Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
File: aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft (raw, json)
Hash identifier: EJvrzzTg3tsNe6h92aHCElSJ1lc08wV5OQ5c1LvnITQ=
Subject key identifier: CC:4F:7D:9C:E1:66:3F:78:FA:60:5D:0A:C7:B9:E5:EE:75:06:F4:A8
Authority key identifier: 69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
Certificate issuer: /CN=699710a1693710ac835f0b6745f90d2d680a1200
Certificate serial: 019EC1494C0DF8AF64F92FD4D3A7C688FF59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
Manifest number: 18ED
Signing time: Sat 13 Jun 2026 14:01:06 +0000
Manifest this update: Sat 13 Jun 2026 14:01:06 +0000
Manifest next update: Sun 14 Jun 2026 14:01:06 +0000
Files and hashes: 1: VmSEi88h8EdX70CoZBoX1PGWIw4.roa (hash: cwT1GcadLbcYd+EhAmWFsga6gtnL8WtN6n2eRtcoP6o=)
2: aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl (hash: 0pMBFoxKCZxp8e//rjHuf6mRCOILTpmB5uCWiWYKADM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:4c:0d:f8:af:64:f9:2f:d4:d3:a7:c6:88:ff:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699710a1693710ac835f0b6745f90d2d680a1200
Validity
Not Before: Jun 13 14:01:06 2026 GMT
Not After : Jun 14 14:01:06 2026 GMT
Subject: CN=cc4f7d9ce1663f78fa605d0ac7b9e5ee7506f4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:04:ac:e8:8e:40:6e:4a:f3:75:3c:91:0f:10:
c8:a6:a3:bd:d9:4f:62:37:5f:90:6a:93:22:7d:ac:
e2:12:75:89:e7:1a:f8:29:42:46:be:7f:8c:ac:f1:
50:35:cd:5b:cd:74:4f:cd:45:0e:3b:2a:ee:3c:69:
44:dd:a1:d1:37:77:23:73:4b:c6:15:d3:46:74:75:
ce:1f:6d:a1:58:d7:ed:52:23:5a:b8:67:07:7c:23:
23:68:98:3d:fd:1a:98:3f:e1:f7:40:ee:5b:f3:9a:
6d:c4:2f:2c:f6:55:13:1b:fa:79:91:62:0e:8a:58:
f6:80:87:5f:e8:8b:0b:22:8e:13:6b:d8:f4:7a:26:
54:a5:dd:7e:63:9b:df:62:44:ee:e8:1e:50:af:e9:
8b:a5:c4:11:e8:e9:6c:81:3c:7b:5b:be:9d:cc:1d:
a9:26:c3:b3:e3:62:b5:69:7e:02:c4:c4:6b:04:b9:
0f:fa:2a:c2:ff:7b:f7:79:43:73:a0:68:74:34:bd:
78:5e:46:0f:ef:f7:e8:dc:47:04:c8:c0:e7:d1:84:
81:18:53:e0:19:b1:28:f9:f9:dc:91:a3:32:df:f3:
54:be:ba:1a:3a:f8:16:b4:83:e3:25:be:00:57:9e:
9a:6c:e0:f6:1f:a9:ed:f4:30:d3:a3:e4:ff:db:e4:
44:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:4F:7D:9C:E1:66:3F:78:FA:60:5D:0A:C7:B9:E5:EE:75:06:F4:A8
X509v3 Authority Key Identifier:
keyid:69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:f9:ad:1c:b4:e9:01:1f:3b:70:1d:1b:e9:04:c3:99:29:eb:
d9:21:a6:67:7b:a4:7b:11:49:ba:96:09:62:44:be:8b:80:72:
52:77:fe:8b:e4:31:66:8b:42:8f:1e:c2:d1:4f:90:13:f3:f6:
b7:47:c4:f1:0b:28:a5:5a:56:f4:e6:81:41:7a:6f:05:55:9f:
b7:37:d0:5d:ff:82:5d:a5:f2:9a:f0:ce:38:46:5d:73:a9:eb:
bd:04:aa:06:05:4b:32:63:82:11:b4:ec:78:0a:87:93:b2:d7:
3c:be:ab:34:5b:24:07:b5:09:4e:6e:bf:13:37:a6:c4:62:f2:
c0:60:71:46:3f:38:19:f6:41:fc:e0:02:b4:46:5e:86:d4:28:
fa:df:e4:f3:81:a6:df:94:68:05:4f:0c:d7:16:da:14:02:6c:
e4:7a:02:5d:fe:34:a6:f1:8d:22:84:e6:77:66:65:ad:24:71:
1e:25:88:40:82:ed:88:c1:73:ba:8f:6e:1b:12:75:f8:7e:79:
c3:4c:3f:5d:39:19:04:81:f8:7b:d9:a5:db:12:ee:b7:95:a8:
a4:5a:89:62:9d:60:88:49:80:c8:c7:20:87:d3:cc:94:ff:b8:
f8:24:b1:81:e2:39:ab:62:81:28:c2:23:cc:5e:3c:1a:a7:f2:
7d:91:ba:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:53:09 2026 by rpki-client