Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json)
Hash identifier: WYFKLWhNp4fO2nVDS61MAdRcKVLZaKNR0lJXKSD9YCY=
Subject key identifier: 85:41:5C:50:3B:93:E4:32:21:47:E1:CB:EF:B1:68:8F:C7:A4:42:0E
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 019EBFFEF77A1A691C25D9C80D48CC8420B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 08:00:18 +0000
Manifest this update: Sat 13 Jun 2026 08:00:18 +0000
Manifest next update: Sun 14 Jun 2026 08:00:18 +0000
Files and hashes: 1: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: tCEIOEfo5G0Kz7lUMCmaNVresSkesynxm4oxCD+6tC8=)
2: s_Oj6JBKTNB4x3fb0XdQ9zvwP1o.roa (hash: 0jQdDlhdIZaz2WGN97YHIXqbtv/kRGloASKQBe2397Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:fe:f7:7a:1a:69:1c:25:d9:c8:0d:48:cc:84:20:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: Jun 13 08:00:18 2026 GMT
Not After : Jun 14 08:00:18 2026 GMT
Subject: CN=85415c503b93e4322147e1cbefb1688fc7a4420e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d2:e7:ae:ec:b1:8f:b5:82:41:89:48:fe:84:
5b:62:c8:29:ca:7a:fe:30:4e:67:d5:be:62:1a:f2:
37:72:01:10:cf:25:72:cc:9b:c4:00:2a:02:40:d8:
f6:a3:c0:40:73:c1:94:5a:fd:f8:fe:f5:a2:9c:fe:
b5:51:1d:3f:33:70:7a:61:0d:d9:c7:c8:7a:4f:1b:
28:af:c9:64:e6:b8:0a:34:29:ea:dc:db:71:b4:b8:
9e:ab:9c:99:4a:a2:ba:72:ae:cc:e6:05:25:07:a5:
94:57:ae:60:f9:92:12:df:37:a5:e4:71:b4:fa:4c:
cb:f7:af:80:f3:97:78:4d:82:91:35:a6:49:8f:ce:
11:ba:9b:26:35:43:6d:3a:03:ca:18:67:a5:bf:65:
59:f8:58:23:bf:4b:f9:5a:c5:7a:89:3d:7a:59:eb:
71:72:f4:3c:22:89:5c:4e:08:07:55:3a:70:38:e1:
0b:ca:c8:ab:11:f1:03:24:2c:b5:ff:d4:5c:8c:91:
1e:ca:27:b7:02:0b:7d:3d:ea:a5:eb:bd:63:f1:12:
97:f2:0c:a7:c2:0f:76:52:1d:3c:28:96:27:46:6d:
bf:0e:52:0e:16:10:65:fa:7c:76:87:75:f9:5f:fe:
c7:52:30:91:d1:97:40:35:49:c8:e0:20:17:68:ad:
eb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:41:5C:50:3B:93:E4:32:21:47:E1:CB:EF:B1:68:8F:C7:A4:42:0E
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:a6:1d:90:7f:a4:76:ba:f5:66:b6:b9:e9:73:35:46:82:d4:
f1:95:be:4d:89:c0:4b:68:42:f0:f3:36:98:68:7c:29:66:37:
51:7b:38:0b:c8:19:db:2d:08:38:a0:02:48:d8:67:71:70:74:
e6:54:e7:0e:0b:b7:d9:9f:40:c6:61:d8:b1:bc:d4:b9:eb:e6:
ca:63:23:66:14:59:f1:3c:78:78:66:ca:fb:72:25:b9:28:b2:
c4:c4:fe:ba:fe:2b:d1:ff:e1:53:93:8d:32:04:43:c3:94:a7:
00:a1:82:85:02:7c:93:6e:51:19:c6:c6:68:db:f5:73:70:02:
51:dd:02:64:40:2a:82:7b:c2:72:fa:58:74:06:34:2d:a3:9b:
f9:8f:1e:95:df:b9:90:90:a7:37:08:aa:a2:0b:94:54:6c:ba:
66:01:7f:2d:ab:c2:4e:4c:76:92:1d:6c:38:61:67:86:59:51:
46:65:1e:e0:fd:59:bf:31:2e:74:71:69:ae:c8:ad:4c:94:2c:
4d:bc:98:0d:27:b0:d3:a9:08:9e:54:2e:18:df:26:a6:08:86:
2e:ad:73:2b:d5:e7:d7:c1:2b:85:bf:8a:a4:8e:7c:65:e6:05:
0c:a4:f3:9b:1d:d9:1a:61:2e:54:df:b7:21:a5:0c:60:e5:fc:
df:10:0b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:32:17 2026 by rpki-client