Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
File: AoT9lBz3spS4gudNsPyXFnQ02rw.mft (raw, json)
Hash identifier: 1FzZLQjkdXNwiWjke/+e7xrCD+ICiaPWq0hgCDRYY7w=
Subject key identifier: EB:DD:ED:BE:F0:98:38:61:F5:55:0F:AD:CD:A3:B4:FB:8A:0D:78:55
Authority key identifier: 02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
Certificate issuer: /CN=0284fd941cf7b294b882e74db0fc97167434dabc
Certificate serial: 019EB76ACC11B4B169F80D2248D604A497D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
Manifest number: 0130
Signing time: Thu 11 Jun 2026 16:01:30 +0000
Manifest this update: Thu 11 Jun 2026 16:01:30 +0000
Manifest next update: Fri 12 Jun 2026 16:01:30 +0000
Files and hashes: 1: AoT9lBz3spS4gudNsPyXFnQ02rw.crl (hash: LQ9hrbePgljR9t+/rF5BjlvNUqu+BIUuELP0NFkRf/I=)
2: KWX40V7o8A6zMkKoIGkCmwKYmr0.roa (hash: nJ0kf2dRdOxQXbxBLcQMmLtNRpU/yw5QdnU4YcpxOtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:cc:11:b4:b1:69:f8:0d:22:48:d6:04:a4:97:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0284fd941cf7b294b882e74db0fc97167434dabc
Validity
Not Before: Jun 11 16:01:30 2026 GMT
Not After : Jun 12 16:01:30 2026 GMT
Subject: CN=ebddedbef0983861f5550fadcda3b4fb8a0d7855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e4:30:20:65:52:2d:51:bf:a6:d5:de:10:5c:
bb:ea:19:73:8d:34:4a:b6:8e:32:7c:94:f5:01:58:
7a:4a:6f:e2:f0:e7:46:6b:67:b8:bc:c0:c0:cc:a0:
2a:e8:4d:2f:9f:31:e1:ac:0c:ec:74:18:4a:2e:a4:
61:91:16:e8:48:de:68:df:e7:e8:51:be:ad:23:a2:
23:a9:88:a5:c4:d4:e8:3d:63:82:58:7c:7b:e2:95:
de:07:bf:ae:34:0a:a5:6b:3d:2c:8c:92:b0:7f:cd:
1d:e4:49:64:f3:63:f9:6b:47:d9:2d:d0:25:f5:fc:
04:0c:eb:d7:a7:73:2b:82:93:e7:7d:8a:87:c2:92:
0e:9a:72:1e:a5:ce:80:6e:54:4f:66:8f:8b:85:28:
a9:0d:76:6a:24:bb:cf:57:c1:d6:63:76:cc:5f:72:
fe:d7:5d:53:19:2e:3c:cc:cd:67:06:86:64:3f:55:
3a:10:52:52:6a:ef:31:59:12:fb:21:ce:14:f4:f5:
b7:b0:54:ba:94:4b:33:3a:2a:93:f6:38:fe:f7:0a:
73:c5:f1:80:77:7b:57:9f:8f:f2:06:cc:2d:51:08:
d2:49:9d:8e:10:fb:51:98:2a:cf:43:f4:0a:4c:4b:
53:71:c7:13:c9:05:16:43:d6:f2:72:f8:11:24:1f:
3f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DD:ED:BE:F0:98:38:61:F5:55:0F:AD:CD:A3:B4:FB:8A:0D:78:55
X509v3 Authority Key Identifier:
keyid:02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:7c:72:c3:d8:aa:d0:de:e4:22:ab:61:7c:10:c2:8a:67:dd:
6f:74:f5:99:1f:e2:56:4d:57:01:64:5c:83:86:ff:f5:d0:aa:
f8:18:c5:b6:79:a6:cd:4f:b5:bf:b2:69:b5:85:db:21:d3:64:
db:5a:b0:93:2a:4e:29:e3:62:fa:59:ec:20:5b:11:23:84:3b:
ed:5a:7c:64:4b:a0:ad:5f:61:62:3e:1a:03:29:cb:9d:35:5b:
9b:02:7e:c6:a7:dc:70:c1:8f:37:c1:07:62:c7:1b:97:a8:b3:
5c:6f:94:48:8e:75:04:dd:52:1d:47:07:54:65:f1:16:ed:55:
9b:06:de:bd:16:c0:aa:92:c1:92:19:ea:96:87:a6:c0:64:6c:
6f:f7:ed:6e:a4:ed:fb:bf:6e:1f:cd:e0:47:a0:39:ef:bb:9c:
52:63:6e:bf:22:6d:6d:c6:a5:49:9b:3c:e1:93:7e:2b:a7:6d:
bd:a3:c6:9c:5a:61:07:04:89:8b:7a:24:8c:84:3c:a3:0f:1c:
35:ae:ea:a5:73:c3:79:c9:d6:28:66:1c:df:f2:41:f5:6c:d6:
04:61:13:60:ad:93:53:43:10:4a:ad:9f:da:29:c6:0f:3e:af:
e6:b4:9d:1d:e5:6d:1c:f0:ca:e4:cc:10:6e:e9:30:07:35:f7:
a6:23:be:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:54:07 2026 by rpki-client