Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
File: AF8NRLIh9LEcidtolp-Xw8cVSQY.mft (raw, json)
Hash identifier: XG0IYm8FKl91zic0AuV6VAR07nPkQhGykGHlgKXX7Io=
Subject key identifier: 0C:EB:D5:48:8F:88:ED:DC:B3:DB:F1:AA:96:58:46:6F:42:0E:0A:E0
Authority key identifier: 00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
Certificate issuer: /CN=005f0d44b221f4b11c89db68969f97c3c7154906
Certificate serial: 019CE5918562721420D7A16BDFADB5F1CDF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
Manifest number: 1864
Signing time: Fri 13 Mar 2026 05:00:45 +0000
Manifest this update: Fri 13 Mar 2026 05:00:45 +0000
Manifest next update: Sat 14 Mar 2026 05:00:45 +0000
Files and hashes: 1: AF8NRLIh9LEcidtolp-Xw8cVSQY.crl (hash: BRuVFli86F3kZp0wXQSEV6oZMM8oIJ0X0UyD6lWNLnM=)
2: kJQsI98iVa9ZD7yxoQppC6FP-XY.roa (hash: DqgDfqLMHMB6Ed3JqGpWQxjC4rt/X0IDDmE+DZGx1YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:85:62:72:14:20:d7:a1:6b:df:ad:b5:f1:cd:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005f0d44b221f4b11c89db68969f97c3c7154906
Validity
Not Before: Mar 13 05:00:45 2026 GMT
Not After : Mar 14 05:00:45 2026 GMT
Subject: CN=0cebd5488f88eddcb3dbf1aa9658466f420e0ae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:85:b7:96:bb:1f:34:69:72:19:7c:b5:3d:7a:
0f:2f:74:7b:2e:fb:e0:d0:bd:1b:75:76:52:cb:0c:
4e:7a:20:fa:68:d3:94:a7:c8:2a:ff:7d:ac:e2:98:
9d:31:d2:87:00:b3:f0:cb:3a:25:99:06:02:a8:4b:
a3:bc:c1:f5:0f:f9:69:ab:de:ee:6d:b0:f0:5b:5f:
01:0d:af:c8:93:85:d4:2c:92:05:34:a4:4b:86:e7:
c2:bd:b7:51:94:4e:5d:3b:82:b2:a1:ee:e2:28:c7:
49:3c:05:61:d4:ae:90:aa:b6:54:50:b2:96:42:5d:
15:d5:82:cd:c6:1e:b2:1f:47:47:01:d9:2c:a7:c4:
5e:38:23:51:85:81:1b:f7:e8:f3:ce:7e:eb:e7:04:
ad:5b:08:3f:7c:bd:20:fb:0c:4c:5c:50:e8:00:96:
24:a6:a4:23:d2:8c:d9:ab:2d:1f:b0:42:1e:33:8e:
94:55:39:a7:f5:b2:ad:8a:68:24:92:00:58:43:93:
0f:c3:02:14:b1:1e:db:ca:c3:f9:cb:e0:34:fe:6e:
1a:2d:92:52:a0:4b:39:cf:99:2c:27:bb:e6:ea:1d:
fd:f7:b0:37:2a:20:c7:13:c3:6c:9d:70:cc:eb:71:
78:b1:d5:25:07:14:df:44:46:64:6a:c0:65:fc:18:
38:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EB:D5:48:8F:88:ED:DC:B3:DB:F1:AA:96:58:46:6F:42:0E:0A:E0
X509v3 Authority Key Identifier:
keyid:00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:37:29:05:ad:9b:6a:fc:1e:bc:fd:e6:36:d4:1c:47:b4:97:
a2:45:30:4e:eb:c8:b5:f2:39:95:b8:11:a6:0a:60:d1:7a:6a:
59:f7:d5:64:fb:1b:e2:b8:fe:4a:1f:63:00:c5:e6:9a:b7:b0:
fb:52:9d:ad:bb:5e:9d:12:9c:96:04:28:44:53:ce:41:47:e5:
4f:69:74:46:e8:ef:8c:a6:e0:f4:17:d9:b3:e4:7f:b7:59:74:
22:ab:0a:ec:e1:22:8c:6c:8d:dc:ea:6d:e5:a4:46:c1:e9:ac:
2f:b6:c7:b0:bc:05:ea:0a:72:8e:7b:ed:4c:91:3b:45:7f:7e:
89:2f:25:3a:fb:88:94:84:f2:3d:23:76:80:9e:21:42:a5:95:
f7:99:5a:35:0b:fa:f7:da:b2:72:5f:42:bb:a5:9d:18:ef:61:
15:44:cb:8d:a6:a1:a0:82:95:3d:37:b4:5b:2f:32:94:63:fb:
ce:71:fb:96:3f:59:f9:39:cc:06:66:0d:2a:60:e5:ae:90:37:
0c:e8:eb:53:37:1e:0f:de:ca:90:0f:f8:0a:ac:82:b7:79:cb:
6c:c1:5d:f5:39:ec:08:e5:70:d6:1d:36:d6:88:3f:95:a8:f3:
5e:77:c6:0c:fa:99:c2:fb:e1:3f:d5:13:7e:a6:2b:94:bf:9d:
71:ae:ca:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:57:25 2026 by rpki-client