Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: gebAOqA3nw+aZ9vHRrrViGgKRtJ4yw6NrGJv56zUjs4=
Subject key identifier: B6:28:84:73:E8:69:65:D1:F7:58:9A:18:1E:55:4F:D9:18:93:78:94
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 019CACEB8B77138F3E2B1B2DA7D0002D0691
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0F2D
Signing time: Mon 02 Mar 2026 05:00:43 +0000
Manifest this update: Mon 02 Mar 2026 05:00:43 +0000
Manifest next update: Tue 03 Mar 2026 05:00:43 +0000
Files and hashes: 1: 7Mj5v1lcOBzmcBBC8jLwVKnmF6E.roa (hash: FZGMBdbWDI4SBVgHGU6EFIDpQ6waV160tdsD6LVMmXc=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: 3r3qlOgld+QVA+LhrhSg1ST7INQjhYxNpz7dJoQ/WJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:8b:77:13:8f:3e:2b:1b:2d:a7:d0:00:2d:06:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Mar 2 05:00:43 2026 GMT
Not After : Mar 3 05:00:43 2026 GMT
Subject: CN=b6288473e86965d1f7589a181e554fd918937894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a2:dc:f8:fe:f7:f6:7e:cd:62:89:49:3d:86:
1e:d8:02:3e:cc:a5:1e:ac:a5:4b:bf:21:2a:c1:fd:
8d:67:09:64:c8:dc:66:3a:22:5d:7f:76:51:8e:8b:
e2:29:16:26:43:0b:24:5a:4b:e0:7d:c6:87:f7:b4:
cc:7b:38:eb:67:26:34:fd:17:a4:87:1d:bf:1a:57:
29:96:6d:61:19:23:6c:74:84:6c:76:a3:81:b7:54:
8b:41:07:e3:8f:b0:49:d4:f9:a5:ea:8a:0f:ca:09:
97:08:47:d9:1c:84:9c:e4:cc:27:5f:16:42:db:b8:
08:e4:2d:49:96:4e:f9:31:32:00:b7:dd:78:5e:87:
96:eb:f8:8d:8b:d0:31:87:1f:9d:09:27:89:27:33:
f1:37:26:a9:2e:e0:15:15:f0:0a:e3:49:cd:f3:10:
45:c9:c0:4f:82:37:81:13:cb:67:a1:fa:44:7d:f9:
2d:1c:c7:c8:c7:bb:dc:ed:6e:b9:ea:3a:3a:c1:7d:
cb:9d:02:10:52:17:c2:1c:a7:01:38:0b:41:17:7a:
13:27:38:7b:df:43:0d:63:1a:fd:ef:49:c0:b7:6e:
ef:2b:93:14:94:e0:bb:15:7b:2f:c8:bf:75:55:bb:
ad:a2:c0:6f:0b:8f:fe:e6:83:16:ad:87:5b:f7:76:
07:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:28:84:73:E8:69:65:D1:F7:58:9A:18:1E:55:4F:D9:18:93:78:94
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:be:96:e7:4d:2c:4e:52:9b:a1:af:93:31:af:4b:a1:6f:b2:
14:5e:95:73:f6:f8:08:94:57:95:bb:42:b1:49:64:5a:a3:72:
7e:46:d2:40:1c:d6:8a:3e:ef:e4:00:3c:34:94:11:d5:a3:1e:
e3:15:83:f5:85:5e:f1:33:76:21:a3:e4:7c:ec:12:4c:7d:a6:
ba:39:88:2a:00:53:5b:a5:cc:82:6e:62:ad:b1:90:31:bf:2b:
25:e7:1d:cd:f5:6e:ae:b9:83:bc:0c:4f:e1:eb:b6:d2:d9:72:
68:b7:6c:e2:6a:ac:19:96:a2:b1:69:99:6a:28:19:75:8e:c7:
d6:df:0a:d4:35:4d:ee:4a:d3:57:43:64:f3:ea:a4:f3:ab:f8:
00:de:fd:ba:dd:16:bc:75:c0:bb:0b:21:05:c0:c9:1c:02:f3:
99:fa:da:b7:a8:a6:6a:e6:b0:f0:7e:50:49:af:06:b6:22:66:
92:76:2d:12:0d:a3:fb:b2:e1:b5:ee:31:2f:89:15:30:8f:eb:
f6:2f:41:ff:f9:d1:b6:3d:da:3e:23:ce:5a:00:d1:29:67:5e:
91:3b:5c:39:87:cf:4a:25:c9:28:ab:c8:8e:59:de:64:dc:94:
21:b1:ea:10:7c:de:81:d6:0a:c2:92:4d:48:2e:76:55:67:1b:
01:ea:8e:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys64t3E48+Kxstp9AALQaRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YTdjMmM4NGZmYTQ5MzRjZjBmNzNlZjFhMWExYTMzNzg3
MzE4MjYwHhcNMjYwMzAyMDUwMDQzWhcNMjYwMzAzMDUwMDQzWjAzMTEwLwYDVQQD
EyhiNjI4ODQ3M2U4Njk2NWQxZjc1ODlhMTgxZTU1NGZkOTE4OTM3ODk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKLc+P739n7NYolJPYYe2AI+zKUe
rKVLvyEqwf2NZwlkyNxmOiJdf3ZRjoviKRYmQwskWkvgfcaH97TMezjrZyY0/Rek
hx2/Glcplm1hGSNsdIRsdqOBt1SLQQfjj7BJ1Pml6ooPygmXCEfZHISc5MwnXxZC
27gI5C1Jlk75MTIAt914XoeW6/iNi9Axhx+dCSeJJzPxNyapLuAVFfAK40nN8xBF
ycBPgjeBE8tnofpEffktHMfIx7vc7W656jo6wX3LnQIQUhfCHKcBOAtBF3oTJzh7
30MNYxr970nAt27vK5MUlOC7FXsvyL91VbutosBvC4/+5oMWrYdb93YHFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLYohHPoaWXR91iaGB5VT9kYk3iUMB8GA1UdIwQY
MBaAFGinwshP+kk0zw9z7xoaGjN4cxgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjct
ZGI2ZGRiNGE0NGU1LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjctZGI2ZGRiNGE0NGU1
LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVr6W500s
TlKboa+TMa9LoW+yFF6Vc/b4CJRXlbtCsUlkWqNyfkbSQBzWij7v5AA8NJQR1aMe
4xWD9YVe8TN2IaPkfOwSTH2mujmIKgBTW6XMgm5irbGQMb8rJecdzfVurrmDvAxP
4eu20tlyaLds4mqsGZaisWmZaigZdY7H1t8K1DVN7krTV0Nk8+qk86v4AN79ut0W
vHXAuwshBcDJHALzmfrat6imauaw8H5QSa8GtiJmknYtEg2j+7Lhte4xL4kVMI/r
9i9B//nRtj3aPiPOWgDRKWdekTtcOYfPSiXJKKvIjlneZNyUIbHqEHzegdYKwpJN
SC52VWcbAeqOIA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:01:43 2026 by rpki-client