Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: LwnjrDH4GA5s069TlQcY5awWOJc05NNr8RdkHxuZGXI=
Subject key identifier: B1:96:A1:05:F3:18:6E:97:3C:85:76:BE:D1:84:48:B0:51:A0:C9:9E
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 019EBFFFA9298DEF0F11F540B632B7537920
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 1040
Signing time: Sat 13 Jun 2026 08:01:03 +0000
Manifest this update: Sat 13 Jun 2026 08:01:03 +0000
Manifest next update: Sun 14 Jun 2026 08:01:03 +0000
Files and hashes: 1: 7Mj5v1lcOBzmcBBC8jLwVKnmF6E.roa (hash: FZGMBdbWDI4SBVgHGU6EFIDpQ6waV160tdsD6LVMmXc=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: 7MGWbZmnRwKWuycmW68Xq7TrUK4nK3oCC6v04XiOI54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:a9:29:8d:ef:0f:11:f5:40:b6:32:b7:53:79:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Jun 13 08:01:03 2026 GMT
Not After : Jun 14 08:01:03 2026 GMT
Subject: CN=b196a105f3186e973c8576bed18448b051a0c99e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:13:25:d4:41:ba:f7:a3:29:3f:bd:f0:03:d1:
8d:d8:1e:05:6c:48:55:b6:5e:bb:92:20:83:a1:e8:
b1:e2:00:32:ec:27:56:55:55:b0:ca:75:f2:50:e0:
b2:3e:cb:b0:4d:5c:bf:54:87:16:c7:f2:76:81:51:
c6:70:eb:9c:fc:f5:72:10:de:c4:6a:cd:49:90:94:
d9:27:89:5a:12:4b:03:9a:9f:3c:d4:03:79:66:3b:
d5:81:ae:1c:5c:4c:47:98:19:70:77:a5:4e:1d:4d:
36:18:45:01:59:72:e5:ef:2e:f9:ed:78:f9:2d:b1:
f2:42:7b:6c:bb:a9:a7:9c:1c:9d:b4:a9:ab:3a:fd:
af:6c:0b:b2:fa:47:82:11:10:8d:b4:f9:15:5a:1c:
ac:73:0a:d0:b7:b6:f4:de:de:a1:dc:64:71:ea:e6:
ba:fb:52:a1:8d:d4:b8:17:01:38:bf:7b:f8:4d:2c:
36:56:bc:33:ab:50:9f:17:fc:7a:09:50:ec:f8:5a:
25:a8:f8:11:28:cd:d7:62:e3:14:dc:f1:62:4b:07:
b3:9d:9f:62:7d:03:04:05:98:1d:3d:61:5b:3f:58:
46:c5:bf:ec:cf:fc:be:39:f3:2c:ea:f6:35:e6:2c:
ec:a2:5e:e6:5e:b5:14:a8:25:76:a0:f9:39:26:74:
04:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:96:A1:05:F3:18:6E:97:3C:85:76:BE:D1:84:48:B0:51:A0:C9:9E
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:16:2e:4f:bd:b8:3a:8e:1f:93:c0:30:56:49:6d:b9:4f:cf:
84:ef:f8:41:42:aa:e9:76:94:03:94:97:be:42:c4:ae:66:19:
e9:0b:81:26:ef:df:06:48:49:71:a8:da:eb:74:f0:fb:99:ea:
df:98:f0:82:65:04:fa:a0:8f:fa:e2:b1:fd:44:44:d3:1a:bf:
ee:44:b5:84:5f:46:05:54:05:5b:53:6c:be:e9:99:ac:e7:a5:
f8:d4:c2:7c:bd:64:51:58:0f:d7:89:fd:12:4a:8d:7c:54:2e:
75:1f:f6:0a:f7:c9:4a:31:40:81:c3:c1:f2:8d:aa:7b:d3:d8:
04:14:9e:80:7f:e6:a8:43:fc:46:1b:bc:db:0a:f3:5c:60:9f:
0c:e6:e7:84:57:c8:e1:4d:79:05:75:c3:b1:0b:b8:be:80:8b:
74:44:1e:0f:24:8d:16:3d:10:30:a0:0b:36:02:87:fc:be:87:
56:a8:e0:62:0a:eb:97:cf:67:83:e3:b5:2d:72:55:44:59:08:
94:0d:aa:f5:1d:44:fc:d1:53:8a:82:19:fe:14:1e:82:c1:af:
10:39:d0:77:5a:bf:b9:8d:95:60:c3:51:09:12:e0:21:10:5e:
82:2c:59:8e:95:25:16:44:e8:3d:d1:4c:92:a8:b9:0f:f3:d4:
79:e2:17:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:17:55 2026 by rpki-client