Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: VBnVtK6IDoeP3qQQKKFcV3A/5cGDViVXn9PlPVIC70o=
Subject key identifier: B0:C6:E8:DC:47:C7:5D:CA:75:CF:D1:63:1C:A5:F0:B7:F0:B3:C1:35
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 019EBF91555996ED5A69DAECB877B2B69883
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 08C4
Signing time: Sat 13 Jun 2026 06:00:33 +0000
Manifest this update: Sat 13 Jun 2026 06:00:33 +0000
Manifest next update: Sun 14 Jun 2026 06:00:33 +0000
Files and hashes: 1: TxCuEKO4UFBws6tMJ89yfNDgvSA.roa (hash: ye0le9kc8j89F6B3VF5KOiTRqH3PrXwEdQjOQuRJ7Js=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: Go6mhAhaywQfqxw6f2ZTY21qhLjxIZtCxgu2dpUKuGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:55:59:96:ed:5a:69:da:ec:b8:77:b2:b6:98:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Jun 13 06:00:33 2026 GMT
Not After : Jun 14 06:00:33 2026 GMT
Subject: CN=b0c6e8dc47c75dca75cfd1631ca5f0b7f0b3c135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:66:45:8a:5b:6e:56:1c:49:e5:9b:5d:21:de:
49:20:01:24:91:78:fb:29:98:90:f3:55:c1:bd:92:
f7:d7:ec:90:ad:c1:f4:8f:82:93:97:64:26:73:48:
f3:0f:b8:c9:d4:d7:8f:11:3a:46:c6:7b:52:57:96:
79:68:ee:12:bb:0d:6b:8f:01:2a:7c:77:a3:f9:ba:
cb:b9:1c:37:7f:af:8a:77:9f:dd:2d:df:2d:98:56:
71:03:c2:f2:dc:7a:e1:d4:32:c0:96:a4:06:ec:f9:
14:0c:f6:36:85:a5:49:c0:8e:51:2f:55:29:7e:bb:
69:ae:3f:ea:9a:d6:93:bb:0a:c5:8e:4c:c3:e9:55:
0b:fa:b5:6d:05:b6:5f:24:02:84:f7:e2:ae:17:b0:
75:73:91:bf:b1:54:39:bb:dd:a0:68:8d:85:0f:4e:
5c:d2:d3:13:00:71:8a:0a:42:f6:90:e5:86:f4:c1:
b8:09:6c:f5:6c:23:15:48:ac:e2:ae:2b:5f:9a:ad:
ea:26:22:ee:7d:12:a2:be:85:6c:39:76:ab:f2:b5:
a2:81:15:6d:69:95:68:dd:e8:ca:0a:0e:fc:0d:bb:
be:ee:b3:81:23:b8:7f:b8:5f:e5:13:74:31:7d:8f:
5e:b8:47:e2:5d:18:0d:75:d6:c4:ba:e3:e7:57:4e:
33:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C6:E8:DC:47:C7:5D:CA:75:CF:D1:63:1C:A5:F0:B7:F0:B3:C1:35
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:80:98:ea:50:48:9c:59:0b:91:76:b6:c9:04:ed:94:ed:e5:
aa:9f:5a:59:b8:e0:8b:d9:2e:98:6e:85:5a:65:16:0d:b5:b6:
6d:df:1f:b0:64:a4:9d:fc:d5:d4:60:21:d8:16:5b:08:ba:c2:
0b:a2:be:b4:70:c3:61:c6:94:f9:59:29:3a:be:d0:fd:89:64:
32:80:bd:76:c7:37:e7:80:ee:94:fa:83:e0:6f:85:0f:cb:67:
1f:af:cf:9b:3b:69:35:36:2d:d8:1e:64:d3:29:51:a6:9c:c2:
16:b4:9f:6d:df:54:e5:08:eb:2b:dd:1d:b7:1a:23:f7:60:ad:
d5:23:90:9a:48:c0:ec:b4:7d:5a:61:8b:24:18:8f:7b:3e:d9:
69:e1:9e:d2:fa:96:af:b1:d5:d4:a8:1e:8f:c9:8b:ca:e6:6b:
c7:68:ea:71:0d:04:ad:1b:2b:07:6e:9c:71:0f:1a:87:0c:51:
eb:fb:c0:a2:e8:c6:ac:11:ad:98:0e:93:ce:c7:da:f6:63:7c:
81:8b:f3:5a:ff:65:52:29:09:e8:30:71:5e:b2:47:0e:a6:54:
c7:3c:b9:b8:f5:86:91:04:05:fd:c0:f0:34:35:a3:bd:db:06:
7c:dc:f6:7e:d6:99:b4:7c:3e:df:b1:2d:ea:68:3b:fd:0a:89:
17:fe:44:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:47:50 2026 by rpki-client