Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: t1FcnLL4+jfypO8Nogg0CbxmDloQe5PD1EoyP3vSPsQ=
Subject key identifier: F0:32:5C:8C:8C:84:86:9A:F1:61:60:67:C3:D8:B7:EA:D3:D8:3A:CC
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 019D382E057993E2135C7234861ABADCEE05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0B34
Signing time: Sun 29 Mar 2026 06:00:33 +0000
Manifest this update: Sun 29 Mar 2026 06:00:33 +0000
Manifest next update: Mon 30 Mar 2026 06:00:33 +0000
Files and hashes: 1: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: 65vIVUBo+mbPpX+50fjTu6kFdTuYZlksKlbkod85Ikc=)
2: MaRtt04jowFFk86_uuutN8hcKss.roa (hash: fZU76DAwqdxnrxuVOqFEOQy5RWDLvAlUDG+K/0ngLTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:05:79:93:e2:13:5c:72:34:86:1a:ba:dc:ee:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Mar 29 06:00:33 2026 GMT
Not After : Mar 30 06:00:33 2026 GMT
Subject: CN=f0325c8c8c84869af1616067c3d8b7ead3d83acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:10:4e:18:f8:92:95:6d:10:2f:f7:ff:ff:94:
a5:75:1d:8b:ab:c3:cf:80:e4:77:c6:0e:92:af:07:
5b:16:a6:b0:f5:38:58:2a:95:f9:9e:fb:96:61:28:
97:b9:d4:44:d5:e2:81:68:ac:82:06:1c:0b:99:f3:
70:bc:b3:7a:b5:0e:04:bc:fe:a7:7c:a8:63:46:34:
52:2a:56:7d:b3:ce:af:f2:fc:bd:54:14:64:6f:f1:
6e:c2:a3:32:8f:ca:6e:c8:ba:aa:b0:20:41:f1:f2:
49:58:6e:41:02:2e:8e:4d:60:75:14:1a:39:ce:ce:
96:57:25:1d:75:32:e7:f2:d0:09:e4:74:e2:5b:1a:
bf:83:78:53:ce:b0:52:3e:c3:18:89:d1:15:ad:ae:
67:07:42:45:2d:94:85:b1:53:eb:a4:55:e9:d3:3f:
97:c2:bb:51:1f:ac:7c:35:1c:33:ad:3a:99:65:3f:
10:8d:7a:a6:e5:31:48:7b:1b:2c:ff:4d:a9:9d:4a:
f8:17:7f:75:d4:e2:a1:db:33:7f:c6:84:2f:ea:b6:
9a:92:3b:18:b5:f7:22:5e:c1:56:32:d2:4b:3c:a0:
86:2b:fa:64:41:94:1d:bd:6a:ac:86:a3:19:02:0b:
5d:7b:03:62:66:04:53:6d:95:ff:d6:83:01:7d:66:
6c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:32:5C:8C:8C:84:86:9A:F1:61:60:67:C3:D8:B7:EA:D3:D8:3A:CC
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:ae:b7:cb:71:74:df:43:1b:dc:37:76:11:30:de:04:1e:20:
9a:44:8d:cd:cc:c4:32:af:46:c6:dc:f5:0e:a0:1d:a6:e1:19:
51:b1:af:00:53:2b:8c:60:f5:d6:35:df:84:d2:d3:b1:2b:34:
1b:70:87:9f:47:52:98:b3:01:f7:ba:05:aa:7d:b3:90:7f:fb:
91:92:8e:64:88:83:fc:cb:b1:61:77:2b:a5:12:4d:9c:95:db:
1c:ae:bb:4e:6d:6c:c6:05:11:58:f9:80:37:45:5c:fb:bb:ab:
22:35:0a:36:9e:48:d4:35:81:7e:9b:7a:44:d5:8d:eb:c6:9a:
72:0f:e5:be:60:51:96:45:1d:29:8a:48:c7:0d:29:ff:ca:34:
b2:48:dc:5d:95:b7:4e:da:0d:9d:8d:de:46:7b:a0:df:b3:8a:
97:a6:a2:4d:84:33:9a:68:16:06:5f:d6:10:0e:52:f8:91:e0:
08:99:29:e7:f1:4f:aa:88:44:57:10:aa:5f:1a:9d:9f:29:c9:
b8:a6:cb:c4:82:29:42:5b:a3:58:23:84:8e:79:54:28:96:96:
8f:ee:ac:e1:f5:f5:78:73:54:35:98:e4:35:40:0f:61:11:21:
60:2a:c6:b9:ee:f5:2e:86:4c:0b:73:cc:df:0a:bb:c0:bd:b5:
a6:36:20:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:25 2026 by rpki-client