Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier: As6lpKk0hapDxkq96MoYWCJQPhMcryYPHPdJjl2/KqU=
Subject key identifier: 69:91:D6:53:2E:F7:DB:C8:1C:F5:1A:00:A9:32:85:2F:2E:34:45:09
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial: 019D37C02B88BD1CE50E20E7B167DEEC0B68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number: 12F1
Signing time: Sun 29 Mar 2026 04:00:34 +0000
Manifest this update: Sun 29 Mar 2026 04:00:34 +0000
Manifest next update: Mon 30 Mar 2026 04:00:34 +0000
Files and hashes: 1: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: +mvoNbAoVhsog+zzJ21hhLbGDEOREVKEOpSdhuuGI1Y=)
2: udJoXx6SrWMuMK6jZ122dieN47A.roa (hash: XPA3Wkk2p2nbhHbQxZ80mWOEn3OR3Bs5szWaHz85HJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:2b:88:bd:1c:e5:0e:20:e7:b1:67:de:ec:0b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Validity
Not Before: Mar 29 04:00:34 2026 GMT
Not After : Mar 30 04:00:34 2026 GMT
Subject: CN=6991d6532ef7dbc81cf51a00a932852f2e344509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3e:f2:17:be:52:67:f3:62:82:bf:06:bb:76:
86:ce:35:38:44:03:26:3c:52:08:21:0c:f5:cd:92:
e7:ef:9d:8a:e1:9c:16:72:81:6b:1d:4a:9c:34:f9:
ec:72:ae:77:e8:96:2e:45:62:d1:80:c6:4e:60:21:
be:6f:59:06:a6:1f:84:99:99:da:e3:e2:2d:ea:24:
71:ce:68:c7:18:5b:99:ca:66:b0:1c:34:c6:ef:d1:
6f:9d:c2:bd:75:36:a5:c3:3e:4b:72:4d:56:62:42:
e0:0e:b7:72:1d:6a:cf:2d:5e:be:84:29:8f:31:80:
92:64:f9:58:d5:42:29:d4:cc:1e:49:74:b3:24:93:
9d:ef:d5:9d:f1:f1:f8:fb:c2:d7:ee:8a:d7:18:92:
d1:41:08:bd:60:ed:df:13:f4:30:9e:97:0d:01:1e:
e5:f2:75:a8:00:c3:e7:e0:f5:31:3e:c6:9e:74:d3:
e6:ba:4f:ec:3a:cc:c2:6d:83:29:e0:27:8a:63:46:
20:cf:91:a5:36:9b:24:51:ed:9f:55:84:85:bb:61:
db:3d:47:da:ec:ca:32:9b:18:99:ce:e1:6b:3f:55:
c0:86:ab:11:f1:14:de:35:03:09:0f:c1:0a:b9:e9:
8d:61:76:f1:28:39:13:ac:90:3d:73:01:8b:f0:2d:
cb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:91:D6:53:2E:F7:DB:C8:1C:F5:1A:00:A9:32:85:2F:2E:34:45:09
X509v3 Authority Key Identifier:
keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:dd:ad:b7:37:9d:e3:2a:73:09:5b:18:32:f4:d0:a5:45:84:
39:3a:aa:26:e6:3e:cd:38:4b:87:45:b9:fc:be:e7:78:9e:33:
54:81:f0:cc:17:34:4d:34:48:d1:e3:bf:b3:0f:bc:16:00:ea:
6b:50:52:a8:56:69:48:82:f2:a5:dd:15:44:eb:11:50:1b:8f:
cf:90:0b:c9:21:98:ad:fc:f8:1e:d7:aa:64:14:41:82:f4:78:
a4:41:ad:34:26:c7:2d:ea:58:87:34:75:9d:cf:a9:50:95:6a:
cb:3c:5b:27:1c:08:22:f4:b8:ce:6c:6c:d6:0a:d3:97:55:ce:
4f:e5:db:53:d3:df:1b:d6:b0:0d:25:2c:67:14:61:df:64:47:
14:ad:9b:e7:e0:dd:b5:56:0e:40:e1:c6:ec:df:e0:25:fe:08:
f3:06:fb:8f:48:19:9d:c4:96:e3:0e:a0:a9:aa:85:e5:24:f8:
f8:5b:67:9d:15:21:c5:53:bf:42:ec:a3:9d:f8:fb:bd:3f:f0:
f1:53:53:fa:bd:f9:ae:17:e4:5d:23:29:d7:43:74:09:78:ac:
8d:ff:9a:be:36:79:61:31:d9:3f:b4:2a:dd:68:8d:5d:af:6d:
34:f3:06:b0:fe:6a:9b:e3:ae:b2:7f:fb:0e:d0:f8:6b:09:bd:
18:00:71:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:52 2026 by rpki-client