Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: 7H7oV/iNiyOkDLd9fBsW+JyTQIDjmaxx4If8jp8GgtQ=
Subject key identifier: F4:5A:7D:89:47:02:EE:F6:5B:5F:AC:E5:8D:59:BD:7E:3B:9F:EF:5D
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 019EBF23DDCF4C906F2CCD66BC34545D46D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 04:00:59 +0000
Manifest this update: Sat 13 Jun 2026 04:00:59 +0000
Manifest next update: Sun 14 Jun 2026 04:00:59 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: 4vbey4oDIELBLRFLvXCPZDDYGyTEDXDOAcyAugSwxsU=)
2: GSCpplFtfkTN5C3emWdSBHM2s_U.roa (hash: uafjHLArE68enYzHEZipyUcJy+2TVAQsxPWk3VzbutI=)
3: T4PSpNaqkAOQJjuBdAFdx3zKgyY.roa (hash: sU9bxlF1T+hrGzv9LaagfpQyLm85yMt1O7DFm4yEcJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:dd:cf:4c:90:6f:2c:cd:66:bc:34:54:5d:46:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jun 13 04:00:59 2026 GMT
Not After : Jun 14 04:00:59 2026 GMT
Subject: CN=f45a7d894702eef65b5face58d59bd7e3b9fef5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:35:e2:b3:27:51:7b:d3:31:22:59:0a:fb:9a:
f1:75:a6:d4:4b:cb:0b:13:4a:43:b6:9e:b6:9f:16:
20:aa:06:0b:5e:1c:f4:7e:ca:54:fe:a7:45:07:b1:
ff:5c:39:d9:05:51:1f:39:7d:ae:79:96:a9:78:04:
88:2a:8f:57:77:b6:81:bc:a7:76:4c:2b:3c:48:53:
3f:00:24:c8:a6:ff:5c:86:c2:9e:b1:bf:05:af:bb:
37:50:12:09:86:07:bf:ad:4c:85:b8:39:33:a9:67:
70:a4:df:5a:aa:a0:5a:7a:39:18:2b:15:13:6f:bd:
67:f6:73:c4:16:d0:a1:83:a5:18:fe:86:94:fb:0e:
57:58:09:92:91:f6:7b:de:7e:48:50:aa:89:2e:80:
35:b0:d1:a9:93:c6:af:35:d0:0a:54:61:02:f3:a3:
2f:da:22:ce:03:29:48:9c:7d:b4:88:8e:9d:d6:4f:
36:cb:c8:52:89:45:67:5b:9c:3b:d1:e3:84:bf:b4:
30:95:cc:16:0c:8f:0c:44:16:6d:65:9f:17:16:b4:
9d:b4:21:77:f9:e4:3b:8a:5f:cb:9a:6b:be:dd:bd:
1d:da:ad:02:c2:7a:28:98:95:e3:a4:97:c5:6d:12:
64:aa:37:af:55:48:1d:27:dd:99:80:e6:38:e1:c3:
0f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5A:7D:89:47:02:EE:F6:5B:5F:AC:E5:8D:59:BD:7E:3B:9F:EF:5D
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ce:e1:a7:07:e7:f4:ba:3a:83:ec:94:4c:60:e5:6c:01:1e:
22:38:e8:58:18:91:d2:c8:54:03:4b:b6:c9:a8:7e:27:9e:4c:
18:ba:4c:57:2c:9a:67:07:42:f1:9d:2d:9b:c7:09:dc:7b:98:
8c:5a:80:45:21:df:ec:c6:58:ec:ee:4d:0a:8e:c2:08:e2:e1:
01:79:a4:17:03:ae:d5:88:d6:75:ba:f0:5d:3b:d3:d6:45:94:
f4:14:17:d3:0f:10:27:c4:58:a0:28:54:86:1d:72:2b:f6:dd:
24:76:34:f6:68:d5:34:a6:c6:9f:91:7f:d2:d0:7f:3a:82:2a:
5a:ba:4b:c6:8b:0e:b7:f5:cf:58:34:dc:72:57:b4:1c:4c:6f:
5a:e2:83:49:be:49:1d:74:7d:b6:ed:a0:04:e1:5b:8c:09:50:
d9:cb:b7:c7:eb:93:90:10:05:a1:a7:78:35:4d:62:b4:14:80:
a8:ce:b6:c3:9b:a8:54:cb:5e:3c:98:50:55:36:23:a2:b0:e4:
6b:57:bc:c9:18:68:f6:79:00:85:0c:bf:50:6f:c8:5f:6b:00:
9d:2a:f0:22:8c:43:bc:a8:bd:5f:83:7b:e3:ba:75:08:dc:72:
a0:9a:d3:0f:e0:42:b6:d1:18:b6:12:fe:7c:85:ec:53:6e:c4:
50:7d:df:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:09:21 2026 by rpki-client