Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
File: aFeXIsOgywwzUcWV36PX6tgfFr8.mft (raw, json)
Hash identifier: uqf3sGuFiNFLDE9PhpjsT2kUtypjo0P7o52lUjYVki8=
Subject key identifier: F5:3F:C2:96:E1:FD:F5:76:A5:DF:1E:39:B9:D6:57:32:E3:A2:B3:06
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 019D38D320145078C155FE49C4F3A0111152
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 09:00:53 +0000
Manifest this update: Sun 29 Mar 2026 09:00:53 +0000
Manifest next update: Mon 30 Mar 2026 09:00:53 +0000
Files and hashes: 1: HICUQlEYTGNDZC_TZKBNt1I9ZtI.asa (hash: ygy820xgpaVNMBFtptvsRnnaNpcXzgsBO0L4W7uH2bw=)
2: aFeXIsOgywwzUcWV36PX6tgfFr8.crl (hash: tmY7M7Ix+zszI7hYk/3VRA39ZVJh+/+xIWwGBCOp8us=)
3: npOqAYvnANeWVx-N9kdesV15avg.roa (hash: drW0amYbYWP6y8FhNua3sy9aXQKsIxf1FhuvgPhf3tY=)
4: qgrlS83bNE9MYEyjpHkdusYjIJs.roa (hash: qVLwJn1cT6OqEeJhayLqN8KErzeBq7qBWaQJP1ttmcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:20:14:50:78:c1:55:fe:49:c4:f3:a0:11:11:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Mar 29 09:00:53 2026 GMT
Not After : Mar 30 09:00:53 2026 GMT
Subject: CN=f53fc296e1fdf576a5df1e39b9d65732e3a2b306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:40:c4:68:6d:1d:cb:3c:91:6c:81:3e:21:db:
57:ce:91:59:03:00:0b:d5:e8:bd:8f:dc:6a:8f:60:
16:0f:14:e2:ea:16:be:fd:30:d5:f5:6e:77:f5:31:
97:45:cc:e0:e9:4d:83:1b:4b:8e:b6:ff:58:cb:50:
86:4b:30:c5:e5:ec:f5:33:73:88:d8:f5:5c:8c:2e:
82:39:d6:50:87:87:81:19:a4:1f:0e:6e:b2:5e:d8:
76:d0:09:6e:bc:b9:3b:aa:98:a7:41:a2:b6:b1:a3:
2a:3f:6d:26:cc:72:ec:ad:a2:46:82:bf:d2:88:75:
95:38:49:96:09:d8:a9:8c:a1:ea:91:fd:76:c1:d1:
21:22:18:17:54:33:56:f2:59:e6:ae:e2:82:ee:47:
01:4a:63:72:94:9e:75:93:de:c5:19:aa:9e:59:d5:
c9:ca:42:14:9c:7b:9b:53:c0:aa:1e:c7:66:e4:70:
c5:ff:6f:b7:a9:b6:7b:fa:9e:cc:47:fe:ba:14:7b:
d1:3a:55:06:5a:9d:fb:e0:fe:fd:b8:d7:ba:7c:bf:
71:09:ef:ff:4d:64:c8:41:4f:79:d8:24:31:09:3b:
8f:57:fe:71:7f:19:38:1d:9a:16:69:28:39:f7:83:
08:c0:bc:77:49:89:ec:60:41:5e:e3:91:8f:21:6a:
aa:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:3F:C2:96:E1:FD:F5:76:A5:DF:1E:39:B9:D6:57:32:E3:A2:B3:06
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:34:7d:70:42:18:0a:e4:46:ad:b2:69:cc:69:23:5b:23:41:
d6:f9:ac:b0:b4:47:cf:3e:22:86:b5:23:da:12:cf:46:87:26:
38:f2:0d:00:07:ab:26:28:dd:be:d2:22:fc:a5:61:56:24:c4:
e2:f1:ff:68:70:d3:22:a6:9c:38:15:3b:a9:9c:ef:93:7d:0f:
9d:05:dc:9c:04:a5:53:72:bb:6a:a8:c8:50:c4:96:fa:eb:e6:
00:9c:67:d5:9f:03:8a:6f:b4:2c:35:e8:07:73:79:b6:2c:24:
08:04:a8:32:bb:53:5c:85:f4:7b:4c:71:44:e4:c3:98:f7:a8:
a6:5e:e4:8d:55:e7:9e:86:fd:42:e6:9e:a0:a7:5e:07:60:94:
b6:f4:50:b1:f9:d4:dd:bc:29:42:41:89:c2:9a:ab:c8:a1:bd:
ef:21:a1:b6:43:04:4d:73:3a:43:ba:b3:e7:e4:bf:43:2e:cc:
2b:b6:b8:b3:9b:6a:16:3d:37:6b:bd:e0:d0:55:0c:3a:51:b5:
17:37:f6:b9:4f:34:df:93:c1:4e:21:cb:98:bf:da:9e:95:b8:
bd:ac:1a:c5:50:51:29:0b:8c:5c:47:3b:88:5d:f7:55:43:86:
37:af:f0:50:23:69:2c:1e:c5:b6:a8:f1:12:7d:1d:0d:30:f2:
ac:74:96:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:55 2026 by rpki-client