Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
File: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft (raw, json)
Hash identifier: L2NSRhBln1EUTHWrD31v3Ey3It2So1danzirwMaDZ84=
Subject key identifier: 52:89:1F:19:F7:D5:B0:9B:40:B5:ED:FE:49:CB:18:8A:FC:1B:62:E2
Authority key identifier: 6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
Certificate issuer: /CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Certificate serial: 019CACB4FDA43EE86908C31C12FEC184C078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
Manifest number: 0607
Signing time: Mon 02 Mar 2026 04:01:08 +0000
Manifest this update: Mon 02 Mar 2026 04:01:08 +0000
Manifest next update: Tue 03 Mar 2026 04:01:08 +0000
Files and hashes: 1: 0Dg7ApkC7AP2Avn6x1J-1flmrKg.roa (hash: qG/3sEaE6hIKkBZX7yiUf0VUZdejvNknPMp0eVon50w=)
2: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl (hash: 3XC0O6tTJpOFBYS5NfIR4smG9rGvzhgCyVUR8A7n+X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:fd:a4:3e:e8:69:08:c3:1c:12:fe:c1:84:c0:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Validity
Not Before: Mar 2 04:01:08 2026 GMT
Not After : Mar 3 04:01:08 2026 GMT
Subject: CN=52891f19f7d5b09b40b5edfe49cb188afc1b62e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:42:54:ab:ec:5c:7d:d3:27:55:e9:23:05:
2e:1e:70:4c:8c:6c:87:c2:d2:8a:cc:6f:ae:4a:3d:
d0:ca:d4:12:fb:dc:a4:6b:0a:a9:14:59:a7:70:ca:
67:c2:dd:5b:67:c3:1b:eb:3b:42:d8:92:0c:fa:28:
ac:06:d5:8b:c7:87:15:fb:78:ad:8b:ca:47:61:70:
20:d6:13:62:dd:45:4f:fd:14:aa:a0:bb:79:c1:b2:
54:fd:9c:32:02:84:62:4b:ad:c3:85:38:e0:a3:27:
ae:b1:03:db:89:9d:12:ae:7c:75:22:2f:81:8a:12:
a9:5c:27:7a:54:4f:72:59:40:ba:12:e5:0f:34:f8:
53:ee:9b:dc:df:16:4f:94:3e:b2:5e:97:bd:a1:c3:
e1:d3:e9:8e:8d:1c:0a:46:f6:54:af:01:1b:ff:dd:
ec:b9:db:fc:4e:a1:6a:13:7e:a1:91:d4:02:3a:cd:
ca:a7:87:ca:59:bc:72:e9:96:fc:53:69:a1:a7:48:
74:4d:c3:eb:f5:c7:03:5f:bb:a7:1c:09:4c:03:88:
8a:32:1e:79:71:94:aa:66:0d:63:e5:fd:a5:c8:d3:
30:79:bd:1e:36:94:74:12:5c:72:bf:63:bc:a8:d7:
58:5e:8b:2e:c2:22:6c:0e:b7:4a:12:0a:2d:e6:a3:
b8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:89:1F:19:F7:D5:B0:9B:40:B5:ED:FE:49:CB:18:8A:FC:1B:62:E2
X509v3 Authority Key Identifier:
keyid:6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:b6:b7:0d:72:5d:2d:26:f6:51:3b:d5:56:d0:14:b7:15:6b:
6b:d6:13:30:0d:82:bb:8b:13:4f:dc:5e:5d:61:00:bf:0f:02:
e9:d8:fe:08:ff:5a:ed:d1:46:a2:b6:6f:22:de:17:40:5b:35:
9e:08:70:77:b2:51:05:4f:2c:22:ca:32:f9:46:5f:a5:43:5c:
cc:f0:ad:fe:73:dc:60:42:36:b1:9e:d8:28:82:04:da:68:e4:
d1:71:5e:89:9d:c0:85:70:c6:eb:93:48:ac:5f:b9:89:02:4b:
de:f1:85:30:f7:f6:ff:5c:c2:01:c9:bf:c6:ca:30:dc:35:d6:
6f:55:e3:7f:cc:bf:24:6a:ba:98:4b:6d:69:8e:a2:2d:d6:ef:
75:89:18:68:e7:1a:8b:0c:b0:f4:55:76:3a:af:00:ab:fd:76:
0f:03:1d:0c:26:32:70:6c:4d:08:0d:3a:42:a2:e9:c7:f6:f4:
23:fd:f1:e0:9b:15:92:0d:0c:78:03:98:bd:97:3c:33:50:1a:
f5:57:13:89:09:0b:02:7e:28:97:e5:2c:50:07:18:f2:a8:7c:
6c:16:fd:f3:c4:61:b3:b2:6b:5f:65:cd:00:9a:71:1e:49:ed:
c1:1d:ee:8b:71:49:a5:e1:76:72:1d:c2:6d:3b:ef:6f:28:11:
d9:63:d1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:52:08 2026 by rpki-client