Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: r7/jFgPmeRYSKfwUbjEpUYekM4F910uFeQ1AKpZ9dKU=
Subject key identifier: 70:44:CC:68:AB:D1:F6:4A:C4:BD:5C:35:B6:FD:AB:85:A2:73:2C:1A
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 019D98863A733392F9506D7AA761339F691C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 18C2
Signing time: Thu 16 Apr 2026 23:00:26 +0000
Manifest this update: Thu 16 Apr 2026 23:00:26 +0000
Manifest next update: Fri 17 Apr 2026 23:00:26 +0000
Files and hashes: 1: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: XtMyuyXLVlfhooIIm2DgHHyKeZzMJyII7tPZtWl/XPg=)
2: sn9U2RuOQ1wrwQLlWSSxVdSW5_4.roa (hash: 8JLFpcnBG6xPlIQ4AyWjjJuV8xetbTR/ok+0e12gEvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:3a:73:33:92:f9:50:6d:7a:a7:61:33:9f:69:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Apr 16 23:00:26 2026 GMT
Not After : Apr 17 23:00:26 2026 GMT
Subject: CN=7044cc68abd1f64ac4bd5c35b6fdab85a2732c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7e:f9:6a:09:87:28:10:45:db:2c:e6:df:9f:
27:88:70:5a:8f:0f:05:37:34:9e:d9:e1:26:d2:97:
02:58:c9:a0:2b:d0:6b:c2:59:de:40:64:85:bf:b4:
a9:9a:a2:c0:f7:19:b7:e4:54:6b:5f:3b:70:b1:c5:
cd:6f:ee:e6:04:13:30:3e:a4:7d:ac:b4:69:eb:e2:
22:36:e8:e3:c8:77:68:25:a2:33:91:5f:a4:84:17:
1b:96:f3:f3:0b:6a:cc:cf:c0:67:e7:cd:44:e7:d8:
60:25:76:de:61:48:c8:fa:ee:54:2c:12:40:f5:1b:
f9:7b:55:11:e7:27:2c:95:ff:f4:a7:ad:39:07:b2:
b7:55:4e:47:ba:eb:01:58:3a:e9:6c:99:11:30:86:
84:cf:52:44:e2:c5:8f:10:f5:e5:0a:d3:06:14:67:
e5:d8:b5:7b:e8:09:3a:19:56:d5:44:3c:a3:46:d1:
4f:fc:3b:fe:30:dc:17:f7:af:ff:02:19:59:a7:d0:
59:e6:ce:c2:f0:10:c0:75:8b:f6:9a:de:4a:c1:cc:
f7:a5:d1:e1:60:98:0a:5c:6c:f9:4a:0b:b2:1e:7b:
ac:b1:aa:3a:e5:62:4d:ab:3b:71:37:0b:96:fb:84:
83:f4:4c:72:8b:8a:fe:b9:dd:8f:e0:9b:a4:04:5c:
12:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:44:CC:68:AB:D1:F6:4A:C4:BD:5C:35:B6:FD:AB:85:A2:73:2C:1A
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:ce:d4:1e:cc:3e:5e:58:44:89:c0:6d:b4:fa:63:26:6f:3b:
33:16:42:24:07:54:66:68:f2:f5:bb:15:4c:e1:ca:64:2a:42:
90:7f:55:73:90:b3:c4:82:86:e2:da:51:d7:9f:f2:4c:4d:7d:
30:d3:7f:8c:a3:b6:17:49:bc:4a:34:73:83:a4:51:88:93:e6:
a5:49:df:c8:cf:2e:95:2b:f3:b0:a8:db:b3:ac:24:69:ab:d8:
be:a6:18:a6:fb:f5:90:21:93:2b:23:14:ae:79:a9:8e:be:dc:
54:7f:87:9e:5d:1d:03:cd:a3:12:01:7a:ec:cb:d6:84:ac:f4:
9a:2b:71:22:73:58:7f:c4:24:85:3e:e6:d6:ba:06:60:77:df:
92:5d:27:7d:9d:cc:4f:12:d6:bc:9d:aa:6b:a0:f2:2d:26:37:
34:7b:57:e0:23:2c:a3:11:68:b3:fb:f2:d1:7f:43:b0:b3:e6:
0c:95:d4:0c:55:5b:85:12:31:c9:1d:bc:82:6d:ca:99:ce:12:
4c:f4:30:7c:21:d4:94:26:8a:5f:b7:cb:1b:17:dc:97:35:d7:
11:53:e8:8a:02:8c:8d:25:39:d1:03:36:af:e0:4d:41:f1:7e:
3e:d9:dc:7f:01:71:2a:31:da:11:c3:3d:4e:f7:b6:57:3d:9b:
b5:60:91:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:04:33 2026 by rpki-client