Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: 09HnKolaRuC8/zW3EWtq9kx7igdoarFEYcakJuRI7bw=
Subject key identifier: E9:0A:D2:EF:E7:F2:2A:D3:A0:22:15:C6:4F:93:45:24:74:7A:8F:D9
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 019DA3AF12731A46C31C4E054F1B68A0980E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 0831
Signing time: Sun 19 Apr 2026 03:00:52 +0000
Manifest this update: Sun 19 Apr 2026 03:00:52 +0000
Manifest next update: Mon 20 Apr 2026 03:00:52 +0000
Files and hashes: 1: TxCuEKO4UFBws6tMJ89yfNDgvSA.roa (hash: ye0le9kc8j89F6B3VF5KOiTRqH3PrXwEdQjOQuRJ7Js=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: l1MdnuZZAfgMVaRTh8BA0dIvBsLoQU2w6dblUa6ph/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:12:73:1a:46:c3:1c:4e:05:4f:1b:68:a0:98:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Apr 19 03:00:52 2026 GMT
Not After : Apr 20 03:00:52 2026 GMT
Subject: CN=e90ad2efe7f22ad3a02215c64f934524747a8fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8a:db:02:c7:f5:04:d1:47:ee:8b:ac:df:80:
4b:7d:c4:c3:ab:9b:95:ac:b2:30:a1:c1:15:2b:53:
7d:02:0e:f2:19:d0:9b:9e:d5:84:6d:66:96:ac:78:
5f:24:5c:0b:1e:be:a1:22:ea:be:41:93:5f:f8:3e:
a7:2d:db:13:6c:86:a1:c1:a5:db:35:ff:83:bc:eb:
9a:3d:e3:5b:e6:60:71:7c:48:70:79:d9:a1:e5:27:
16:96:6e:bc:e2:cf:69:8d:87:15:b7:7f:a7:4e:00:
6a:76:fc:e4:93:eb:c1:f2:53:e1:1a:8d:bd:47:a0:
78:7e:f3:35:f9:19:f1:a5:68:5e:fd:da:f7:80:02:
2f:5b:f4:42:dc:20:a9:c4:6d:1c:bf:d6:ae:02:60:
42:b6:26:f7:a5:ac:1b:eb:de:86:86:1c:cd:11:9f:
7d:aa:2b:49:b1:d8:47:9c:48:2c:6c:59:2a:e8:cb:
d1:a3:c9:09:41:6e:52:42:e7:42:b1:22:46:ab:5b:
ee:c3:83:a6:5a:3b:d4:79:38:5e:35:b1:06:b4:38:
88:d5:72:f2:fd:dc:92:5f:1e:bc:ab:e0:8b:0a:90:
d8:5a:b4:dc:81:d8:5a:2c:76:25:b1:5e:31:20:1b:
ac:d5:fe:dd:b2:2b:48:0a:9d:82:7f:40:f1:99:7b:
9a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0A:D2:EF:E7:F2:2A:D3:A0:22:15:C6:4F:93:45:24:74:7A:8F:D9
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:b0:39:00:7d:20:92:b9:93:04:51:87:21:c7:87:e4:79:52:
8d:ba:68:4c:53:7d:1f:69:db:b8:92:f5:d1:1b:c4:5d:7a:e4:
03:95:c7:5c:6c:eb:57:17:ea:c2:57:52:35:3f:77:c2:b3:ae:
6a:06:11:7c:0c:d1:98:b0:77:90:f6:0b:a8:df:d6:f9:57:bf:
58:3e:53:6e:14:58:66:28:34:9b:3e:6e:5f:6e:d4:a9:59:77:
69:90:f9:32:e8:19:d0:fe:4d:c1:79:88:36:0e:c8:0c:4f:1e:
58:b5:26:ce:a3:df:e0:95:32:a4:e1:c0:fd:15:81:15:4b:95:
19:7e:e8:d1:96:e8:c8:bc:b1:f6:37:e1:ae:02:39:fe:64:8b:
c1:4c:d7:97:80:16:70:c9:f1:f6:60:31:fb:bf:b1:4a:60:4a:
d0:eb:39:1f:b9:9a:6d:d4:f0:a7:95:9e:27:52:a8:c0:79:7c:
9b:4a:de:e1:27:e2:3a:4c:1b:c0:2e:3e:d7:ab:c9:7c:b6:97:
31:be:d0:fa:8b:b1:1c:3f:0c:dc:2c:95:f6:cd:41:14:8e:1d:
32:2d:63:4b:ac:50:d4:3c:fd:bd:4e:c9:d0:06:1a:e3:a1:69:
81:2b:b4:5c:eb:84:e7:50:16:a7:c3:3f:b5:a8:8f:e8:63:f1:
75:6f:a6:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:26:04 2026 by rpki-client