Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
File: AFetCa6aGpgBInWFGqvmnk4VovQ.mft (raw, json)
Hash identifier: 6v0RKBsbt8eUb/+RHreWSYsI0WhCyP2uATa9kHZLiiw=
Subject key identifier: AE:B2:8E:A0:1B:FE:D6:1A:48:09:2B:FD:B0:0C:7D:FD:6E:08:F7:FC
Authority key identifier: 00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4
Certificate issuer: /CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4
Certificate serial: 019E30DFF5A0958AAA2A5877B36126A858C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
Manifest number: 11F8
Signing time: Sat 16 May 2026 13:00:44 +0000
Manifest this update: Sat 16 May 2026 13:00:44 +0000
Manifest next update: Sun 17 May 2026 13:00:44 +0000
Files and hashes: 1: AFetCa6aGpgBInWFGqvmnk4VovQ.crl (hash: RF58os+T/owDWnQomsnbp2LEVYnzN9EoBbrTlb3jwmA=)
2: YF-tWCFsSuAIoswUePA1e2Wc2vc.roa (hash: pEIfFvCDAADSX4Ka/xFTpfoKfdGNNPSk4G6XnaiqnGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:df:f5:a0:95:8a:aa:2a:58:77:b3:61:26:a8:58:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4
Validity
Not Before: May 16 13:00:44 2026 GMT
Not After : May 17 13:00:44 2026 GMT
Subject: CN=aeb28ea01bfed61a48092bfdb00c7dfd6e08f7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e7:91:1e:c6:f3:8f:dd:cc:4c:ba:2d:f2:c5:
46:76:b6:c7:d5:e5:9c:be:09:a0:10:ae:af:38:7f:
b9:ae:a4:a8:17:76:bb:cb:ff:78:75:7c:af:6e:06:
f1:46:45:9a:bf:2a:4c:39:3c:92:ee:92:65:77:8a:
0e:4a:a2:95:a4:49:a0:5f:88:46:e0:69:51:68:8d:
83:ba:5b:e9:47:09:95:6c:42:70:92:7c:04:6f:e6:
f7:b6:60:37:8c:84:d7:e1:f8:4b:cd:76:b2:7a:52:
59:7b:f6:7b:05:0a:b8:bd:4e:c9:38:d3:46:c1:80:
3d:04:fc:9f:80:31:d6:f8:b7:7f:84:fc:e9:d1:13:
3f:13:0f:6b:92:1e:3b:1a:7a:cd:d1:ea:5f:b1:16:
0e:29:00:65:d5:2d:d2:3f:45:d9:c5:ba:72:f6:bf:
3b:6a:9b:ff:d2:95:24:19:5e:d7:5c:5d:06:22:8a:
f9:28:1d:4b:2d:8d:56:69:fd:22:a6:90:1d:0e:b3:
6c:a5:d3:f8:a1:5b:62:a9:16:a5:1b:92:fb:fc:46:
e6:ab:7e:03:4e:95:e1:94:2e:e1:a7:6f:b1:75:6c:
39:4a:cd:80:0e:a0:fa:25:8c:cb:b0:03:2c:d0:3a:
aa:23:c2:c2:63:9b:77:6a:21:6d:15:98:f9:f4:09:
3d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B2:8E:A0:1B:FE:D6:1A:48:09:2B:FD:B0:0C:7D:FD:6E:08:F7:FC
X509v3 Authority Key Identifier:
keyid:00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:3d:3d:9e:b9:2c:ac:49:67:ee:5e:73:83:bc:b3:82:66:02:
9f:9a:e0:eb:6b:8e:6d:61:ae:96:22:da:fb:d5:e7:b9:fb:86:
d0:43:4e:a0:d4:51:ad:fd:44:be:30:4e:67:bc:a3:0c:55:be:
d6:f0:20:9b:60:95:20:27:8e:36:85:a4:46:c1:2f:fd:fb:a5:
91:85:de:3e:e8:fd:d2:d8:28:85:9c:c8:6e:15:4b:52:32:77:
b9:36:b9:df:1b:97:a3:45:56:39:d9:c5:ec:31:fe:b2:ac:cf:
41:fb:95:9a:be:34:3b:b9:98:e3:c7:0b:52:a6:e4:a2:ed:5a:
4c:95:21:02:d2:7b:45:a1:bc:1f:b2:3e:18:61:91:ac:72:95:
6d:81:a0:3e:78:30:ec:d8:24:f2:5d:cf:47:cc:2f:bd:a8:51:
5f:73:c0:51:47:91:4f:e6:2d:67:fb:83:cb:c2:f4:a6:b7:c4:
9b:55:66:54:80:76:b4:90:21:63:fc:b9:49:b0:1a:df:37:29:
34:ca:89:cb:5a:a5:14:91:bb:ff:8e:47:4c:20:88:f9:ea:86:
80:c0:46:b9:42:65:2c:a2:68:84:a4:b3:67:33:30:5a:ce:70:
04:08:f5:3c:bc:5b:28:dd:3b:37:6a:fe:26:05:48:3f:90:46:
23:33:90:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:40:11 2026 by rpki-client