Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: aDSmn1EsHA732y00Tohkmvp3w8PXcgcGPoWo5EXh7lc=
Subject key identifier: 1F:DA:20:5C:08:35:E2:2F:5C:A3:83:34:DB:7C:D2:9D:F7:74:E4:C6
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 019D39E595B3E6487AF8155DC855D5A8F3D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 08C9
Signing time: Sun 29 Mar 2026 14:00:40 +0000
Manifest this update: Sun 29 Mar 2026 14:00:40 +0000
Manifest next update: Mon 30 Mar 2026 14:00:40 +0000
Files and hashes: 1: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: jvzh3fq9wRnQdbOSwGl36xPvlFLMRhAmwXo1TtiKfZI=)
2: mkJVv52KXzS0LGki_sJR1Wvh3lE.roa (hash: wCY7SDIJn73GbW1ubNf3mR9Y3+r8QLN2wbBS3yUgUpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 14:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:95:b3:e6:48:7a:f8:15:5d:c8:55:d5:a8:f3:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Mar 29 14:00:40 2026 GMT
Not After : Mar 30 14:00:40 2026 GMT
Subject: CN=1fda205c0835e22f5ca38334db7cd29df774e4c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f7:5f:93:cc:bc:81:63:8d:0b:14:07:25:c3:
af:d2:09:2c:62:44:3d:e5:26:d8:6f:bc:d4:8c:00:
48:87:4b:a2:cf:9f:59:ad:ec:d0:82:b1:cd:7a:cd:
ca:1a:7b:7f:95:8f:f4:97:23:d3:52:a4:42:d3:c2:
15:ef:42:db:8d:d1:04:05:ec:c3:12:1a:fd:38:27:
62:a9:0b:57:b8:5e:a5:97:c5:4d:67:92:ed:00:f5:
62:16:d6:28:78:7d:a0:80:95:48:3a:1e:fb:a1:63:
b5:d4:32:fd:82:42:21:00:62:85:26:30:15:5f:8c:
96:7d:0d:e7:7d:c8:66:61:1a:c9:65:08:1e:8c:da:
a6:dd:35:65:51:c8:fc:5c:0b:8e:3a:b9:0a:5c:03:
e2:5e:4b:08:3a:72:3c:9d:7a:8c:9c:fc:fd:3a:3f:
7c:07:20:0d:67:a4:e9:bf:a0:ea:8b:d1:a6:39:12:
a2:88:7c:e2:89:23:1e:cf:af:91:cd:82:74:17:ed:
4a:33:27:0a:ba:73:11:cb:cc:3d:c0:c6:67:b2:54:
89:7c:cd:cc:20:df:b1:9f:d2:e5:f1:1f:10:2a:83:
90:c8:ec:c4:9d:a2:83:87:9a:0a:bc:89:95:4a:63:
4f:04:2d:36:17:19:f3:3f:b8:90:26:21:fc:ae:c5:
08:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DA:20:5C:08:35:E2:2F:5C:A3:83:34:DB:7C:D2:9D:F7:74:E4:C6
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:b2:e0:85:99:72:4c:b3:e0:a6:a4:ea:fc:b4:90:0d:b7:79:
1f:7f:d6:af:12:24:04:c1:d0:47:1b:e2:2c:a7:db:16:92:ad:
8a:91:37:c4:47:bf:5e:58:db:7a:81:56:32:d9:44:a4:c5:64:
1d:9d:9d:39:af:b7:11:d1:12:ad:50:32:d1:3a:8c:e1:8d:30:
0d:4d:8d:e4:ef:1a:33:50:38:a1:89:1d:45:d5:59:be:34:66:
ce:34:7d:f1:ed:cd:cc:ce:c9:9d:69:c1:6f:bb:b3:61:7b:94:
4d:a6:81:4d:06:63:ab:27:ca:7f:7a:b9:95:83:ad:cc:e9:ea:
9d:47:d1:f1:79:dc:57:1f:e5:af:ea:dc:3c:f4:11:c1:6a:08:
d8:ad:28:10:98:b8:10:c5:46:d6:0c:a7:c7:57:8f:8b:e0:7b:
b4:f2:c5:68:46:fe:13:0f:b6:1b:26:91:cf:d4:42:b3:7a:f1:
0c:df:82:80:7f:23:e6:d4:95:ef:90:0c:4c:22:f6:d9:34:e6:
6b:95:57:06:4d:1a:55:73:52:7d:2f:38:03:35:a1:54:ba:2e:
96:af:4a:4c:0c:5b:0d:db:c2:d0:4d:0a:01:dd:7a:34:cd:f7:
9c:81:3b:fa:a3:e5:db:1f:d9:a6:66:25:b2:1a:3f:c0:3e:3b:
a0:d5:e1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:51:21 2026 by rpki-client