Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: E1OVUfS2MOmC2e53XfVtg801b0QPvkYFqNm9aRr9tcI=
Subject key identifier: A6:CB:53:D9:18:8C:8E:84:C4:B3:F0:B3:02:44:CF:D8:73:CF:11:CB
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 019EC1EE29EFD73730F8F509057F819BD825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 18AF
Signing time: Sat 13 Jun 2026 17:01:11 +0000
Manifest this update: Sat 13 Jun 2026 17:01:11 +0000
Manifest next update: Sun 14 Jun 2026 17:01:11 +0000
Files and hashes: 1: HqknbCtl1Axe3TPw1P6jDONpLVc.roa (hash: ZnfnJYZ+e5B0J97RREAVHfbNjcFtOONy33iXAx75Pag=)
2: XUSo3Kod1tZHWF61VODjOx3wrpM.roa (hash: QhGQD15vAX85W4GYn0mpZU7ZappGzzCqkYs2qWxrAto=)
3: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: +vHlyl07sJoJSyVoBrirCPASbHC7vqU9OCRYqszklm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:29:ef:d7:37:30:f8:f5:09:05:7f:81:9b:d8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: Jun 13 17:01:11 2026 GMT
Not After : Jun 14 17:01:11 2026 GMT
Subject: CN=a6cb53d9188c8e84c4b3f0b30244cfd873cf11cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:91:86:38:83:c2:f9:4a:46:16:3f:bc:c4:71:
dc:2d:41:c8:86:10:f9:42:47:64:d3:b8:71:4b:67:
3b:03:ff:a3:28:cf:3a:92:96:00:62:86:65:a5:d1:
c7:d2:72:bd:3f:aa:e9:da:98:ff:32:1f:7f:3b:5b:
ed:35:53:72:70:67:b6:02:d8:23:21:0e:6f:11:14:
70:0f:b5:2e:78:e9:77:e7:c9:2f:a5:76:7a:ec:36:
71:52:2f:1b:66:5e:e2:89:ff:de:0c:f8:00:4a:7d:
68:17:af:0d:02:ca:8a:d5:b0:4c:72:2e:b3:99:c4:
31:dc:0b:b2:f2:1d:e8:ef:00:9e:3e:83:44:ee:18:
71:65:54:ad:e8:dd:91:38:67:9e:fc:92:75:b4:e2:
c0:42:d1:ae:63:4e:64:be:35:ca:20:22:96:4d:72:
ea:f5:8a:31:6d:f9:4a:0e:95:83:72:fc:5c:c8:5c:
83:ff:44:3e:6e:85:30:d0:1e:66:1a:99:a3:51:bc:
3e:a9:2e:84:1f:3e:3d:55:21:e7:49:94:a2:cb:ec:
e6:09:b6:36:c8:72:1f:e0:28:ac:aa:29:d0:d7:d0:
f4:5f:6b:5d:03:58:19:a7:30:ac:eb:1c:5a:9d:93:
dd:f7:2f:21:00:4d:a1:eb:95:ee:cf:df:f7:85:06:
97:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CB:53:D9:18:8C:8E:84:C4:B3:F0:B3:02:44:CF:D8:73:CF:11:CB
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:45:47:cd:e4:37:3d:c3:77:f9:8e:79:eb:06:66:07:6f:fc:
68:27:70:9c:98:d5:8a:23:08:83:41:74:ff:50:53:e5:d3:2c:
f3:e3:8d:78:05:bd:35:44:3d:c1:b3:d4:cb:24:cd:bf:e0:b6:
73:0c:1f:f5:14:95:4f:c7:a8:c7:b7:29:b2:5d:44:cb:be:e0:
f6:65:40:e0:4d:39:be:5c:c6:7e:be:1a:d7:44:d5:ae:ca:37:
db:af:5f:f1:0d:8d:9e:5a:4e:b0:e3:df:23:4d:54:0b:36:52:
50:b5:49:1f:24:c1:ed:ad:23:6b:1c:b5:f4:ee:6d:f8:3d:a7:
5b:6c:c0:4b:9d:13:22:dc:cc:f2:00:aa:d4:4a:26:6d:46:be:
0f:b0:47:70:19:1f:ed:4e:a5:2a:dc:bb:72:55:95:b9:a0:2b:
c6:db:bd:89:9b:8f:22:f6:f4:55:db:61:a5:83:9e:92:86:96:
99:54:4b:fb:43:f1:cd:6b:9e:42:ca:fd:b8:ea:29:0e:3e:3e:
ee:f5:65:4f:a4:1e:a7:a4:aa:a0:c0:50:a7:8e:13:79:3f:0a:
10:51:1f:27:bc:47:e8:e8:5d:5f:ba:9a:c7:19:82:8e:f1:20:
d5:c6:76:7f:1a:7d:85:fd:df:a8:ee:42:a8:56:3d:9b:d8:95:
d6:70:23:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:42:05 2026 by rpki-client