Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
File: AA0P7izVZpZcoI21UGY8sgtBI0M.mft (raw, json)
Hash identifier: QfTi+0js7Iie7PKs9ByvxpD4U5Yw/3qb84OFAPwXLQs=
Subject key identifier: E3:1E:8F:0E:50:96:92:49:6A:55:A9:DA:17:61:E9:35:FD:13:44:E1
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 019F183028429F8B3267767A8867E26803DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
Manifest number: 0F53
Signing time: Tue 30 Jun 2026 11:00:36 +0000
Manifest this update: Tue 30 Jun 2026 11:00:36 +0000
Manifest next update: Wed 01 Jul 2026 11:00:36 +0000
Files and hashes: 1: AA0P7izVZpZcoI21UGY8sgtBI0M.crl (hash: W4sgJXT6bwHcCn7cjikvYtUyAQDNLia1TjnJq8lG0yk=)
2: GncCV8dgTUVbY24x3mdknqzuxo4.roa (hash: o/kk/cTaqZtbmM6P1+RTVFyqYG8fEQJocGdfkavOgMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:28:42:9f:8b:32:67:76:7a:88:67:e2:68:03:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Jun 30 11:00:36 2026 GMT
Not After : Jul 1 11:00:36 2026 GMT
Subject: CN=e31e8f0e509692496a55a9da1761e935fd1344e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:41:f2:66:2b:89:44:c9:37:b2:d3:61:2b:c2:
48:b1:cb:d9:e7:e9:92:ee:62:12:0c:ea:da:6a:9f:
08:43:dd:a1:59:94:55:32:e7:58:59:20:69:3b:93:
e9:5c:fb:0a:81:32:31:2b:77:5b:61:34:f2:5d:b1:
f3:8f:18:db:d4:d0:8a:41:6f:33:54:ac:d0:7e:b9:
1c:9a:b8:a2:c2:f6:56:1b:57:14:06:e9:7c:76:04:
49:be:af:a3:c2:cb:fe:00:6c:9b:92:29:76:dc:d6:
f3:f5:b4:26:5a:95:11:fc:07:81:cd:9e:b6:b0:d5:
39:ca:ed:8e:ec:22:91:d5:1c:ef:9c:0a:55:5f:7a:
96:cc:83:f6:5e:81:4c:d0:29:44:0b:73:07:68:da:
6c:0d:6e:13:e5:d3:ed:67:7e:1f:25:b5:26:12:cd:
c6:2e:31:ff:fc:73:75:25:3a:a9:b1:70:41:56:f0:
33:c6:c1:6b:f4:fe:0e:3f:04:dc:69:9e:78:b9:93:
8a:ac:d3:12:ba:b5:ad:88:4e:90:cd:bb:d3:68:14:
8b:cf:90:39:53:ef:aa:9f:22:36:c0:0a:7a:d8:6e:
3b:70:86:1e:39:bf:05:34:6d:b0:40:34:f7:02:a3:
1e:bd:4b:d5:26:f6:eb:34:40:2c:c7:7e:53:cd:b1:
75:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1E:8F:0E:50:96:92:49:6A:55:A9:DA:17:61:E9:35:FD:13:44:E1
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:b8:ed:39:64:73:df:59:94:cc:b1:8a:b4:24:8d:9a:97:f8:
4e:7e:e7:e6:18:19:ed:c6:40:2d:3a:e0:82:0f:ca:12:ed:7d:
d0:6c:43:6a:34:08:08:e9:63:00:97:78:d8:b7:02:8d:17:af:
2e:ad:d5:db:f6:4e:a0:bb:c5:28:85:f1:29:c7:b9:74:40:f9:
8a:f9:e7:33:2d:f7:14:74:28:c2:e3:47:46:5e:86:77:92:ef:
3a:22:df:99:79:80:13:6e:dc:13:c7:2c:f5:5f:d4:a7:e0:a5:
ce:e7:a1:8a:c5:23:67:62:bc:ea:05:55:26:99:0b:e6:1e:1e:
21:4a:93:c6:cd:77:27:85:da:b4:00:f7:cb:fe:5e:b8:77:d4:
8d:2f:9d:56:58:40:9f:ac:ee:b6:8f:58:8b:f6:1d:6a:c8:85:
71:db:44:07:39:2f:88:cd:60:e6:fc:0b:a3:b8:90:82:60:cd:
17:f6:e4:b3:66:fb:c4:ce:ce:e6:cc:0b:c2:db:70:11:22:dc:
c8:22:53:8e:93:3f:c0:6d:9f:d4:e7:b6:f2:a7:eb:95:91:2b:
9a:73:80:e0:f3:cd:2b:30:cd:0d:df:e0:a1:93:d3:8b:bc:fe:
d0:c4:0c:82:37:6b:e2:d9:8d:00:d4:04:98:83:e3:33:c3:bd:
b4:60:6f:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YMChCn4syZ3Z6iGfiaAPfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMGQwZmVlMmNkNTY2OTY1Y2EwOGRiNTUwNjYzY2IyMGI0
MTIzNDMwHhcNMjYwNjMwMTEwMDM2WhcNMjYwNzAxMTEwMDM2WjAzMTEwLwYDVQQD
EyhlMzFlOGYwZTUwOTY5MjQ5NmE1NWE5ZGExNzYxZTkzNWZkMTM0NGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEHyZiuJRMk3stNhK8JIscvZ5+mS
7mISDOraap8IQ92hWZRVMudYWSBpO5PpXPsKgTIxK3dbYTTyXbHzjxjb1NCKQW8z
VKzQfrkcmriiwvZWG1cUBul8dgRJvq+jwsv+AGybkil23Nbz9bQmWpUR/AeBzZ62
sNU5yu2O7CKR1RzvnApVX3qWzIP2XoFM0ClEC3MHaNpsDW4T5dPtZ34fJbUmEs3G
LjH//HN1JTqpsXBBVvAzxsFr9P4OPwTcaZ54uZOKrNMSurWtiE6QzbvTaBSLz5A5
U++qnyI2wAp62G47cIYeOb8FNG2wQDT3AqMevUvVJvbrNEAsx35TzbF1WQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOMejw5QlpJJalWp2hdh6TX9E0ThMB8GA1UdIwQY
MBaAFAAND+4s1WaWXKCNtVBmPLILQSNDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUEwUDdpelZacFpjb0kyMVVHWThzZ3RCSTBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lNmZlMDktYzIyZC00NWI3LWE1OTkt
Yjk0MWJhOTIxYjNmLzEvQUEwUDdpelZacFpjb0kyMVVHWThzZ3RCSTBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9lNmZlMDktYzIyZC00NWI3LWE1OTktYjk0MWJhOTIxYjNm
LzEvQUEwUDdpelZacFpjb0kyMVVHWThzZ3RCSTBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAILjtOWRz
31mUzLGKtCSNmpf4Tn7n5hgZ7cZALTrggg/KEu190GxDajQICOljAJd42LcCjRev
Lq3V2/ZOoLvFKIXxKce5dED5ivnnMy33FHQowuNHRl6Gd5LvOiLfmXmAE27cE8cs
9V/Up+ClzuehisUjZ2K86gVVJpkL5h4eIUqTxs13J4XatAD3y/5euHfUjS+dVlhA
n6zuto9Yi/YdasiFcdtEBzkviM1g5vwLo7iQgmDNF/bks2b7xM7O5swLwttwESLc
yCJTjpM/wG2f1Oe28qfrlZErmnOA4PPNKzDNDd/goZPTi7z+0MQMgjdr4tmNANQE
mIPjM8O9tGBvLA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:48 2026 by rpki-client