YzgzYzE1NDkxYTEwMWJkZDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQuEBUAn9d6KmyphKgPe1KM8/OjN
8ylmwHnF+K8Poazj988EncTeWme6qa8ulwImpM1NJWuLJo5DPg3ipn9BI6f+3wW1
0Ao8xz4fte8o12PczXWzKVVq0P2A7pQHtatRHsWhpBpSQ1W5jXNpIuP3ytc+9eJ7
FhYowAsbQ2p9byvDBaaiQIGMXCxLyUfGFRWscFcMTC6Z4/nf0OPtL/I/uNysV604
BGCYmZG/4L9vzJQdL/fv/Yyq9bubfqdsLj/dpe6v3K3tKmFWabriS5jmIaOusmFe
Pwn+MXIwVUfGWIhxvfCSjFE/v99dN3njr1nbhYZYXd/LzolEq2joY5JBVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNPMTXbAzwf4FwX0yDwVSRoQG91KMB8GA1UdIwQY
MBaAFGgZ24G0mroSsYEMs6KZ7uRjLdcgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUJuYmdiU2F1aEt4Z1F5em9wbnU1R010MXlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8wZTc2NmEtNzJmZS00N2QyLWE0MzUt
OTAzNWIwODM2MjQzLzEvYUJuYmdiU2F1aEt4Z1F5em9wbnU1R010MXlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8wZTc2NmEtNzJmZS00N2QyLWE0MzUtOTAzNWIwODM2MjQz
LzEvYUJuYmdiU2F1aEt4Z1F5em9wbnU1R010MXlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKzBZzaAN
jXGmi+PtVSpGekKR6kiJhM9VOQ83M878OfjvzdxV6bVtGJyR53P8ChJ1FMLbNZxq
zk/wBLXvqecHPuP1XoIBH/hqgL/tq0uqNMl2En6+KTWHb42Mk9pTKtYVc+2vfrCO
CFkSPrXhS+aDPVmWAAFhLLdHjsGEBY+OWhRSXO1CNJAddWcD9bcjVeGLidqrXRAC
J/WJkkBzqvmg5qsrkR/sptiOWITFyrvxPcrJtpEKTStjySnYyBSFQ8JkV9AWgiuy
vwXLGDPtKbZCQoWGwGggo02VeApRP03u3Pgx1xxzNnGJVxf1BIDEqlp0vyMGSV6R
0mWeS/YvAUgaFw==
-----END CERTIFICATE-----
Generated at Sun Apr 19 14:53:27 2026 by rpki-client