Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
File: AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft (raw, json)
Hash identifier: 2Vh315s+kj+9JbPKqFo7a47qgPY18aGp8iECei6bS20=
Subject key identifier: 80:86:30:88:10:BF:E9:50:C8:5D:A1:7F:9E:C9:27:F0:81:07:B1:21
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 019D3909FE162E3F807E5C58219718B57394
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
Manifest number: 106F
Signing time: Sun 29 Mar 2026 10:00:49 +0000
Manifest this update: Sun 29 Mar 2026 10:00:49 +0000
Manifest next update: Mon 30 Mar 2026 10:00:49 +0000
Files and hashes: 1: AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl (hash: d6LDSdkWjIJORQlot+JhTKKE5+mf/i/sLkXju6hZee4=)
2: Bi1XXzWo6lnTEVYADTXqjFg4Phs.roa (hash: CcN3AAar9jL+JjbAjisL+jzrcTOAzrlyvwRjw6mb2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:fe:16:2e:3f:80:7e:5c:58:21:97:18:b5:73:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: Mar 29 10:00:49 2026 GMT
Not After : Mar 30 10:00:49 2026 GMT
Subject: CN=8086308810bfe950c85da17f9ec927f08107b121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8c:bd:a1:54:b3:95:f9:e7:e8:fc:4e:28:ba:
80:13:39:14:15:76:b7:3a:37:1c:bc:9f:64:f6:43:
bd:0e:f3:74:90:1f:40:e2:03:26:12:89:b4:2e:20:
1c:73:d0:83:ae:8e:5f:ae:99:9f:67:36:d9:99:6b:
12:40:b2:b8:4e:3a:4c:f2:72:11:66:ed:83:42:3f:
e9:b8:1d:68:50:ce:3d:3f:4e:67:53:13:c3:2a:1b:
11:25:2b:ea:bd:ad:f5:e3:6a:1b:50:49:19:1d:08:
5b:fb:3c:e6:6f:39:ac:79:cc:84:9d:d9:cd:ff:d8:
1b:41:ab:ca:ff:64:3b:bb:19:26:1f:84:07:dd:5e:
38:b0:2f:79:2b:52:ce:1c:c3:c8:b8:68:16:02:5d:
a0:52:f4:63:99:8c:a6:b6:24:a0:7f:c1:66:36:d5:
0b:36:89:8f:82:33:85:06:72:70:d5:e2:5f:bf:30:
4a:60:9b:f4:8d:21:cd:a8:59:19:b1:b5:15:08:87:
18:af:45:6e:de:f2:e3:0f:93:cf:00:02:59:59:94:
40:7b:78:f8:50:1c:e9:cd:55:1c:06:74:62:29:fc:
78:f7:c5:bb:91:50:8c:0d:5c:59:2d:c6:98:3f:38:
c9:eb:88:94:eb:09:62:7d:f6:74:79:ca:19:e4:53:
f8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:86:30:88:10:BF:E9:50:C8:5D:A1:7F:9E:C9:27:F0:81:07:B1:21
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:26:fb:17:b9:cd:74:94:63:84:d0:ae:7f:fe:c6:cf:5f:ff:
a0:6b:2a:ce:d7:e0:29:4e:4f:43:05:16:82:98:82:c5:08:5c:
b7:d9:9c:e1:a1:89:61:98:f4:0a:a9:95:29:fa:e3:06:1a:bf:
9a:01:17:6a:4a:a6:ec:b7:cb:7a:c0:33:0a:02:70:8d:5b:4c:
6f:63:e8:5d:2c:08:47:40:d6:fa:c9:e5:9b:34:54:6f:fe:c5:
c6:ce:86:f0:bd:a4:5f:76:a7:c8:20:0c:8d:1a:c7:cb:8a:a6:
77:d8:2f:20:de:92:6d:05:cd:fe:37:8b:48:68:21:b7:c4:9d:
e6:77:50:61:be:ec:f5:d1:2e:8d:79:f4:dc:98:c6:87:f5:3b:
30:1a:d5:6f:b1:38:cd:8c:26:3d:92:e2:53:4f:67:21:35:16:
50:a8:3f:bb:f9:c3:b0:f3:81:b2:72:96:1c:45:40:32:2f:84:
29:bc:c4:c7:5a:b1:55:e3:08:b2:6e:aa:10:aa:48:8a:9a:0c:
ae:50:6e:83:8f:63:20:fa:6a:21:aa:f9:d7:42:fe:2c:f6:08:
91:af:d4:43:cf:6c:40:45:b2:53:5e:59:18:6b:90:6e:06:5b:
b6:d2:b0:0e:59:86:10:72:d4:a9:62:ba:9a:10:29:2d:08:dc:
61:9f:55:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:01:08 2026 by rpki-client