Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: 62bzyAFy13wq9Hari0dZlyCTdLnUG2P38dSZNT0/gz8=
Subject key identifier: AA:7A:6F:45:07:D7:89:B4:07:5A:3E:2A:4C:3B:36:71:94:C9:F8:45
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 019F194380B91212AACA7ECFA08D6F96C448
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 0A39
Signing time: Tue 30 Jun 2026 16:01:21 +0000
Manifest this update: Tue 30 Jun 2026 16:01:21 +0000
Manifest next update: Wed 01 Jul 2026 16:01:21 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: lTwzUji3kuu0PDuj3/oOEwUrtFmuxvUV/5LTGSgyWdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:80:b9:12:12:aa:ca:7e:cf:a0:8d:6f:96:c4:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: Jun 30 16:01:21 2026 GMT
Not After : Jul 1 16:01:21 2026 GMT
Subject: CN=aa7a6f4507d789b4075a3e2a4c3b367194c9f845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e6:fb:da:4f:31:4a:25:ec:24:0f:87:8a:95:
0c:a1:02:4d:51:f3:a6:57:ee:60:d8:b0:4b:e3:0b:
ee:73:5c:6c:8c:e1:73:24:9e:f7:64:e7:ac:12:8c:
43:59:ad:ee:93:00:a2:62:b7:c5:55:f0:44:14:08:
a9:c0:f2:a1:12:6e:a1:91:4f:d4:46:23:cd:69:ac:
77:e9:db:ae:38:a2:34:d2:f2:09:70:2c:1a:6a:52:
06:9a:17:57:0b:ca:6d:ef:ee:e6:d0:ed:ff:18:27:
f5:e8:29:ee:55:cc:0a:da:8d:28:4f:ae:b9:6e:03:
da:33:e2:cf:51:da:69:61:2b:a6:d4:6c:8d:33:df:
d5:51:c2:c8:20:47:0f:0c:35:ef:28:54:10:c8:47:
b3:fb:e2:c7:90:c6:86:b2:47:13:f3:0d:30:c8:11:
e8:80:20:6d:1d:1f:76:2b:7a:81:5b:7a:04:fe:98:
b8:e7:8c:7c:55:b8:63:f9:15:40:fd:ca:fe:0c:33:
bd:9f:6d:78:16:f2:90:24:7a:79:ad:46:88:37:86:
c4:46:86:15:e4:37:0c:b4:b0:55:8a:ac:b3:88:4e:
e4:11:82:0c:43:f2:cb:e0:78:3f:0c:20:db:a9:aa:
25:e9:a8:34:58:92:0a:cd:0e:69:7f:44:55:08:59:
8f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:7A:6F:45:07:D7:89:B4:07:5A:3E:2A:4C:3B:36:71:94:C9:F8:45
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:d1:5a:78:5f:f4:fc:68:07:52:81:6d:94:05:b0:d6:33:36:
77:5e:f8:22:8b:8f:cf:29:ac:c6:52:dd:f6:d2:9b:6b:68:da:
c2:53:70:ef:1e:41:ee:ae:cd:9a:6f:76:98:e0:4b:8b:72:ae:
0f:22:b9:69:b0:9e:d0:c3:3e:62:96:61:4d:8a:52:4a:3b:41:
8b:ff:0e:94:bf:84:6f:59:99:ff:b1:28:a9:1e:d8:ca:6f:88:
3d:8a:f5:0e:38:ba:78:61:d6:23:33:83:17:3d:0d:d4:de:f9:
1b:49:53:a8:1a:40:42:cc:5f:27:ab:07:1f:a8:24:15:47:f2:
cd:f6:2e:0e:01:ee:8d:75:b8:02:48:56:ed:ec:00:9a:f6:c2:
aa:7e:7c:41:f5:db:90:cc:e1:27:82:5c:29:38:e9:b9:41:1e:
2b:76:0b:3e:64:50:ef:8c:37:00:41:fb:5e:cd:29:5e:19:20:
55:3e:62:14:3e:34:9e:98:2c:2a:3a:31:62:c0:6f:94:d6:88:
6f:25:a8:62:96:8a:4a:f9:f9:6c:4d:57:b8:22:ca:18:8c:33:
d2:12:45:ab:59:bf:ba:23:d3:2d:95:e8:b4:f3:28:84:58:56:
9a:99:c6:db:68:0d:fb:d2:9c:8c:46:86:07:60:fe:ca:46:0e:
d0:a6:8b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:33 2026 by rpki-client