Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
File: aIt13GcpXVhht31RoCEYtg3FWGg.mft (raw, json)
Hash identifier: P+XqPZkv2QtC2fprY7tMfb163h4pl7j2+MQ6SSEVY00=
Subject key identifier: 7F:1F:D4:A5:22:F0:92:2B:C0:1A:1A:C7:38:12:10:4F:26:76:13:50
Authority key identifier: 68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
Certificate issuer: /CN=688b75dc67295d5861b77d51a02118b60dc55868
Certificate serial: 019D37C01FD2E4F54AAA2FB2929413155714
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
Manifest number: 0F99
Signing time: Sun 29 Mar 2026 04:00:31 +0000
Manifest this update: Sun 29 Mar 2026 04:00:31 +0000
Manifest next update: Mon 30 Mar 2026 04:00:31 +0000
Files and hashes: 1: LMUQmobuHVJEXOLCk7qulvM9xco.roa (hash: VHioZYEBKZU7KL0P7CQwH0VWVc2gjtg5Dg7pb7IsEAE=)
2: aIt13GcpXVhht31RoCEYtg3FWGg.crl (hash: I2yQc9sXok0yF80HniUKOMqHhzTexZw+VkUf4U/SgJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:1f:d2:e4:f5:4a:aa:2f:b2:92:94:13:15:57:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=688b75dc67295d5861b77d51a02118b60dc55868
Validity
Not Before: Mar 29 04:00:31 2026 GMT
Not After : Mar 30 04:00:31 2026 GMT
Subject: CN=7f1fd4a522f0922bc01a1ac73812104f26761350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:71:f2:02:88:48:8c:76:c0:81:d9:5d:0e:
81:52:61:f8:72:a9:7e:fa:c8:2d:4a:16:ce:c2:ad:
a4:d9:28:ea:30:9c:55:e3:c5:8f:ef:98:34:1b:fa:
20:4d:d4:61:c1:cc:74:3b:b6:6b:03:f3:0c:80:95:
19:95:29:04:65:0e:65:ac:71:b7:3f:a1:17:84:9b:
bb:5d:6b:a5:c9:d8:38:63:1e:1c:c0:04:7f:04:06:
e9:c2:82:0c:d2:b3:0d:65:6a:51:92:50:49:03:ae:
83:ad:24:a9:4e:14:29:e0:38:3b:41:da:23:5a:54:
c5:7f:24:66:93:f8:30:94:f0:ae:eb:e1:de:01:5d:
cd:0a:8f:d9:2e:70:0f:f5:2e:98:2b:48:a7:92:81:
9e:d5:ea:dd:bb:ed:ea:36:17:c3:bb:8a:1d:fe:68:
b4:5c:3e:72:e3:03:6a:3b:00:fe:3f:bf:9b:f8:0f:
f9:de:2c:ec:bc:aa:42:a8:9b:e9:91:8c:5f:98:bc:
da:a2:79:78:ec:ed:31:c1:1d:26:86:30:de:7a:a4:
f2:5c:01:59:9b:eb:9f:f2:b9:d7:36:c4:b2:b0:ed:
d1:79:b1:21:02:75:81:80:cc:67:14:9c:3a:1f:15:
96:3e:ab:8e:d9:dd:46:e4:f1:ba:95:b5:1f:ef:65:
10:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:1F:D4:A5:22:F0:92:2B:C0:1A:1A:C7:38:12:10:4F:26:76:13:50
X509v3 Authority Key Identifier:
keyid:68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:85:41:ec:f4:9e:7a:5a:9c:b7:37:8e:2b:41:2f:38:8c:6c:
37:f5:c6:70:eb:65:af:8d:14:e8:e0:51:7d:b1:e5:d1:15:38:
56:11:a4:89:8f:57:2f:25:7a:42:1b:9d:f4:d3:45:02:7a:d7:
dc:07:54:af:d2:ae:02:3b:65:a1:71:99:0c:3d:9f:c8:59:96:
c1:99:00:ae:57:db:55:c1:9e:f8:81:0c:7b:33:36:20:7f:0c:
c9:3c:e7:0b:29:c8:21:c9:2c:af:a8:2a:3e:52:12:48:8b:46:
0f:34:97:7f:f4:29:53:04:67:09:a2:7a:ce:f4:92:34:12:2e:
85:bd:11:2a:97:6c:93:c2:38:31:d6:e5:8d:0a:bd:e8:d7:11:
4b:fb:43:30:de:f1:30:cc:cc:9b:24:ec:bb:87:1f:e2:e2:8a:
41:3f:a2:10:0b:a8:83:bd:d7:28:77:2b:ed:dd:c4:e3:17:50:
45:ec:6a:2e:97:cf:93:12:e8:fe:ae:ba:20:7b:77:37:07:7f:
7b:99:d5:fc:99:b9:94:b6:a0:54:d0:34:be:25:47:ea:1d:a1:
ac:cc:8b:94:d3:56:b6:75:e7:16:1f:e9:fb:f5:59:15:29:ce:
01:da:89:20:c8:f6:08:ad:a3:c1:6d:77:0d:6c:09:40:7c:94:
16:d7:f7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:51 2026 by rpki-client