Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json)
Hash identifier: hOURdJtxhmNRHSGktG4rTOwYe/Wbq5gVrQv/HgI4mC0=
Subject key identifier: 7A:B2:E6:5A:45:7A:17:A8:A6:A6:1B:66:D0:4C:AC:09:10:44:28:C6
Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486
Certificate serial: 64BEEC13177F2088EF9F866A8C686E73C467FACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
Manifest number: 0495
Signing time: Sat 13 Jun 2026 04:53:33 +0000
Manifest this update: Sat 13 Jun 2026 04:48:33 +0000
Manifest next update: Sun 14 Jun 2026 05:44:33 +0000
Files and hashes: 1: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: s+9jXzOF/N3v8QmF2/rtKGkD6d5CAVYgJa0qjEs5awE=)
2: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:be:ec:13:17:7f:20:88:ef:9f:86:6a:8c:68:6e:73:c4:67:fa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486
Validity
Not Before: Jun 13 04:48:33 2026 GMT
Not After : Jun 14 05:44:33 2026 GMT
Subject: CN=7AB2E65A457A17A8A6A61B66D04CAC09104428C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8a:28:06:ce:24:2c:a0:e2:f8:40:06:63:18:
5a:aa:66:38:9e:6b:b0:29:db:44:3d:9b:e4:6f:38:
c2:52:98:1b:fd:90:8b:95:3c:28:9f:f4:ad:50:cf:
22:fe:c5:18:92:52:8d:d3:99:78:9a:de:a9:f3:fc:
d6:43:bb:07:2b:df:3d:94:3d:af:d9:c0:4d:45:03:
31:17:55:09:62:9a:bd:61:d0:26:ed:96:76:ad:e9:
66:16:50:88:50:4a:b8:08:20:25:5b:84:b0:1a:3a:
23:a7:85:16:22:0f:b5:10:b9:59:f8:c6:b6:5d:fd:
b0:f0:fe:35:58:4c:ce:41:be:14:0f:8d:82:65:fc:
f1:e3:bd:38:85:35:aa:4a:b3:bd:25:05:76:d8:47:
b8:07:2c:ef:de:57:a4:f2:7d:34:f5:65:b5:b2:ef:
73:80:ae:e4:15:6a:b0:65:de:3a:07:45:1d:19:5e:
9e:b7:e4:20:04:78:d4:4b:42:7f:63:e9:7c:0e:39:
52:b9:ab:9a:e5:de:26:d4:9d:ea:4e:70:e7:a3:78:
53:2d:ed:b8:5d:34:4a:f5:fa:78:19:bb:1a:cd:3c:
16:02:04:17:c0:4a:fb:df:59:16:9c:d9:84:d0:e5:
44:6a:fb:11:de:40:ac:c9:ca:76:bd:c2:d6:5b:74:
6a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B2:E6:5A:45:7A:17:A8:A6:A6:1B:66:D0:4C:AC:09:10:44:28:C6
X509v3 Authority Key Identifier:
keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:1b:89:8a:d7:36:99:44:51:1c:22:2b:9d:98:7c:74:4d:16:
c0:7a:72:85:f4:44:4f:27:ff:b1:cd:79:c5:7e:c4:f1:07:59:
ef:3d:e6:8e:54:78:ef:1b:c6:f9:2d:fb:96:eb:52:b2:1c:9d:
c0:72:b8:21:f6:2e:d7:6c:dc:d0:8f:4b:5f:fc:6d:e9:38:53:
fb:e4:a5:a2:1e:72:73:c4:6d:cd:1d:a7:f9:1a:65:3f:0d:d7:
70:ee:95:82:22:cf:3e:de:17:80:17:a3:a1:f8:cf:88:c8:ff:
fa:f7:21:ef:26:77:78:89:c6:4e:a8:f7:6d:33:cf:29:bf:fd:
ee:c1:d3:29:ad:e1:bf:0e:ed:a9:62:3b:af:87:64:bb:de:5d:
bf:89:50:49:5b:a0:d0:2a:a9:6c:4e:82:31:e1:8a:07:11:ab:
b7:28:10:db:08:4e:a7:54:de:f1:20:2a:94:21:9b:9b:47:36:
d7:b3:50:14:7a:78:ce:27:65:44:90:eb:29:c3:2e:34:cd:dd:
6c:d1:60:92:00:44:b2:27:e8:17:35:70:01:70:d7:1a:1a:ca:
ca:d3:42:ac:4f:a2:cd:93:c9:16:a1:3e:42:41:dc:01:4b:b4:
45:e8:1c:1d:59:63:0b:d2:87:8b:1f:4c:1e:ba:33:8e:8a:41:
e8:f6:57:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:44:29 2026 by rpki-client