Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
File: AonuzqJ5QTJX2JCMJVaKvrivhnc.mft (raw, json)
Hash identifier: fuiHAjwV1db8PGUtI0I+9B0drgpTkCDw4wTHN/0x4jU=
Subject key identifier: 8E:57:8E:62:13:55:F2:92:44:50:57:33:1B:11:D1:E6:2F:4A:FF:B6
Authority key identifier: 02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
Certificate issuer: /CN=0289eecea279413257d8908c25568abeb8af8677
Certificate serial: 019E30051D69D4A5FADB76862D0B84AD46D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
Manifest number: 0E86
Signing time: Sat 16 May 2026 09:01:41 +0000
Manifest this update: Sat 16 May 2026 09:01:41 +0000
Manifest next update: Sun 17 May 2026 09:01:41 +0000
Files and hashes: 1: AonuzqJ5QTJX2JCMJVaKvrivhnc.crl (hash: b/GMVyyMQaWhfuCP/svKDpz6Uutf93vygbG6USBZdPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:1d:69:d4:a5:fa:db:76:86:2d:0b:84:ad:46:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0289eecea279413257d8908c25568abeb8af8677
Validity
Not Before: May 16 09:01:41 2026 GMT
Not After : May 17 09:01:41 2026 GMT
Subject: CN=8e578e621355f292445057331b11d1e62f4affb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a6:df:c8:1a:39:58:70:b3:7d:ce:c5:53:61:
d5:e6:2d:c1:9f:a3:44:d3:5c:70:a9:c9:9a:a3:83:
89:c3:40:a2:07:01:04:17:e1:ec:86:8e:a4:2c:ec:
73:da:5d:1a:a4:a6:4e:78:04:a2:42:6e:51:d5:4b:
d9:78:c1:50:4c:26:17:89:e5:54:52:6d:74:64:cf:
ac:99:f5:6a:47:94:3d:84:b7:cc:97:53:93:84:24:
1f:db:22:03:95:00:86:33:f0:0a:71:d8:e0:3a:78:
7b:90:5f:9b:5a:7f:d8:08:e2:c6:be:54:f5:9d:1d:
a9:70:09:e6:e7:68:84:17:5f:bf:5a:31:ce:44:d6:
19:87:3a:c9:92:11:9d:3b:7d:7e:33:94:24:06:2d:
2e:5e:fe:a7:06:25:dc:41:d0:e5:c7:04:85:f9:18:
6a:55:cd:c6:bf:51:9a:2b:18:f1:a9:14:8d:5c:04:
cc:63:7a:3c:48:39:a3:ef:00:01:dd:dc:f4:96:1f:
79:55:bf:42:38:fb:5d:38:7f:57:31:67:63:1c:34:
c4:13:33:39:38:30:f8:c2:0f:2b:32:8f:a9:19:e3:
34:30:32:a0:75:e2:d9:d2:8d:ca:8a:20:cf:2d:4d:
b8:a4:66:99:37:db:d1:f1:63:42:81:85:49:3e:8f:
54:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:57:8E:62:13:55:F2:92:44:50:57:33:1B:11:D1:E6:2F:4A:FF:B6
X509v3 Authority Key Identifier:
keyid:02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:b4:8a:e7:a2:b8:14:5e:fb:aa:9e:bb:f3:bf:88:4e:38:4a:
6e:84:73:3f:2f:86:46:72:02:9a:d8:5b:e8:5e:5a:86:74:b9:
79:01:88:c0:b0:86:c9:c2:9c:0d:3f:b1:d5:70:31:16:22:c4:
72:f9:af:0c:02:e7:29:72:f5:1b:14:85:cb:97:84:f0:e6:29:
e6:82:6d:b6:a3:fc:37:b4:33:56:65:7f:3f:4f:a5:e5:da:b8:
f9:a6:b3:f0:52:c2:f2:62:dc:7c:f1:98:1a:04:e4:70:4b:ff:
79:cc:84:2d:6b:af:a7:ac:36:d0:43:02:aa:06:a5:5c:da:5d:
fe:c6:f2:c1:9a:d1:3a:d4:0b:87:4f:fc:64:8e:80:6d:0a:d2:
f9:0d:c4:2f:4d:1d:75:f8:8e:9f:56:dd:b9:af:99:7c:f7:26:
29:ff:0a:e8:c4:7d:d5:78:60:d5:87:23:1d:70:b8:97:31:10:
52:46:a5:e1:30:db:7e:40:34:d1:70:7f:94:39:5e:6a:9b:cb:
e8:9a:7e:df:f2:e4:31:d6:77:35:68:29:bd:f2:a9:4b:2c:67:
ad:b1:0a:a2:9b:d1:b7:d8:f8:47:2d:c9:0c:50:e7:9d:94:cf:
28:ad:e1:a5:f9:d3:08:82:71:f0:7e:64:a5:98:28:a2:d6:e4:
f5:93:9b:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBR1p1KX623aGLQuErUbSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyODllZWNlYTI3OTQxMzI1N2Q4OTA4YzI1NTY4YWJlYjhh
Zjg2NzcwHhcNMjYwNTE2MDkwMTQxWhcNMjYwNTE3MDkwMTQxWjAzMTEwLwYDVQQD
Eyg4ZTU3OGU2MjEzNTVmMjkyNDQ1MDU3MzMxYjExZDFlNjJmNGFmZmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56bfyBo5WHCzfc7FU2HV5i3Bn6NE
01xwqcmao4OJw0CiBwEEF+Hsho6kLOxz2l0apKZOeASiQm5R1UvZeMFQTCYXieVU
Um10ZM+smfVqR5Q9hLfMl1OThCQf2yIDlQCGM/AKcdjgOnh7kF+bWn/YCOLGvlT1
nR2pcAnm52iEF1+/WjHORNYZhzrJkhGdO31+M5QkBi0uXv6nBiXcQdDlxwSF+Rhq
Vc3Gv1GaKxjxqRSNXATMY3o8SDmj7wAB3dz0lh95Vb9COPtdOH9XMWdjHDTEEzM5
ODD4wg8rMo+pGeM0MDKgdeLZ0o3KiiDPLU24pGaZN9vR8WNCgYVJPo9UIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI5XjmITVfKSRFBXMxsR0eYvSv+2MB8GA1UdIwQY
MBaAFAKJ7s6ieUEyV9iQjCVWir64r4Z3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8yMmI4OGItMWZiZi00MGY0LWFkYTUt
MjcwOTI5ZDA1MTkyLzEvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8yMmI4OGItMWZiZi00MGY0LWFkYTUtMjcwOTI5ZDA1MTky
LzEvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIbSK56K4
FF77qp6787+ITjhKboRzPy+GRnICmthb6F5ahnS5eQGIwLCGycKcDT+x1XAxFiLE
cvmvDALnKXL1GxSFy5eE8OYp5oJttqP8N7QzVmV/P0+l5dq4+aaz8FLC8mLcfPGY
GgTkcEv/ecyELWuvp6w20EMCqgalXNpd/sbywZrROtQLh0/8ZI6AbQrS+Q3EL00d
dfiOn1bdua+ZfPcmKf8K6MR91Xhg1YcjHXC4lzEQUkal4TDbfkA00XB/lDleapvL
6Jp+3/LkMdZ3NWgpvfKpSyxnrbEKopvRt9j4Ry3JDFDnnZTPKK3hpfnTCIJx8H5k
pZgootbk9ZObVg==
-----END CERTIFICATE-----
Generated at Sat May 16 19:32:24 2026 by rpki-client