Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
File: aZhQBALIIVz1cQc6SVzcgMdC8sw.mft (raw, json)
Hash identifier: giR5RxjxnydGOalYNYW9u7WJs/h/QO3d7k9QtVf/ZPk=
Subject key identifier: 3B:11:20:C0:62:DE:D7:DF:B4:53:74:0E:06:5D:36:92:18:34:61:B3
Authority key identifier: 69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
Certificate issuer: /CN=6998500402c8215cf571073a495cdc80c742f2cc
Certificate serial: 019D382DFC14E6DAABD827C1CF0A0A9D071F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 06:00:30 +0000
Manifest this update: Sun 29 Mar 2026 06:00:30 +0000
Manifest next update: Mon 30 Mar 2026 06:00:30 +0000
Files and hashes: 1: aZhQBALIIVz1cQc6SVzcgMdC8sw.crl (hash: nvNtzw2BlCKfcBPxG4zc+IgIBHpJmFWer8CMZbgUQbg=)
2: hpJdcso_n4malOGRsLM9jlcq2PA.roa (hash: fdvBY/m75V1oPyWW90Ox8zMppAT8R3oNsWGUpS0XZeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:fc:14:e6:da:ab:d8:27:c1:cf:0a:0a:9d:07:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6998500402c8215cf571073a495cdc80c742f2cc
Validity
Not Before: Mar 29 06:00:30 2026 GMT
Not After : Mar 30 06:00:30 2026 GMT
Subject: CN=3b1120c062ded7dfb453740e065d3692183461b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:04:fd:4a:b7:f3:60:7d:d8:d4:c2:b5:36:a0:
e9:99:b7:c3:42:ac:64:e6:91:bb:12:9d:0f:1a:4e:
12:8f:ff:41:6a:40:52:44:a3:16:5c:bd:68:8d:86:
ab:59:b4:ac:c6:b7:6f:9d:07:59:01:5c:ea:12:f7:
a5:8b:b4:c7:3e:18:63:53:a2:24:f4:5e:76:fc:2a:
c1:33:16:3a:f6:b1:59:fe:57:b2:a5:98:6c:bf:45:
13:31:e6:9a:61:b3:e2:ad:b7:92:cb:b6:f2:1b:89:
38:be:2b:47:c3:7d:fd:a5:24:10:af:c1:c0:17:15:
96:c2:2b:55:9b:a2:98:82:f1:4b:cf:93:34:82:9d:
ef:e8:5a:47:1c:94:c8:f2:bb:07:9c:87:f0:b9:9f:
51:30:ec:65:70:13:01:a9:d6:97:59:ed:1b:98:47:
53:0b:eb:2c:75:4c:7d:fa:99:66:c5:e5:ef:10:2b:
74:aa:51:69:af:b4:7b:2b:eb:e7:e7:ec:0a:f1:16:
bf:6b:41:a8:fc:ef:3d:05:cf:48:ec:22:64:98:52:
cf:c5:3f:8b:40:dd:7d:21:33:12:38:fe:ca:99:cd:
7b:fb:ca:9f:5b:fd:e6:b0:1d:5e:e2:73:d0:b8:ae:
d3:4a:87:46:b5:06:7a:d5:eb:de:60:ad:74:42:27:
b8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:11:20:C0:62:DE:D7:DF:B4:53:74:0E:06:5D:36:92:18:34:61:B3
X509v3 Authority Key Identifier:
keyid:69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:90:cd:71:cc:93:76:a0:97:87:3c:42:c5:35:62:d5:1c:44:
00:5d:c9:b5:ff:3f:6d:51:b6:8d:a2:a7:9b:a2:b5:1b:6b:46:
