Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: tmIcB1i8jmp9HdaUtIsWSFLoX70FO86iHMSyKoA+m7o=
Subject key identifier: E3:9A:D0:CF:A6:96:A7:4B:8C:22:4F:D4:28:FB:47:06:37:5B:33:DF
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 019E30A9007921F821506E6B004083E09C04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 1432
Signing time: Sat 16 May 2026 12:00:42 +0000
Manifest this update: Sat 16 May 2026 12:00:42 +0000
Manifest next update: Sun 17 May 2026 12:00:42 +0000
Files and hashes: 1: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: qBwjw/ioqNYiFIXX26x6TLZUOiPEajeuJ3W3pUzsR/U=)
2: FhAIMUxM-Ll-oJX8w_r_I6M_rVk.roa (hash: nnvV5m84QJk1AHjPftM2Kij4fMdReO4PZF5m7Lms+G8=)
3: OcFwuq-p9HfjXsFdJJy-918eeGE.roa (hash: ZCJKUc/KJIf9lC3fGgSPAtb279PGc32c5MBKffe5v3I=)
4: Pqb4jrQCqGySE_13LWqkkjr2SqA.roa (hash: MNvdDeohOV6QSo5IkgaAgBlZhC2buJQJfrYeSQwjLnc=)
5: cowiEY4LpotW_FI6i6NIxMkzq_M.roa (hash: CVVDglQk6Sk1jW5b5HdU0v+jUDJ+LW3BSjI0Z8Zod7U=)
6: hdmcIiKIZX8G4d6aOngw7fPbjSM.roa (hash: vkx9iSLozc4+nysiRZ6DJE0dNHHPaSgNyoUkZVK01oM=)
7: hxPfoQ5zcHsvOrtnuhN1m95U5cU.roa (hash: lliptOGwNH/8NzlTS+UvxhO5pR/n6bNmW4zrOP9Ic50=)
8: ssht21R0cK-y2YFHOwMdCwB13ew.roa (hash: Dhxo4nIlxfip0AdJuT5wp8b/mqjigonQHFuIrFMgf7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:00:79:21:f8:21:50:6e:6b:00:40:83:e0:9c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: May 16 12:00:42 2026 GMT
Not After : May 17 12:00:42 2026 GMT
Subject: CN=e39ad0cfa696a74b8c224fd428fb4706375b33df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0a:b0:77:bc:d5:24:6b:50:c3:1d:dd:80:dd:
b8:6e:92:9b:80:1b:95:56:3d:d3:d5:fa:5a:05:70:
4f:fa:b5:8f:5a:96:c9:8f:74:91:d7:dd:6e:4c:4b:
89:fe:ae:fe:c3:97:5e:2f:4d:af:e1:f5:6f:e6:e4:
e9:c1:16:86:12:72:2f:fe:d8:ec:e3:d2:ef:47:0c:
9f:d4:6c:2f:37:f5:9a:2c:a7:6d:12:b7:8c:65:ad:
32:d0:98:61:46:51:4e:1b:c8:24:ff:62:1f:c3:d9:
08:b5:40:9c:e9:4b:e0:c5:d8:9d:5f:2f:ae:97:bd:
17:a4:c0:a0:b2:b5:a6:0a:fb:48:74:27:5e:d0:a8:
16:bc:4b:02:6e:b0:74:a0:63:c5:e3:5a:5d:28:8d:
70:a2:38:c7:14:3f:7c:db:04:aa:08:fd:d4:c4:9e:
64:d2:4c:b7:ce:e0:aa:95:e1:bd:b1:4d:3b:52:64:
12:e9:77:94:83:51:4e:24:f2:11:0e:87:e4:0a:62:
45:27:3f:71:44:dd:01:d3:26:87:2e:3d:2b:ee:4a:
91:cd:54:70:a8:c5:b4:10:5f:dc:45:ce:c8:fd:fd:
e4:64:07:46:68:88:92:e8:8d:73:ed:c8:d7:b9:ac:
8e:bc:4b:9c:93:dc:0d:91:0b:1d:f3:7f:dc:87:fc:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9A:D0:CF:A6:96:A7:4B:8C:22:4F:D4:28:FB:47:06:37:5B:33:DF
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:4d:d1:22:22:49:c3:12:76:ae:90:37:d8:d5:2f:03:18:25:
95:1c:23:a6:72:05:e1:11:ef:10:9b:ff:10:e6:a1:4c:62:59:
63:14:e5:41:de:3e:90:fe:ef:0b:08:2d:17:a2:df:4a:7c:0e:
ba:6f:26:e1:cb:b4:32:9b:07:00:36:72:9d:86:21:a0:f6:fc:
b5:33:03:4f:84:81:95:7d:cc:40:2c:49:a2:ba:42:9e:52:31:
81:d6:ec:3b:e1:e0:6f:db:b2:16:d7:70:ec:7d:72:77:ef:d3:
06:8c:6b:f6:43:05:b7:7f:e0:46:4d:13:97:c3:e4:c7:c1:73:
0b:6f:d8:21:44:79:b7:5a:7f:5b:9a:12:67:1a:3f:23:04:ca:
9f:9d:0c:6a:90:8c:47:b4:92:e0:a3:5e:a5:cb:6b:e8:d4:bd:
de:fd:88:67:17:22:0a:dc:87:7c:1b:40:60:9f:63:73:a0:46:
40:0a:b4:15:20:f4:79:15:c7:da:c6:f7:f1:20:5b:54:17:5e:
ec:a6:c5:89:34:10:2e:90:e6:6d:84:8c:e8:41:f7:33:b8:98:
21:ae:e3:26:57:24:c4:8a:d0:eb:81:57:f6:58:54:6d:86:da:
9e:b1:28:10:fa:92:3b:e3:47:a0:c7:cd:de:77:b6:24:58:d8:
d3:46:cd:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:41:55 2026 by rpki-client