Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: sSG3cExtv5mYzlhlLN8DHyEAkXiIojlec23AhJwzOf8=
Subject key identifier: 43:57:DD:27:04:EB:12:FC:8B:D3:34:DD:40:1D:76:BD:FC:5B:FA:C8
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 019D38D2CBDADE5018AE89C8E9CF0C41A0A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:00:31 +0000
Manifest this update: Sun 29 Mar 2026 09:00:31 +0000
Manifest next update: Mon 30 Mar 2026 09:00:31 +0000
Files and hashes: 1: RxByI3rH_YsmBp9MFWCFAA3GDzM.roa (hash: kPBLDDqbqmranSBPQ+O5l9xhMyzuVrqfoP6GlvpDNU8=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: 1FRI1ZFw0nLTdO3Ov8/fWvhluYmK/7JAF7eecXtZF2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:cb:da:de:50:18:ae:89:c8:e9:cf:0c:41:a0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Mar 29 09:00:31 2026 GMT
Not After : Mar 30 09:00:31 2026 GMT
Subject: CN=4357dd2704eb12fc8bd334dd401d76bdfc5bfac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:16:eb:0f:18:53:ed:48:0c:64:c0:cc:7a:b6:
a5:a0:c6:96:13:7d:99:63:53:8e:43:f5:52:89:26:
2b:ea:b9:6c:7c:02:c4:f8:37:1a:8a:36:2b:ec:90:
6f:8a:0e:54:cd:98:92:85:3f:99:ea:c0:3a:bb:01:
7f:59:59:b3:e9:86:d4:c0:92:2e:3d:ef:c8:06:9d:
a5:5f:41:86:74:d4:6c:05:d1:7e:0e:63:5f:ac:7c:
6b:dd:65:b4:15:a8:6a:e3:af:0b:b8:e1:b9:a6:32:
2a:1f:d8:5b:9c:80:ba:73:2c:b2:ed:42:9f:d7:13:
c9:a2:2a:c0:bb:18:3d:07:57:6f:32:d8:15:17:40:
51:f3:2e:3b:12:c1:d9:99:d0:e7:af:cc:01:68:d4:
1f:8e:72:17:8e:c1:d0:86:09:36:d7:58:12:ef:7d:
d0:fb:40:8b:ed:00:b8:b5:7f:5f:6c:56:96:a1:e5:
9d:70:3b:54:61:66:8b:38:37:e9:73:35:ed:8d:d8:
79:f6:9b:3f:6f:31:9d:96:44:0b:15:55:b6:05:54:
97:d8:4f:5e:1e:8d:53:88:6a:70:ac:53:1c:76:11:
74:5a:03:bd:ce:aa:91:dc:f8:c0:e8:84:a2:aa:37:
2e:62:b3:13:b4:66:3b:fa:0e:14:de:06:fa:08:43:
24:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:57:DD:27:04:EB:12:FC:8B:D3:34:DD:40:1D:76:BD:FC:5B:FA:C8
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:83:f4:57:36:21:3f:0f:42:ab:8d:be:cb:e9:64:a4:c7:83:
62:d1:e2:ab:c0:39:bf:e4:3a:40:ac:fa:8e:f3:82:b5:e5:eb:
c7:80:57:a4:1f:4d:b6:ea:43:7e:88:7a:48:0d:e6:50:50:7a:
e4:77:91:99:40:3e:a1:70:f8:a9:a9:89:aa:ed:18:6b:14:7b:
38:47:ac:81:62:7a:ef:49:d5:ec:1d:f9:b2:c5:df:41:71:0d:
94:75:f7:00:3b:04:05:2b:c9:09:90:fc:cb:07:59:23:bf:2c:
47:59:85:8b:d6:74:b5:1d:e7:bc:37:a5:76:c7:68:3f:f3:09:
42:d4:aa:a4:37:17:b5:f6:1a:73:4e:ad:57:5b:12:17:52:ab:
53:e2:f1:bc:80:83:8b:88:cf:d6:32:39:9c:da:27:75:88:9b:
4e:91:e4:e3:ce:23:f7:d8:51:b0:14:1c:1e:6e:11:d5:4f:1b:
b2:20:6e:86:1a:aa:b7:e0:33:7e:33:ac:25:b6:8f:77:d5:c6:
f5:99:25:15:85:cf:2f:b8:ce:0c:4a:5c:67:e5:f8:f5:58:b1:
21:fa:d5:d8:8f:0e:95:fc:81:21:f0:69:7d:6c:9e:09:32:44:
5d:1a:c0:54:6d:dd:6b:97:1b:0e:4b:cd:99:8b:29:ea:51:75:
c9:c1:d1:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:12 2026 by rpki-client