Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
File: aYfUeTXhE31URCbbUojhKpwCWsI.mft (raw, json)
Hash identifier: senejvJPVUnBi4sw7KKvuoN8L3HH5mlkauo0FXmn7Tc=
Subject key identifier: BF:40:69:F8:D8:B6:E9:36:6B:84:C1:ED:55:8E:FC:EF:8A:55:FE:AE
Authority key identifier: 69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
Certificate issuer: /CN=6987d47935e1137d544426db5288e12a9c025ac2
Certificate serial: 019DEDEDE2CF71C1E54B08913CC2B842FA49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
Manifest number: 10B2
Signing time: Sun 03 May 2026 13:01:23 +0000
Manifest this update: Sun 03 May 2026 13:01:23 +0000
Manifest next update: Mon 04 May 2026 13:01:23 +0000
Files and hashes: 1: aYfUeTXhE31URCbbUojhKpwCWsI.crl (hash: WKH5TwYNLnzqfymLtq6q/PY0qVwYpP2zvcPVhKykO2o=)
2: hHMxYrkbIkFlZ-X8dtv-2AQEohA.roa (hash: UNg1Ev3uL6ITTCViVHYmyV+MQPsqTHd5HHXqSXS8miA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ed:ed:e2:cf:71:c1:e5:4b:08:91:3c:c2:b8:42:fa:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d47935e1137d544426db5288e12a9c025ac2
Validity
Not Before: May 3 13:01:23 2026 GMT
Not After : May 4 13:01:23 2026 GMT
Subject: CN=bf4069f8d8b6e9366b84c1ed558efcef8a55feae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:84:8c:37:76:85:24:b7:c6:31:b0:b2:ef:3d:
6b:cd:2d:18:f4:58:a9:bf:b5:4e:a8:e6:0e:8a:ae:
7d:9a:75:6a:85:fb:f1:68:36:7e:00:68:9a:29:2f:
2a:ad:c2:3d:46:5a:12:59:1a:fb:bf:a8:12:86:fd:
3f:8b:ab:3a:2c:67:ad:fc:2b:43:a6:25:53:eb:be:
1b:f5:0d:de:f1:33:ab:3b:02:44:e1:5d:01:13:53:
4b:d3:14:3a:81:22:53:7b:de:e9:5b:2c:e7:f6:e8:
67:11:3a:08:19:c3:14:43:6c:31:8a:73:9b:07:5a:
b1:60:39:06:b8:be:af:31:6c:4d:ea:d5:a6:e4:7b:
89:3f:9e:2b:82:bf:56:69:d9:69:0e:74:fd:42:8b:
b4:8e:9a:57:48:73:9c:11:f5:67:82:93:b8:81:23:
bc:12:b2:3f:93:b1:87:5e:8a:0f:74:7e:bb:10:7a:
5b:3c:0d:40:f5:2c:e1:c3:a3:6a:de:7b:67:e1:99:
02:04:4a:ef:c9:7f:bc:a5:81:04:71:2d:8d:52:ca:
02:4f:0c:84:86:6a:7f:f4:f2:21:ca:37:e4:5c:42:
5c:5f:69:68:af:c1:e4:b2:c3:8d:65:1f:bb:ae:ea:
fe:05:e2:23:b9:e2:5d:22:84:fb:02:1c:dc:11:94:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:40:69:F8:D8:B6:E9:36:6B:84:C1:ED:55:8E:FC:EF:8A:55:FE:AE
X509v3 Authority Key Identifier:
keyid:69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:b6:e0:5a:8b:e8:54:7d:cc:44:a1:a1:e8:55:81:be:f6:02:
65:31:fc:e7:9a:40:ae:36:93:d2:15:e0:07:d8:c9:b4:b5:92:
32:48:7f:f8:d3:df:f3:2d:54:1a:db:97:e9:82:ce:8f:ef:72:
8f:3b:39:03:b9:58:4e:5e:61:4a:82:1a:a5:2a:65:32:d0:95:
1c:d1:22:31:e1:00:cb:b5:96:8e:fe:cb:27:c0:39:1a:71:28:
bf:37:26:ec:91:ad:4b:a6:38:87:3d:c4:bf:09:33:dd:d6:6c:
7d:33:dc:bd:45:fd:06:c5:cd:cb:20:d6:ce:62:4d:fe:5d:e3:
6d:a8:4e:4b:e6:16:a4:f0:a3:37:76:c0:c6:9c:bc:7b:91:b7:
e1:9b:de:17:b2:45:ca:39:b1:e5:cc:ce:dd:57:75:47:9e:10:
e6:74:7d:75:f6:f3:5f:f9:e3:cf:4d:80:a7:20:8c:f1:56:eb:
60:4f:c2:ac:83:15:c0:f8:6d:c9:c5:ff:73:a2:ec:d8:7b:42:
ef:f4:8b:66:a4:5b:06:e0:3f:c3:be:6d:95:56:13:a8:95:87:
72:1d:18:4f:c7:5f:5a:79:ca:c9:bb:23:a9:50:1b:1d:17:09:
3a:ee:6e:4a:54:86:12:d5:92:27:00:2d:ca:8f:c8:01:6f:32:
3c:23:59:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 17:08:57 2026 by rpki-client