Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: byzotbheiCnfw8SCG5ZzeotUcTXcvF9W6DtFSbMP7QY=
Subject key identifier: 0B:4F:CB:B9:79:74:0A:88:9C:D1:53:1F:7F:76:F2:0D:6B:AB:EA:26
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 019CABA26009AD94B21C0EDC28C287FF3324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 1745
Signing time: Sun 01 Mar 2026 23:01:11 +0000
Manifest this update: Sun 01 Mar 2026 23:01:11 +0000
Manifest next update: Mon 02 Mar 2026 23:01:11 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: 46MkLG5D1UBD/eaL83GAHw27xXN6aOmLSK/Ja5tYCXg=)
2: gNhszUNFjUvnmp6uYZywKw0VK4Q.roa (hash: OoYbjhXKEH09k93nIljEgaEwB00MnQM3qMLjic/Ifxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:60:09:ad:94:b2:1c:0e:dc:28:c2:87:ff:33:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Mar 1 23:01:11 2026 GMT
Not After : Mar 2 23:01:11 2026 GMT
Subject: CN=0b4fcbb979740a889cd1531f7f76f20d6babea26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:40:e7:c6:65:c1:54:9f:74:30:c6:5b:0a:cc:
5f:a3:c4:da:8d:cf:89:c5:82:25:fc:c9:47:15:fe:
07:86:ca:ac:88:25:71:c7:38:ae:72:b9:d9:f3:b9:
2c:84:7f:e0:9e:03:53:65:1d:f1:ba:54:6b:9f:ee:
44:8c:c7:d9:91:fc:bf:ea:0d:00:ec:b6:b3:1f:96:
e9:bb:8b:89:df:22:47:61:e0:54:0a:4d:38:f4:b0:
7e:0e:46:d4:82:00:ff:ea:68:07:35:62:fb:fa:1c:
90:9a:a0:15:f7:25:c2:87:76:98:ff:73:06:32:2c:
e2:53:ec:c8:56:a6:c0:ae:53:e6:d6:bd:58:1e:cc:
10:94:88:cf:92:ca:ab:a2:6a:b2:7a:a9:b1:2a:ec:
22:78:cf:7c:0e:5e:a7:48:11:1c:7e:ff:ec:90:88:
9c:39:72:67:30:a3:63:46:25:f3:7c:1c:d8:c0:47:
cb:86:93:9a:70:8d:8c:4c:b8:33:40:88:da:fe:b9:
8a:2e:77:b1:3b:5f:f9:1a:91:23:b9:06:a7:42:da:
6a:2c:11:bb:69:12:ff:67:7f:bc:df:78:5f:28:ff:
4b:ca:69:7c:46:82:c8:c0:1a:f3:4c:81:04:9f:cd:
9d:5b:b0:d8:4f:82:3f:ea:a7:87:18:5f:ba:a8:dd:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4F:CB:B9:79:74:0A:88:9C:D1:53:1F:7F:76:F2:0D:6B:AB:EA:26
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:ab:3c:c9:00:ea:72:30:00:42:71:59:69:72:99:85:6a:13:
a2:dc:c0:b0:05:56:7d:a8:28:cf:c3:a9:87:4d:42:c8:d3:f0:
e0:71:b3:f8:67:95:3e:53:99:00:bc:fd:81:8e:4e:a1:4f:54:
f7:fe:d5:4c:ad:73:8b:85:06:38:c8:99:48:a2:5b:2d:ff:ff:
ff:ba:e9:6a:06:55:da:65:cb:5b:e3:bd:db:15:78:68:89:09:
9e:76:d9:88:3e:5b:19:76:fc:d7:59:c1:35:11:f6:21:73:a0:
ef:75:a6:eb:29:c8:de:7e:ed:2c:76:43:71:29:2a:b1:11:f2:
55:5a:ae:49:9d:7e:9b:37:cd:1e:49:88:fc:0c:6c:60:30:4f:
aa:38:b3:1c:f9:e9:29:2d:d9:00:dc:d2:19:0b:dc:97:67:a4:
b1:d4:00:c4:12:6f:63:3c:2c:85:7d:b5:be:95:57:69:e3:87:
98:45:8e:71:1a:84:10:43:52:a5:17:eb:e8:c9:ee:21:d8:4a:
53:04:3b:b4:dd:92:b4:7b:33:ab:94:09:bf:10:28:41:66:b6:
9c:38:6e:a0:8a:d1:f8:aa:bf:6b:b2:83:f3:30:87:db:da:ea:
a0:34:95:aa:bd:2c:b5:03:fb:f5:19:42:18:75:a6:ad:5c:35:
d2:ab:41:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:38:27 2026 by rpki-client