Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: 4PB8FiDeThYkzvEC9JOif1Uqn8uKgygnQbyJOPUxpL0=
Subject key identifier: CE:44:BC:88:CA:E9:8E:29:7B:E4:06:AF:D7:77:4B:71:86:AB:A4:E0
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 019D37896A011470C259F601100053BC0C60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 13B1
Signing time: Sun 29 Mar 2026 03:00:45 +0000
Manifest this update: Sun 29 Mar 2026 03:00:45 +0000
Manifest next update: Mon 30 Mar 2026 03:00:45 +0000
Files and hashes: 1: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: +xZ45TTm+C9OmKVQDqGMvKjar+bxOdUWm67gVYdKBB4=)
2: FhAIMUxM-Ll-oJX8w_r_I6M_rVk.roa (hash: nnvV5m84QJk1AHjPftM2Kij4fMdReO4PZF5m7Lms+G8=)
3: OcFwuq-p9HfjXsFdJJy-918eeGE.roa (hash: ZCJKUc/KJIf9lC3fGgSPAtb279PGc32c5MBKffe5v3I=)
4: Pqb4jrQCqGySE_13LWqkkjr2SqA.roa (hash: MNvdDeohOV6QSo5IkgaAgBlZhC2buJQJfrYeSQwjLnc=)
5: cowiEY4LpotW_FI6i6NIxMkzq_M.roa (hash: CVVDglQk6Sk1jW5b5HdU0v+jUDJ+LW3BSjI0Z8Zod7U=)
6: hdmcIiKIZX8G4d6aOngw7fPbjSM.roa (hash: vkx9iSLozc4+nysiRZ6DJE0dNHHPaSgNyoUkZVK01oM=)
7: hxPfoQ5zcHsvOrtnuhN1m95U5cU.roa (hash: lliptOGwNH/8NzlTS+UvxhO5pR/n6bNmW4zrOP9Ic50=)
8: ssht21R0cK-y2YFHOwMdCwB13ew.roa (hash: Dhxo4nIlxfip0AdJuT5wp8b/mqjigonQHFuIrFMgf7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:6a:01:14:70:c2:59:f6:01:10:00:53:bc:0c:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Mar 29 03:00:45 2026 GMT
Not After : Mar 30 03:00:45 2026 GMT
Subject: CN=ce44bc88cae98e297be406afd7774b7186aba4e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3d:e6:49:68:00:ff:87:3c:2c:29:3d:52:3d:
c9:60:1e:cb:c3:61:a6:3e:f0:c5:5b:0f:36:1f:6e:
08:33:fe:4c:7a:1d:77:4d:c4:a2:33:11:0c:3a:4b:
5e:28:a0:ed:17:0a:ff:10:fc:62:61:11:59:8f:7c:
33:67:b0:c7:a3:e2:b8:60:a1:51:b4:05:2b:3c:f9:
f8:da:12:c9:64:27:36:77:3d:1e:9a:3e:44:c2:fc:
58:10:e3:c8:52:55:bf:2e:08:82:4c:51:c4:6e:e1:
f5:64:31:2c:0e:42:8a:6a:db:54:ed:a1:42:80:1d:
d5:ba:b2:04:d3:32:d2:9b:50:44:14:2c:68:59:03:
76:14:d3:c9:46:82:97:13:21:b9:6d:10:37:48:87:
fc:6a:e2:58:17:9d:9f:0b:df:67:48:68:db:32:79:
21:d5:cd:38:b1:c9:d5:47:5e:df:1e:97:a4:a7:8d:
cb:63:bf:c9:df:5e:41:88:de:d1:97:84:e6:c3:4b:
29:b7:8f:69:9a:49:e7:1e:7c:44:b1:ad:11:38:50:
ed:04:91:c8:57:a9:cb:cc:b9:eb:c2:e5:49:23:6a:
a3:ab:e7:39:4c:0f:29:1c:87:f0:0b:47:c4:82:7c:
16:21:2d:ec:7a:f8:d5:91:45:2c:50:19:a8:8e:99:
5e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:44:BC:88:CA:E9:8E:29:7B:E4:06:AF:D7:77:4B:71:86:AB:A4:E0
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:6d:02:74:28:66:b4:f6:ea:3c:e7:fa:01:39:54:4c:b5:e5:
3c:ff:6d:8c:f9:00:bf:05:bb:e5:a3:d3:07:87:6b:e2:46:9a:
22:eb:36:6a:fb:1f:dc:98:10:b3:cd:26:75:01:dd:29:7b:08:
b3:6a:10:71:40:95:c9:9e:1b:69:27:93:8a:0f:0c:90:9d:cf:
94:23:b6:09:e9:84:61:20:94:d5:1e:44:c0:d1:ab:c1:41:1b:
91:a5:e8:f5:b9:3b:ec:3a:f1:9f:61:5b:16:81:8d:d2:2d:af:
63:ef:8d:6a:a8:dd:ff:a4:63:56:0c:ae:98:50:3b:85:13:33:
b2:bc:80:2c:83:97:8d:4d:62:aa:67:29:63:81:af:44:29:c4:
a9:7a:c8:a0:92:ec:7f:06:b3:9e:c5:2e:c0:c3:51:2c:bc:ab:
5e:e7:0d:01:4b:80:9f:91:7b:c1:53:9b:c4:fe:c9:57:e1:df:
57:c6:ff:5b:f4:06:36:80:ce:72:4d:bc:7f:cb:4b:d5:76:70:
8c:20:6c:3c:39:09:c8:30:eb:ae:80:87:ee:82:99:11:8d:52:
84:0f:16:cb:1f:5e:07:6c:de:96:7d:0d:02:ac:ba:19:dd:24:
ae:83:33:b2:f9:07:90:bb:a1:2f:0c:f0:ee:f5:41:0f:a4:81:
f8:98:59:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:54 2026 by rpki-client