Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: XNAsLHChtuk/ct2OnoiYf941lGg4Ig0HjynTLhSCAGg=
Subject key identifier: A7:A2:74:B4:1B:1E:BB:4B:96:5B:8D:E4:6A:FA:7E:AF:CF:06:B6:6C
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019D378908F1C3A343B8CB2BCBFD230214B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 130A
Signing time: Sun 29 Mar 2026 03:00:20 +0000
Manifest this update: Sun 29 Mar 2026 03:00:20 +0000
Manifest next update: Mon 30 Mar 2026 03:00:20 +0000
Files and hashes: 1: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: D2BJtSpvHFgNC0xf336JlPoCSe1yrjIjNVcKvJ+WWDw=)
2: qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa (hash: fcQ2Ei/HI72zlpQU19GPaQ5DdqwsBsYj6lbFhVkHW2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:08:f1:c3:a3:43:b8:cb:2b:cb:fd:23:02:14:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Mar 29 03:00:20 2026 GMT
Not After : Mar 30 03:00:20 2026 GMT
Subject: CN=a7a274b41b1ebb4b965b8de46afa7eafcf06b66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d2:74:9d:d2:0a:2e:5d:29:3b:40:9e:ae:00:
ba:23:19:d7:2c:f5:92:02:3f:34:54:75:97:30:7e:
4b:fc:04:99:0d:27:e0:4a:2d:ab:b3:0b:58:61:23:
5c:b3:78:34:90:45:7f:93:2c:e8:ba:e3:60:55:05:
89:20:e2:48:6e:46:c5:fc:ac:fc:d2:0d:bc:58:b7:
cf:55:ce:3a:dd:4a:ba:d3:9f:3b:1c:01:f4:c4:52:
9a:65:dd:86:cd:a0:aa:e1:5e:fd:3c:40:96:c1:22:
5e:aa:1d:32:d6:87:f8:79:f2:43:1a:b9:61:95:e7:
75:a5:d3:de:96:78:74:68:35:a7:63:3c:0c:dd:b2:
2a:53:e8:31:7f:a8:5d:15:3d:4a:a8:4e:aa:46:0f:
b5:38:68:d1:8a:93:82:c0:72:0b:5c:85:7d:56:2a:
aa:5b:b7:f3:c8:c3:bb:da:b0:88:ec:c1:f0:6a:6c:
62:e8:e1:a2:98:0a:ee:3e:93:e4:c4:4e:35:49:8f:
47:03:84:b9:78:ab:62:bb:44:b0:6f:f3:da:23:c6:
5a:d7:56:a8:f7:4e:68:11:32:cf:11:34:f0:c4:a2:
23:a0:b7:31:b5:78:56:c9:cb:89:8d:e4:33:7e:53:
4f:f4:33:8c:2a:f2:ed:13:1c:fe:be:02:73:e6:c8:
9f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A2:74:B4:1B:1E:BB:4B:96:5B:8D:E4:6A:FA:7E:AF:CF:06:B6:6C
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f5:cb:27:e5:a9:20:96:25:2d:b9:e9:6a:1b:79:ff:57:d1:
f9:ef:4b:6d:83:db:9b:7f:4d:a1:08:6a:bd:5f:df:42:11:b8:
e5:bb:39:62:a1:a9:e5:5b:47:99:4d:15:71:4f:74:87:01:94:
85:c4:a9:85:e7:c8:11:dc:72:d0:7a:eb:67:ea:51:7e:72:ed:
e1:f8:0b:96:ec:42:63:86:ee:86:f9:21:7f:a4:41:28:0a:fa:
33:8b:0a:c5:56:c4:ea:ec:09:4d:50:49:6f:eb:6b:8b:f2:f2:
3d:c8:fb:89:da:d8:68:72:58:1e:c0:8f:5d:fa:8e:25:e2:65:
b3:fe:2c:fe:34:8a:4e:4e:92:db:aa:1a:58:cf:d9:cc:0c:b5:
26:48:06:0b:e2:3e:36:2a:fb:fc:92:de:92:e3:55:df:e2:0d:
f3:40:c8:37:f6:3c:06:bb:f0:1c:79:e8:cb:77:cb:ed:fc:64:
74:2a:35:96:d5:7f:12:13:68:3b:e7:9d:37:81:38:8b:f9:a5:
9c:f5:83:87:90:33:42:d1:bb:31:57:cd:5d:cf:28:31:d2:03:
e4:0d:38:ce:c4:39:d9:dc:c3:22:e8:20:64:19:89:fa:b3:3c:
ff:54:cc:4d:8d:e5:62:dd:62:fb:17:33:7c:b6:fc:98:f1:3f:
bd:33:a7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:57 2026 by rpki-client