Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
File: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft (raw, json)
Hash identifier: K9UpQ0mvpKpdWIHeCq9A/CYjtec+UGvCL1K0rxPtzY4=
Subject key identifier: 51:3F:79:EA:D8:42:BA:A7:C6:B0:AB:77:D9:AA:6E:09:1E:38:03:76
Authority key identifier: 6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
Certificate issuer: /CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Certificate serial: 019D3A545977DED1B3256A2AD5D00A2AA4D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
Manifest number: 144F
Signing time: Sun 29 Mar 2026 16:01:39 +0000
Manifest this update: Sun 29 Mar 2026 16:01:39 +0000
Manifest next update: Mon 30 Mar 2026 16:01:39 +0000
Files and hashes: 1: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl (hash: GMiCb9dS8mfshS/g9LKJnFqOa30jqnyDVNTwz+CTjQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:59:77:de:d1:b3:25:6a:2a:d5:d0:0a:2a:a4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Validity
Not Before: Mar 29 16:01:39 2026 GMT
Not After : Mar 30 16:01:39 2026 GMT
Subject: CN=513f79ead842baa7c6b0ab77d9aa6e091e380376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b7:ef:99:9c:20:6e:9a:1c:84:60:c8:11:5f:
aa:94:dc:d3:b7:be:90:d4:41:6b:95:a6:97:36:70:
96:c1:bf:8e:d7:22:f7:0a:bb:6f:6c:19:f9:17:ae:
dd:3d:3a:fa:af:e3:d3:63:05:ce:f2:df:5e:39:ed:
2a:72:09:1b:2b:eb:5d:80:32:13:7f:dd:bb:61:ff:
30:fd:24:f3:d8:0b:19:1a:40:9c:e8:b0:54:31:00:
ae:c0:0a:9e:0d:83:f3:4b:f3:03:93:24:1e:6d:1d:
85:dd:dd:5e:74:29:7e:da:73:55:df:70:fb:76:cb:
e9:02:35:d7:20:34:2d:a6:4e:8e:d0:ed:1b:c5:2d:
e1:aa:4e:03:b6:63:88:d0:e2:1b:07:5d:80:3f:2f:
79:9d:b2:13:af:c7:dc:ce:77:cd:58:95:21:6a:fd:
f3:ac:83:c8:5f:91:7a:eb:86:a6:55:8f:7c:c0:8f:
90:8e:dd:0b:70:71:20:d4:de:bf:45:45:d7:11:c9:
6a:61:c2:ae:cc:d3:05:98:b8:1a:b0:c2:e3:de:de:
39:10:75:7d:e7:fd:e0:4b:78:50:ce:9f:46:f7:71:
60:f1:08:97:02:93:f0:1f:31:3b:61:71:35:75:1d:
5c:6f:b9:cb:df:a2:0c:16:0b:23:4c:37:80:d9:39:
c8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3F:79:EA:D8:42:BA:A7:C6:B0:AB:77:D9:AA:6E:09:1E:38:03:76
X509v3 Authority Key Identifier:
keyid:6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:4d:24:d2:3d:c4:28:b5:cb:f3:5d:1b:7f:be:10:7b:17:6d:
70:f8:40:ae:f1:02:79:12:fa:73:62:09:fc:79:7f:2d:96:18:
e7:3b:da:7b:fd:5e:5e:66:6a:2b:a8:db:56:f2:e5:a4:64:e1:
27:2a:45:f6:22:94:b1:f6:cd:6b:5b:f5:55:56:b7:41:54:7c:
2b:6c:ea:3d:24:c0:62:b9:dd:88:c0:6d:c8:e8:43:6d:62:b2:
b0:ff:ab:16:0c:14:81:5e:46:1f:04:9e:c1:25:e0:9c:4b:63:
1f:67:97:9f:76:81:72:bf:22:1a:1d:7c:b5:01:e6:8c:d5:4e:
93:14:25:6c:48:7d:97:c5:a0:fc:b3:7c:03:2c:8b:f6:5c:77:
1c:53:5d:93:51:bf:d8:20:ed:64:5f:90:9a:bd:ce:e4:4e:a1:
50:d1:fd:00:66:34:42:d5:46:ee:33:b6:83:a1:70:67:ed:fc:
1b:c8:1f:81:fe:28:2a:49:ee:33:cd:6a:47:99:dd:08:c8:f5:
d9:53:11:32:4b:4f:d8:5c:b1:a7:47:ae:c0:59:3e:98:1a:42:
c5:e3:ab:a5:69:ce:57:c7:ae:1b:f5:78:eb:54:fd:8b:e7:53:
92:31:43:54:fd:62:6e:46:bb:a7:d1:ec:75:a1:3a:28:6e:a1:
b7:de:6c:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06VFl33tGzJWoq1dAKKqTXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMTBiN2M1NGU2Zjk1YjFkOWI4NGFhYzNkOWRhNzQyYTBl
MDJhNmMwHhcNMjYwMzI5MTYwMTM5WhcNMjYwMzMwMTYwMTM5WjAzMTEwLwYDVQQD
Eyg1MTNmNzllYWQ4NDJiYWE3YzZiMGFiNzdkOWFhNmUwOTFlMzgwMzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7fvmZwgbpochGDIEV+qlNzTt76Q
1EFrlaaXNnCWwb+O1yL3CrtvbBn5F67dPTr6r+PTYwXO8t9eOe0qcgkbK+tdgDIT
f927Yf8w/STz2AsZGkCc6LBUMQCuwAqeDYPzS/MDkyQebR2F3d1edCl+2nNV33D7
dsvpAjXXIDQtpk6O0O0bxS3hqk4DtmOI0OIbB12APy95nbITr8fcznfNWJUhav3z
rIPIX5F664amVY98wI+Qjt0LcHEg1N6/RUXXEclqYcKuzNMFmLgasMLj3t45EHV9
5/3gS3hQzp9G93Fg8QiXApPwHzE7YXE1dR1cb7nL36IMFgsjTDeA2TnI3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFE/eerYQrqnxrCrd9mqbgkeOAN2MB8GA1UdIwQY
MBaAFGoQt8VOb5Wx2bhKrD2dp0Kg4CpsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS84YTJlODUtOTQ4MC00MWEyLWEyNTUt
MmRjYWQ2ZWU3MWZiLzEvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS84YTJlODUtOTQ4MC00MWEyLWEyNTUtMmRjYWQ2ZWU3MWZi
LzEvYWhDM3hVNXZsYkhadUVxc1BaMm5RcURnS213LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQU0k0j3E
KLXL810bf74QexdtcPhArvECeRL6c2IJ/Hl/LZYY5zvae/1eXmZqK6jbVvLlpGTh
JypF9iKUsfbNa1v1VVa3QVR8K2zqPSTAYrndiMBtyOhDbWKysP+rFgwUgV5GHwSe
wSXgnEtjH2eXn3aBcr8iGh18tQHmjNVOkxQlbEh9l8Wg/LN8AyyL9lx3HFNdk1G/
2CDtZF+Qmr3O5E6hUNH9AGY0QtVG7jO2g6FwZ+38G8gfgf4oKknuM81qR5ndCMj1
2VMRMktP2Fyxp0euwFk+mBpCxeOrpWnOV8euG/V461T9i+dTkjFDVP1ibka7p9Hs
daE6KG6ht95siQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:50:30 2026 by rpki-client