Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
File: AoT9lBz3spS4gudNsPyXFnQ02rw.mft (raw, json)
Hash identifier: SPGH5Qi7NFfGOIl+rm4tN9k5YUqGk4oLCebP6xaktkc=
Subject key identifier: 7B:0D:40:41:3E:2B:DE:7A:07:8B:87:50:78:15:A8:77:C6:B8:E0:7E
Authority key identifier: 02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
Certificate issuer: /CN=0284fd941cf7b294b882e74db0fc97167434dabc
Certificate serial: 019DCDBE0CF5A345CA51DFD9E348CB50A8B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
Manifest number: B7
Signing time: Mon 27 Apr 2026 07:01:17 +0000
Manifest this update: Mon 27 Apr 2026 07:01:17 +0000
Manifest next update: Tue 28 Apr 2026 07:01:17 +0000
Files and hashes: 1: AoT9lBz3spS4gudNsPyXFnQ02rw.crl (hash: kH+ez0hLdjotZuHelCjI1jYO8P8tzb1g8Z4ZIuKiGnE=)
2: KWX40V7o8A6zMkKoIGkCmwKYmr0.roa (hash: nJ0kf2dRdOxQXbxBLcQMmLtNRpU/yw5QdnU4YcpxOtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:be:0c:f5:a3:45:ca:51:df:d9:e3:48:cb:50:a8:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0284fd941cf7b294b882e74db0fc97167434dabc
Validity
Not Before: Apr 27 07:01:17 2026 GMT
Not After : Apr 28 07:01:17 2026 GMT
Subject: CN=7b0d40413e2bde7a078b87507815a877c6b8e07e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:90:38:11:68:e4:eb:46:4b:ee:49:67:9e:41:
4f:1c:17:eb:96:ac:20:be:43:07:50:3c:0d:e0:26:
1e:80:4f:20:cf:9b:30:22:7d:18:39:dc:d1:6a:6c:
21:c2:82:40:4e:52:e9:a2:36:43:3b:2e:fd:63:c3:
45:4b:5f:d4:5f:9d:d9:f7:cc:89:75:bc:d0:19:c9:
f5:5f:c9:36:fc:95:e3:94:10:d6:46:74:e4:81:14:
3d:95:bd:57:0d:c7:41:17:f9:c3:05:3e:73:30:75:
c0:8f:3c:05:b0:ac:59:6d:17:4c:ac:53:ca:4d:0c:
d0:0f:5a:9e:cb:45:9b:6b:01:f3:7e:4b:c7:a0:84:
4b:a9:74:9d:1a:0b:81:22:6f:6d:9c:41:f7:69:41:
f5:33:da:78:2f:ec:2e:29:47:ce:75:f0:ed:e2:84:
6d:6b:69:ff:d0:97:c3:65:e1:89:25:6c:b0:ea:36:
77:b4:d2:02:b2:c8:a1:b3:7a:a0:66:21:28:48:36:
26:f4:56:11:dd:24:d8:b5:d4:93:a5:06:9e:91:ac:
f1:51:64:cf:b6:14:aa:d7:9d:63:37:ee:79:ad:2d:
6b:f9:ac:92:41:03:9a:05:b7:8c:41:67:85:65:57:
c2:df:91:f3:49:86:0c:da:fc:b9:02:98:00:a8:d0:
c3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0D:40:41:3E:2B:DE:7A:07:8B:87:50:78:15:A8:77:C6:B8:E0:7E
X509v3 Authority Key Identifier:
keyid:02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:96:77:67:6f:c2:88:b5:97:c3:12:80:2e:64:d1:27:ad:61:
b9:aa:06:04:f7:01:f0:f5:b0:3f:45:5e:52:58:98:bb:d8:78:
af:4a:cc:2f:b1:bd:41:de:3b:da:d5:14:44:4f:6d:85:6b:01:
1a:23:1c:a6:da:e5:95:da:6d:6e:d0:e5:bf:72:3b:49:4c:88:
51:49:ae:b8:06:68:66:f9:1c:79:eb:80:87:88:88:3d:00:60:
c0:2f:a8:c7:31:67:ad:d7:48:fb:46:f5:4a:5d:b3:ff:0c:07:
ed:33:bb:c5:3a:c7:f3:f6:20:82:bd:eb:19:00:ad:e2:ac:a0:
aa:98:d6:92:e1:51:6c:d1:9d:e4:30:6c:b4:c5:eb:8a:26:13:
25:56:01:4a:6f:72:97:df:e6:86:23:7b:42:99:da:e0:fc:1f:
85:7e:16:91:42:3d:3c:79:b7:e9:86:32:f1:88:48:3e:89:30:
4b:28:6b:25:08:0c:5c:4d:3d:00:48:9b:74:e3:06:bd:58:6e:
25:42:75:cf:5d:66:9b:a6:d9:f7:ff:35:94:85:41:fb:23:a4:
1a:e4:23:6e:8b:ca:4b:c1:c8:e5:bc:d5:1e:f2:62:ca:f9:82:
00:b3:02:e4:3f:8f:b0:f7:91:1c:d8:06:e7:97:85:c3:42:d1:
fb:3e:7f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 11:20:06 2026 by rpki-client