Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: +ShG+b7tf7YXuRgYMBPFt/70juji5RN98R0fplZuDLM=
Subject key identifier: F8:44:8B:21:82:6C:EF:33:98:E2:43:32:82:76:47:F4:28:E1:26:C5
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 019CAAFD5F708A3E477006D8DD48818E8A98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 20:00:57 +0000
Manifest this update: Sun 01 Mar 2026 20:00:57 +0000
Manifest next update: Mon 02 Mar 2026 20:00:57 +0000
Files and hashes: 1: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: /T5lOLpP23H2/54daV3TICWmZR0IJm7P36NDq8z0rwY=)
2: sn9U2RuOQ1wrwQLlWSSxVdSW5_4.roa (hash: 8JLFpcnBG6xPlIQ4AyWjjJuV8xetbTR/ok+0e12gEvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:5f:70:8a:3e:47:70:06:d8:dd:48:81:8e:8a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Mar 1 20:00:57 2026 GMT
Not After : Mar 2 20:00:57 2026 GMT
Subject: CN=f8448b21826cef3398e24332827647f428e126c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:51:48:d6:68:92:8e:8f:65:7d:76:b6:c8:
6b:bd:b5:af:7a:3f:eb:d5:69:0a:f3:a2:47:bd:d2:
69:7a:10:eb:a6:a8:fe:9f:78:0f:2b:bd:82:36:a8:
03:6b:36:b5:28:51:12:76:6f:0a:e6:50:8f:40:25:
26:02:cb:92:4b:0a:3c:d5:7e:72:ba:f7:b6:a5:f7:
e3:b9:2c:d6:d4:97:71:1a:1a:05:30:b2:23:93:0b:
dc:ed:68:8b:0e:93:e5:be:29:fc:a7:9b:a0:2f:1f:
8f:71:5e:0a:b3:c3:98:5b:e6:4c:f6:d0:ae:68:3e:
b2:87:12:e5:05:45:39:19:fe:39:e7:ec:cb:bb:75:
d5:e9:b3:11:34:a7:7d:45:28:b3:b3:ed:65:38:25:
eb:c8:29:6f:ab:5d:24:8c:10:f6:03:6e:e1:88:b8:
1c:61:56:d7:50:5a:42:47:ad:c3:5e:03:03:2b:23:
cb:0c:2f:c5:b4:f9:91:23:d2:bc:33:c4:3c:0e:ee:
7a:76:d9:54:59:eb:09:ca:63:d4:12:ee:45:f9:45:
52:18:d4:9f:c4:9f:c2:c6:82:7d:2f:80:23:c4:3f:
12:44:fa:eb:43:14:96:04:6f:ee:bb:49:77:94:23:
97:5e:65:d3:ef:26:48:b5:45:e9:4a:5e:cd:63:1c:
66:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:44:8B:21:82:6C:EF:33:98:E2:43:32:82:76:47:F4:28:E1:26:C5
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:5b:9c:40:01:19:52:77:71:d0:d2:32:0a:c0:4c:43:70:7f:
2b:2e:81:02:58:d8:53:c5:98:e4:f4:8b:cd:ab:8a:99:c4:3f:
70:14:99:a5:21:93:8f:f4:24:10:81:a1:c8:68:a8:f3:fd:51:
3b:3a:5e:f9:ae:79:f2:d3:59:24:23:c2:bb:16:3b:e0:a2:64:
23:9f:f2:bf:92:ea:ae:22:e8:46:a3:f1:88:da:ab:db:f7:c9:
5f:55:f2:26:24:76:67:5a:d4:6a:39:74:11:8d:ae:33:65:ae:
4c:17:51:69:14:00:74:80:da:db:dd:37:05:7a:c2:63:13:14:
b1:42:9b:09:e1:c1:bb:fa:02:9b:3b:4d:52:d8:c3:87:6e:d9:
11:d2:44:19:96:38:96:99:c5:99:19:b6:e9:ac:d2:1c:79:36:
61:31:d8:a3:0c:01:89:f2:1b:4e:58:c6:e3:79:83:2f:e8:54:
a3:41:4b:ef:e2:ba:58:98:8d:83:73:55:42:d8:46:c3:ee:a0:
7e:89:de:9c:63:81:0c:11:45:88:b6:d9:d1:45:8b:bf:11:e6:
d3:2d:82:6b:89:75:7c:ee:fe:6a:ca:48:68:b4:88:16:8d:d5:
7d:7e:a4:c8:4f:62:63:ab:28:2b:1a:10:cf:30:ea:5a:b4:4d:
71:35:7d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:04:51 2026 by rpki-client