Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: 3teptuAy3H65iZ8BCYnYkC0vPtVxKC9BKpzvUOdyZxk=
Subject key identifier: 2B:15:AD:FF:07:A7:32:0F:21:1C:22:FC:B3:FA:2B:D1:57:D3:EC:FC
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 019D98869A352EDC686C7305842EB75151AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0FA7
Signing time: Thu 16 Apr 2026 23:00:51 +0000
Manifest this update: Thu 16 Apr 2026 23:00:51 +0000
Manifest next update: Fri 17 Apr 2026 23:00:51 +0000
Files and hashes: 1: 7Mj5v1lcOBzmcBBC8jLwVKnmF6E.roa (hash: FZGMBdbWDI4SBVgHGU6EFIDpQ6waV160tdsD6LVMmXc=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: c+GMq8vfCmNXEp8IR/ZShzoiJj38UPfpu07s3yl2bZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:9a:35:2e:dc:68:6c:73:05:84:2e:b7:51:51:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Apr 16 23:00:51 2026 GMT
Not After : Apr 17 23:00:51 2026 GMT
Subject: CN=2b15adff07a7320f211c22fcb3fa2bd157d3ecfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b7:9b:70:21:c4:85:f8:27:61:f5:0b:2d:00:
a3:da:e8:ed:01:ed:00:50:d8:ca:b2:94:a8:a3:5d:
ba:b3:e1:f5:42:4d:49:b5:87:2b:fd:55:0b:9f:fe:
50:2e:ed:c6:3f:7d:2e:07:0c:b6:3c:75:5d:ec:73:
b4:64:cc:a6:ba:af:29:18:80:e2:1f:64:f8:10:b5:
3d:41:9d:69:14:01:21:bd:2a:26:38:97:e0:d4:7f:
53:04:da:b2:f6:b7:6f:b2:a8:61:08:e1:87:5e:bb:
aa:90:d3:78:ce:da:18:a7:d5:28:cb:6c:af:1c:3a:
90:fd:16:12:c8:6f:5d:c0:db:f9:88:6c:28:e6:a7:
8e:72:43:31:9b:87:63:66:ae:2b:3b:88:04:de:7e:
3c:38:79:76:8f:f6:5a:af:3c:6a:5e:7f:70:78:20:
f6:15:6a:b1:aa:4e:01:24:52:3d:99:bb:a3:03:19:
46:4c:bb:7d:af:15:59:cf:e8:53:c9:ef:65:86:3c:
9b:3f:bf:e5:43:b1:57:fe:fe:0c:b8:02:6a:ef:53:
aa:f9:cb:f2:e8:21:8d:01:e8:35:91:d4:75:e1:41:
7f:5f:1f:26:12:2b:08:20:6a:ea:94:a5:97:73:e5:
39:f9:51:19:76:40:00:c5:9b:1c:57:b4:32:41:4b:
4c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:15:AD:FF:07:A7:32:0F:21:1C:22:FC:B3:FA:2B:D1:57:D3:EC:FC
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:66:26:05:0e:07:03:de:62:d2:1b:ee:8c:15:99:a0:6c:12:
47:a7:37:8d:71:b8:49:aa:e2:f2:f8:c9:f5:e0:21:5e:4f:45:
6e:e2:3e:4d:26:5f:13:49:a4:8b:d7:4a:86:05:f7:4f:2a:8c:
a8:bb:93:72:c2:6e:e2:a9:9c:2d:8c:19:ac:e4:75:e8:bb:64:
2d:e4:c2:80:ce:61:6c:8b:8a:cc:7e:ed:a4:ff:e6:a9:20:65:
b5:07:eb:e0:24:c2:8d:7f:7c:cc:91:d8:9f:4f:a7:5f:47:2d:
68:80:cc:4c:00:44:c1:7d:62:d9:63:0f:e3:37:1c:75:03:1b:
a4:8c:7e:da:17:aa:59:42:15:73:f0:0e:e7:d3:e0:aa:28:07:
bc:ed:89:43:fa:d3:d6:8e:8c:8c:79:4c:fe:de:b9:03:50:5c:
f8:89:f7:c7:48:eb:84:17:9f:ab:63:0e:80:a2:ed:8c:f0:d8:
10:9d:92:77:32:ba:b8:b2:d2:7d:10:0c:c5:89:57:19:fe:ff:
b4:80:04:d1:4e:07:b5:b6:34:a5:94:fa:82:14:6c:12:bc:f4:
24:7f:69:10:1d:6f:09:8b:2d:df:b2:9d:36:62:ff:42:58:e7:
9b:5b:36:d4:4c:69:a1:d8:d0:35:29:6c:e9:a0:9b:08:88:16:
cd:88:60:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:47:29 2026 by rpki-client