Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: 3fGZmdIYbqahLSetvMSVTMaklt3llZplauSmah8UdUA=
Subject key identifier: 2A:3F:A9:7C:75:34:2A:29:94:00:38:92:48:9E:FC:BC:B2:9C:3C:5E
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 019EC2921ADF1D793F5A1E97C25419498732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 185A
Signing time: Sat 13 Jun 2026 20:00:15 +0000
Manifest this update: Sat 13 Jun 2026 20:00:15 +0000
Manifest next update: Sun 14 Jun 2026 20:00:15 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: ghG36jHtFiCWSmOw8E602bwS/JICFXhVN/5Lo2el3us=)
2: gNhszUNFjUvnmp6uYZywKw0VK4Q.roa (hash: OoYbjhXKEH09k93nIljEgaEwB00MnQM3qMLjic/Ifxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:1a:df:1d:79:3f:5a:1e:97:c2:54:19:49:87:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Jun 13 20:00:15 2026 GMT
Not After : Jun 14 20:00:15 2026 GMT
Subject: CN=2a3fa97c75342a2994003892489efcbcb29c3c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:48:52:5c:89:d1:e0:ca:c6:6d:17:58:3a:26:
68:c0:59:46:06:70:dd:07:eb:e3:23:03:3e:63:d5:
10:77:92:bb:97:98:bc:77:f6:ed:83:d3:10:4d:23:
48:2d:6a:25:5b:a9:23:2f:17:e7:52:1d:91:e6:54:
32:97:89:10:c7:7b:37:c6:9a:a2:13:f2:06:59:e0:
3e:07:eb:0b:fe:90:00:4f:ce:d5:dc:25:ef:a9:90:
ef:de:87:6d:af:d7:ab:b7:33:fb:89:bc:02:c0:45:
64:a0:33:a8:a9:44:f5:43:9f:45:6d:40:6d:01:f9:
61:1a:96:7c:20:71:80:d5:de:03:8a:ed:9e:46:2d:
87:1c:ae:42:bf:85:da:a4:a3:8d:59:a3:1c:75:38:
2a:3e:7a:ca:66:b2:c4:cb:0a:9d:a4:e5:14:10:64:
54:06:d8:27:8e:92:5c:32:ee:5a:97:05:9d:4c:54:
8c:b6:d1:33:30:c1:26:82:c3:84:d5:89:93:bc:e3:
00:dd:ab:f1:23:43:61:27:b0:62:d2:d8:46:28:7d:
6a:f1:e3:5f:56:09:6e:8e:35:11:b9:69:a9:0b:3d:
08:7d:92:27:8b:bb:4d:73:2d:06:36:47:a6:a9:37:
59:6e:6d:25:ad:b2:97:b4:d6:7e:38:3b:a9:11:8c:
72:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3F:A9:7C:75:34:2A:29:94:00:38:92:48:9E:FC:BC:B2:9C:3C:5E
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:87:78:8f:fe:72:ea:cf:e9:5a:2e:e8:61:1d:35:11:71:a8:
0e:65:e1:9e:80:69:69:09:88:e5:2e:1e:b6:3d:99:20:30:a5:
1e:5a:8d:e7:2d:50:11:fd:62:2d:59:88:68:a6:bd:0d:bd:fd:
dd:fb:01:61:68:b9:28:fe:94:6d:4d:d1:1b:1c:85:8a:8e:b3:
e3:02:f4:8f:ad:f4:74:78:54:d6:2a:45:03:ab:38:07:0d:32:
56:19:af:16:61:2f:1d:49:5d:40:24:79:17:cc:7f:b3:86:fa:
f7:a2:75:72:48:c3:10:fe:2b:98:67:07:7e:1c:e8:bf:24:d4:
d2:89:c8:6c:9d:9b:02:8c:1c:27:ad:46:7f:2d:00:f7:c2:91:
d4:c6:67:cb:05:7b:6e:ca:9f:4e:3d:f7:b1:c7:88:73:54:f7:
1b:01:fc:12:5a:c2:15:ff:c5:83:3f:5e:e6:7c:6b:1c:c6:3e:
2b:e2:f7:df:82:b7:ea:81:13:f8:b7:df:b8:84:25:9c:61:28:
f7:2d:21:69:9e:d1:5d:63:85:66:79:e1:f6:3a:50:4d:02:f7:
9e:8e:59:9d:21:65:4c:a2:c3:00:a3:b6:65:4a:eb:cb:27:89:
8e:9d:08:45:e9:89:f9:fb:5d:92:7e:0f:53:fb:22:3e:f9:36:
bf:1d:77:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:22:12 2026 by rpki-client