Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: aJBUMgNJZRgcrr3uttVlbJO5bdg+49j2rlKRN0sMVMQ=
Subject key identifier: 19:EC:A2:A0:1B:78:E3:BB:F1:0F:96:B0:AC:F2:EA:FF:05:EF:85:60
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 019D3752FFB9F93F333C8C30901CA1EFD3D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 1367
Signing time: Sun 29 Mar 2026 02:01:19 +0000
Manifest this update: Sun 29 Mar 2026 02:01:19 +0000
Manifest next update: Mon 30 Mar 2026 02:01:19 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: Awe50PNGTNawTk2iEARjma5nuxIIOgPM6vHTxqLKQFM=)
2: 3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa (hash: VEj0HSUKE42dKjFD2uYohf7XQqVFoN8s8ftve/Xm9PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:ff:b9:f9:3f:33:3c:8c:30:90:1c:a1:ef:d3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Mar 29 02:01:19 2026 GMT
Not After : Mar 30 02:01:19 2026 GMT
Subject: CN=19eca2a01b78e3bbf10f96b0acf2eaff05ef8560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2b:98:2a:77:c6:30:15:a3:7c:94:48:b4:7b:
7b:f2:30:67:61:a3:09:30:ca:eb:e6:15:00:23:cb:
82:ad:f6:70:3d:a8:ae:58:bf:5f:24:28:16:df:fe:
ba:cf:2b:bc:2a:32:72:ef:0e:b1:2e:41:f3:a8:ce:
10:53:d9:1b:4b:3f:b9:c7:ec:1a:c4:35:d8:56:27:
69:db:32:b3:62:f0:e3:64:48:9a:ea:44:56:a8:b4:
52:c8:da:df:eb:12:ed:93:da:20:38:8c:55:14:fa:
60:0b:55:27:77:be:56:a5:08:eb:e3:f7:c2:8c:12:
ef:13:e5:de:a7:f3:da:59:fe:49:26:34:aa:d4:fd:
97:59:a9:01:7d:48:e6:86:d1:4c:27:22:5b:6a:92:
ec:df:1f:a5:62:42:12:9b:10:a9:01:9f:37:90:80:
40:15:b4:91:3c:9f:3f:78:93:7d:4f:21:3a:ff:2e:
da:f1:22:c9:27:3e:b1:b5:a8:6d:07:2d:26:ed:43:
10:34:e8:0a:ad:7a:98:81:e4:1f:04:06:0f:31:b1:
6c:05:61:49:60:02:79:e6:65:30:d3:3f:fd:ba:69:
d1:a4:79:e9:e0:7e:d8:83:93:ec:b4:53:95:83:74:
40:6e:9c:eb:ad:2e:03:95:41:a3:04:a1:a5:e1:21:
b2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:EC:A2:A0:1B:78:E3:BB:F1:0F:96:B0:AC:F2:EA:FF:05:EF:85:60
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:63:74:05:24:4d:31:60:7d:8e:d9:4f:11:1d:75:33:f9:27:
ce:80:74:2a:46:90:bd:2b:ef:ab:50:dc:c8:c3:07:cd:77:e3:
85:9a:8a:e7:86:60:e4:03:3c:a8:f9:18:d1:64:c1:5c:ae:04:
99:f8:e0:d6:73:3f:b8:76:6a:59:c9:32:6d:07:db:60:02:f7:
06:04:e6:2a:a5:fe:d6:30:ea:89:e7:f8:cf:be:5d:79:20:93:
07:a7:2e:da:06:2b:e6:ed:03:fe:d3:d8:c3:fd:3f:a4:0b:9d:
9e:cf:06:e2:85:52:25:d3:29:f1:1e:a1:5b:62:32:0a:b9:73:
11:d1:3e:30:df:12:b1:bc:eb:87:26:05:f5:dd:83:68:54:0c:
02:6c:b3:32:0a:95:de:c2:95:63:4b:8b:15:e6:7c:d6:ed:cb:
d5:03:93:6c:cf:72:35:94:13:aa:33:77:b8:4c:ed:35:2b:0c:
84:34:83:b4:36:0e:ea:6b:c6:54:14:e7:c2:e2:9b:f3:f9:92:
72:ca:10:8d:5f:67:8b:fe:55:56:f8:53:8a:11:c1:d2:cb:09:
5d:5d:31:ef:bb:30:94:94:97:27:66:6a:27:6e:bb:4f:1c:53:
32:f2:4e:34:37:af:73:16:ac:da:33:2b:c7:82:43:a3:9f:3e:
45:cc:56:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:06 2026 by rpki-client