Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
File: AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft (raw, json)
Hash identifier: d0c8sooeQkdWA9PAJAVNdjtmYR/96tNEfGw/PMNq6IQ=
Subject key identifier: 52:B2:98:D1:87:DD:38:E0:B2:CB:E4:79:28:A6:3B:51:F1:BB:72:8D
Authority key identifier: 01:3F:6D:B0:FD:57:D1:9F:9E:E1:52:42:A2:E4:16:7E:FB:52:2D:04
Certificate issuer: /CN=013f6db0fd57d19f9ee15242a2e4167efb522d04
Certificate serial: 019F175505FA677A52552445EDCC11BB3791
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
Manifest number: 0E5D
Signing time: Tue 30 Jun 2026 07:01:15 +0000
Manifest this update: Tue 30 Jun 2026 07:01:15 +0000
Manifest next update: Wed 01 Jul 2026 07:01:15 +0000
Files and hashes: 1: AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl (hash: QcCBzZgxLOQD7qhTLpxLOywgLLXA2lnhyy3T5wPBSws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:05:fa:67:7a:52:55:24:45:ed:cc:11:bb:37:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=013f6db0fd57d19f9ee15242a2e4167efb522d04
Validity
Not Before: Jun 30 07:01:15 2026 GMT
Not After : Jul 1 07:01:15 2026 GMT
Subject: CN=52b298d187dd38e0b2cbe47928a63b51f1bb728d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:af:9d:d7:f7:ed:d7:35:20:2f:9f:d2:3b:1b:
5f:7a:07:a7:70:d0:ec:4f:41:08:44:ee:1f:83:a2:
26:cb:4b:3c:ad:60:95:9a:91:1e:36:78:36:66:1e:
03:d0:b2:5f:da:03:73:dd:9a:38:bc:9e:a4:de:f9:
cf:2d:8e:da:54:74:1b:48:0e:f9:8e:6e:9d:05:9f:
2d:25:21:3d:43:16:0b:9a:e4:f0:4b:3b:3a:0a:a0:
32:4b:13:29:84:08:ed:ef:0d:58:e6:37:88:15:e7:
28:88:f6:ad:34:83:0d:65:6e:52:60:71:9c:24:48:
e9:d8:0f:3c:73:1f:fc:5d:d8:89:1e:b1:a7:6c:7e:
a2:4e:b9:a6:64:1c:45:56:12:f5:b7:38:be:86:d3:
bd:d6:a8:16:a2:bf:c9:49:25:98:9e:f1:a3:cd:f8:
2e:a7:74:b6:65:05:33:b3:81:52:01:02:fb:ca:ff:
8b:37:47:cc:7b:87:c3:3f:eb:fd:2f:b0:e9:49:9e:
2a:5c:04:a4:6a:1d:57:ac:79:5c:4d:2f:8c:3e:bc:
03:6b:76:0b:50:13:8c:8f:32:96:0b:54:e7:c1:cf:
1c:f2:09:8c:c8:30:44:2b:c8:96:51:30:2b:8f:39:
5e:f9:c7:31:7b:dc:d2:a7:c7:34:c7:bd:ce:b1:b3:
9f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B2:98:D1:87:DD:38:E0:B2:CB:E4:79:28:A6:3B:51:F1:BB:72:8D
X509v3 Authority Key Identifier:
keyid:01:3F:6D:B0:FD:57:D1:9F:9E:E1:52:42:A2:E4:16:7E:FB:52:2D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f63307-4a0f-4053-8fc3-f535578984c2/1/AT9tsP1X0Z-e4VJCouQWfvtSLQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:fe:0d:b7:8d:1f:8b:17:df:68:07:c9:d1:1f:aa:17:dd:1c:
cc:5d:26:d1:d7:e7:e0:7c:df:d4:ca:db:f2:56:d3:7e:6a:a5:
37:bc:ee:ca:65:c4:8a:d9:bb:d3:cd:44:50:c5:74:93:8c:15:
3d:ee:72:a2:af:3a:ab:d2:c8:51:6b:2a:02:cc:d3:2a:c8:e5:
ee:04:9b:e0:18:94:1a:89:a0:68:85:13:13:42:d5:7f:b2:87:
05:85:3d:74:c0:db:81:80:dc:63:8f:1b:6c:9d:35:86:49:9e:
65:c4:fb:aa:01:92:8e:78:af:b6:5f:84:98:6a:8f:92:a6:d0:
84:60:34:a0:11:d7:94:79:a4:86:ae:18:23:0b:9d:b1:0e:ae:
cb:1d:22:99:7d:0f:04:b9:f4:fa:b5:ef:82:6d:b0:89:f4:25:
71:34:b4:cb:0c:97:51:d5:50:fd:bc:93:9a:c7:a5:71:e0:75:
6a:98:b3:18:00:49:23:61:02:83:23:46:8a:b2:24:e3:b3:20:
26:a4:a9:93:f5:a5:b1:35:d5:d1:9a:b3:68:ea:e9:44:1f:13:
14:2e:ea:97:ed:ef:c6:e6:29:9c:b8:6e:0f:f4:9c:7c:33:7b:
9c:5a:dd:5b:f4:38:25:cd:f4:89:de:76:ac:3c:09:86:e6:eb:
1d:03:16:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:13:55 2026 by rpki-client