a4:cf:69:08:d3:fa:20:64:65:23:af:ce:0b:54:3e:b0:14:e2:
b9:db:d4:04:e3:57:d5:6f:83:bf:d6:64:23:fe:09:53:f3:0b:
c9:ef:ba:45:a8:2d:19:3f:05:0c:d7:a6:ea:e7:97:fe:e8:13:
dd:d6:d8:fb:f7:e0:1e:21:92:71:c8:e8:23:7a:c3:c3:93:77:
09:47:e6:30:e1:9d:01:20:4c:6b:cb:7a:16:a6:65:ad:2a:c1:
ed:08:67:48:5e:e2:63:34:75:04:27:b6:7c:e9:85:e3:a9:bc:
7c:f3:72:32:cb:86:36:67:5d:9a:2d:0c:3a:4d:7d:f6:3d:a0:
71:cd:5f:a1:d9:27:55:49:1e:1c:7c:93:cb:41:33:d1:d6:0c:
ae:46:35:16:48:e6:eb:f7:5e:24:4f:e5:e3:73:21:99:a4:9e:
fa:24:07:a3:47:58:2a:f3:07:f9:0f:95:80:57:19:ec:15:bb:
2b:eb:12:7f:f9:13:e6:07:1a:27:49:0d:5a:c0:cc:e9:a6:05:
f0:fe:a5:0b:78:95:b8:c9:2c:c0:c4:44:83:fa:27:60:e7:1b:
ac:cc:df:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LfwU5tqr2CfBzwoKnQcfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5OTg1MDA0MDJjODIxNWNmNTcxMDczYTQ5NWNkYzgwYzc0
MmYyY2MwHhcNMjYwMzI5MDYwMDMwWhcNMjYwMzMwMDYwMDMwWjAzMTEwLwYDVQQD
EygzYjExMjBjMDYyZGVkN2RmYjQ1Mzc0MGUwNjVkMzY5MjE4MzQ2MWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwT9SrfzYH3Y1MK1NqDpmbfDQqxk
5pG7Ep0PGk4Sj/9BakBSRKMWXL1ojYarWbSsxrdvnQdZAVzqEveli7THPhhjU6Ik
9F52/CrBMxY69rFZ/leypZhsv0UTMeaaYbPirbeSy7byG4k4vitHw339pSQQr8HA
FxWWwitVm6KYgvFLz5M0gp3v6FpHHJTI8rsHnIfwuZ9RMOxlcBMBqdaXWe0bmEdT
C+ssdUx9+plmxeXvECt0qlFpr7R7K+vn5+wK8Ra/a0Go/O89Bc9I7CJkmFLPxT+L
QN19ITMSOP7Kmc17+8qfW/3msB1e4nPQuK7TSodGtQZ61eveYK10Qie4sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDsRIMBi3tfftFN0DgZdNpIYNGGzMB8GA1UdIwQY
MBaAFGmYUAQCyCFc9XEHOklc3IDHQvLMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVpoUUJBTElJVnoxY1FjNlNWemNnTWRDOHN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8wNTdhZTgtMGNiNy00ZTE0LThhNWIt
MTg5MDI4ZjMzOTZjLzEvYVpoUUJBTElJVnoxY1FjNlNWemNnTWRDOHN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My8wNTdhZTgtMGNiNy00ZTE0LThhNWItMTg5MDI4ZjMzOTZj
LzEvYVpoUUJBTElJVnoxY1FjNlNWemNnTWRDOHN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMpDNccyT
dqCXhzxCxTVi1RxEAF3Jtf8/bVG2jaKnm6K1G2tGpM9pCNP6IGRlI6/OC1Q+sBTi
udvUBONX1W+Dv9ZkI/4JU/MLye+6RagtGT8FDNem6ueX/ugT3dbY+/fgHiGSccjo
I3rDw5N3CUfmMOGdASBMa8t6FqZlrSrB7QhnSF7iYzR1BCe2fOmF46m8fPNyMsuG
Nmddmi0MOk199j2gcc1fodknVUkeHHyTy0Ez0dYMrkY1Fkjm6/deJE/l43MhmaSe
+iQHo0dYKvMH+Q+VgFcZ7BW7K+sSf/kT5gcaJ0kNWsDM6aYF8P6lC3iVuMkswMRE
g/onYOcbrMzfAg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:34 2026 by rpki-client