Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
File: aYfUeTXhE31URCbbUojhKpwCWsI.mft (raw, json)
Hash identifier: lRX3D/P07YYlTp1czCr0MAGsQ32IBDFUXKuMhFB9sbU=
Subject key identifier: CA:35:5F:9B:E8:4C:14:8A:4B:76:9B:B5:4E:53:09:52:46:12:06:03
Authority key identifier: 69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
Certificate issuer: /CN=6987d47935e1137d544426db5288e12a9c025ac2
Certificate serial: 019D0440A7B41CFF88FAE4C5228D63D27FE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
Manifest number: 1039
Signing time: Thu 19 Mar 2026 04:00:39 +0000
Manifest this update: Thu 19 Mar 2026 04:00:39 +0000
Manifest next update: Fri 20 Mar 2026 04:00:39 +0000
Files and hashes: 1: aYfUeTXhE31URCbbUojhKpwCWsI.crl (hash: monUpe6zJWENbUOK1xPMeLHgLlblCIctdzG7mpTu7s8=)
2: hHMxYrkbIkFlZ-X8dtv-2AQEohA.roa (hash: UNg1Ev3uL6ITTCViVHYmyV+MQPsqTHd5HHXqSXS8miA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:04:40:a7:b4:1c:ff:88:fa:e4:c5:22:8d:63:d2:7f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d47935e1137d544426db5288e12a9c025ac2
Validity
Not Before: Mar 19 04:00:39 2026 GMT
Not After : Mar 20 04:00:39 2026 GMT
Subject: CN=ca355f9be84c148a4b769bb54e53095246120603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:51:2f:30:cd:45:6d:43:81:9c:11:48:cc:a5:
c3:13:7c:7c:d6:4c:1d:71:40:80:74:90:dd:0c:81:
75:fb:d5:a5:b5:cd:a2:7b:9b:3f:75:b7:32:58:69:
62:93:6f:74:19:73:74:28:73:70:bb:ea:00:ac:b6:
be:64:6d:25:11:ea:28:a4:e5:6f:b1:29:3f:48:59:
3a:75:3f:5d:0f:a4:4e:53:eb:f7:da:4d:f2:09:32:
5d:1f:ea:f7:54:ea:0f:26:83:27:d1:a0:a8:62:2b:
95:ca:9f:e4:6e:2b:d2:a3:11:5a:a7:0f:0e:42:ee:
ea:88:3a:d1:e7:32:a3:39:c9:50:93:83:2c:62:dd:
d8:2b:ae:a0:ab:7e:6c:6b:ad:11:ab:ec:bd:ee:94:
a5:af:34:9b:90:fa:06:cf:69:96:82:cf:76:ee:9d:
4a:27:3c:b0:2e:66:a2:25:f3:28:4a:de:a8:8b:c0:
b8:4c:d4:58:04:20:20:fc:b8:31:ca:ce:86:e1:8e:
60:2e:bc:cd:16:2e:5c:50:14:eb:bb:00:16:54:a7:
af:be:72:f6:c3:0a:3e:99:1d:5d:d9:0c:90:65:74:
83:e6:ed:30:eb:17:0b:16:b5:35:84:85:42:e0:28:
73:ac:ae:fd:6c:28:3a:3d:48:cb:73:df:0c:f3:a5:
9d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:35:5F:9B:E8:4C:14:8A:4B:76:9B:B5:4E:53:09:52:46:12:06:03
X509v3 Authority Key Identifier:
keyid:69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:dc:c9:2d:c3:3d:3b:bc:34:44:1d:80:8f:e6:2d:8e:25:14:
8b:b3:52:fc:68:f2:37:6e:57:9e:ee:f1:ea:e2:a2:52:4d:85:
31:15:16:14:4f:8d:e8:33:9d:31:94:70:53:63:c5:54:4d:fd:
71:ee:dd:13:00:41:8d:a2:57:4a:e4:58:44:f7:42:f0:3d:b2:
1d:6a:1d:88:4b:c0:e5:c7:ed:0a:5d:71:e1:6b:91:bf:ab:14:
ea:eb:1d:18:26:35:d7:0a:95:3d:bf:9e:9c:85:ba:d7:ca:83:
02:7d:da:0e:c0:cc:12:f4:e1:a2:27:bd:76:82:d3:62:6e:73:
e6:2f:9c:4e:a8:33:41:c9:9b:76:a8:ab:0d:93:f6:60:18:7d:
69:62:08:63:b4:83:6f:e5:b5:16:68:3b:17:9b:ed:e9:25:04:
69:0a:6a:17:9d:6f:0d:86:4b:42:53:13:91:a6:12:03:19:68:
04:6f:8e:af:a7:c5:17:ce:e6:44:b9:d3:43:31:be:26:41:7c:
8f:a5:c6:eb:89:4c:2a:88:e2:3a:65:21:85:89:1b:0b:d6:eb:
bd:8d:0a:ae:32:2c:38:6e:fe:05:16:ad:3f:12:a0:24:53:92:
08:80:5b:06:c8:a1:81:ad:22:4c:94:30:fe:3d:b2:45:a7:2f:
7e:59:ab:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 19 13:54:34 2026 by rpki-client