Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
File: AA0P7izVZpZcoI21UGY8sgtBI0M.mft (raw, json)
Hash identifier: DzXCaLvmbw3npgkr4PVA23+2iiX+XZULh6q4x+/uEDk=
Subject key identifier: A1:61:00:B0:FB:3A:02:00:64:96:51:02:83:73:BA:80:9D:35:58:FF
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 019D37531E899EC47F74C23C758E743312E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
Manifest number: 0E5A
Signing time: Sun 29 Mar 2026 02:01:27 +0000
Manifest this update: Sun 29 Mar 2026 02:01:27 +0000
Manifest next update: Mon 30 Mar 2026 02:01:27 +0000
Files and hashes: 1: AA0P7izVZpZcoI21UGY8sgtBI0M.crl (hash: Z4tqhP+N6S1EifXr7As95eaJW9nIsfGcGC07XEfspSE=)
2: GncCV8dgTUVbY24x3mdknqzuxo4.roa (hash: o/kk/cTaqZtbmM6P1+RTVFyqYG8fEQJocGdfkavOgMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:1e:89:9e:c4:7f:74:c2:3c:75:8e:74:33:12:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Mar 29 02:01:27 2026 GMT
Not After : Mar 30 02:01:27 2026 GMT
Subject: CN=a16100b0fb3a0200649651028373ba809d3558ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6d:2a:ed:dc:9e:8d:32:12:76:5c:d7:43:26:
96:7f:f8:83:15:80:6a:77:e7:7c:0b:42:25:ea:10:
81:2e:55:13:ed:e3:c9:b7:15:de:b7:69:77:43:b3:
1c:07:7c:0a:97:fb:46:3d:4c:f9:46:e8:9a:ee:3f:
5e:5a:d2:b2:3d:23:77:a9:38:7c:5b:6c:e6:f7:fb:
c8:5e:61:f6:f7:d1:2f:74:8a:37:a0:cd:00:b9:82:
99:21:e4:95:86:f9:84:c6:42:44:2c:13:af:28:c0:
9f:8e:64:bb:6e:5e:59:85:e6:90:9d:ae:95:4d:65:
b3:3f:35:d8:00:c2:38:bd:7f:6e:d8:53:5d:4a:b0:
20:6a:5a:33:58:58:6e:44:b4:75:63:d5:09:e2:d7:
7a:44:d3:45:f5:77:dc:2b:36:c1:90:59:3f:73:d0:
11:ee:93:4a:ea:8d:3c:4e:6d:40:23:cb:10:00:dc:
a3:e0:25:87:bb:1c:f5:5f:2e:04:db:a0:c2:16:a3:
4e:79:d1:11:19:a8:93:f1:cc:b7:b0:2f:96:6b:ba:
57:e5:4b:df:80:6e:4a:d3:52:a8:c0:6d:4e:40:ff:
a3:84:ca:b2:5a:92:1a:9f:4b:b9:c0:9e:fb:e0:e6:
13:b5:19:0a:4b:d8:d2:a6:d9:73:f6:75:85:c8:15:
af:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:61:00:B0:FB:3A:02:00:64:96:51:02:83:73:BA:80:9D:35:58:FF
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e3:a5:92:2d:3b:a8:bc:bf:41:64:c5:15:ed:bf:d3:d9:08:2c:
b5:4d:c6:6d:82:32:1c:9a:ee:95:11:f8:12:21:88:e1:96:3d:
7b:00:5c:b4:fa:86:7c:bc:45:2f:ab:f0:a6:d7:b1:7c:7d:8b:
f8:31:13:fd:d0:f9:4a:5c:73:b2:cd:6c:2e:d9:f1:30:b2:8f:
38:b7:d5:b4:22:53:0b:37:b6:9b:ea:2e:51:37:36:97:5f:2e:
72:54:60:7f:69:98:e4:62:c4:7e:86:63:d0:c6:c3:65:a1:59:
50:1e:73:e5:7d:ff:1f:f4:12:50:7d:5c:5b:b7:47:33:33:81:
9d:c3:cd:7d:ba:28:b1:64:c6:c1:1e:d9:5d:9c:00:7d:0d:d4:
eb:5b:23:2f:26:f6:11:47:be:62:a5:11:03:33:c9:09:32:23:
01:1b:36:9d:d9:7c:fd:33:21:02:ad:a0:92:d7:d6:26:2f:2e:
f4:5d:f0:ba:ae:d4:f1:6a:92:22:d5:11:2e:35:d6:76:44:4d:
ee:da:df:c4:19:4a:22:fd:ed:3a:04:28:4a:48:cf:9b:6c:b1:
5e:42:8b:a0:9d:bd:3b:b1:f2:c3:f0:91:d5:36:79:cf:7c:1e:
5e:00:f0:18:50:d3:d0:23:82:21:23:7a:31:63:05:a8:0e:98:
5f:a1:fc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:57 2026 by rpki-client