Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: 6KFS5mNGGYIEWkafzaHy83LzlMfmlU+N9apig/oxIOc=
Subject key identifier: 1C:71:2E:B1:F2:8E:8D:E0:2B:6B:60:51:E3:B1:78:62:D3:90:3F:F1
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019D37F73E32496AE66358396AF9D9BF2D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 0575
Signing time: Sun 29 Mar 2026 05:00:43 +0000
Manifest this update: Sun 29 Mar 2026 05:00:43 +0000
Manifest next update: Mon 30 Mar 2026 05:00:43 +0000
Files and hashes: 1: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: e6FP5UmOHjp7YwpgpAi1rkvpCfWZwvtFNIOID4+9XBI=)
2: Ezve964v81lYlWQeavbK7g7CJGk.roa (hash: iRAr6mZP/rQywgyAaTeChLJgFIykzhfGwc22gfj7mcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:3e:32:49:6a:e6:63:58:39:6a:f9:d9:bf:2d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Mar 29 05:00:43 2026 GMT
Not After : Mar 30 05:00:43 2026 GMT
Subject: CN=1c712eb1f28e8de02b6b6051e3b17862d3903ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:0a:cf:e4:8c:72:ea:a2:bd:85:b1:79:28:
14:6c:5f:36:c2:a4:ee:c7:da:4a:63:1e:a8:fa:46:
bb:84:e1:9b:57:89:8b:05:18:ff:57:84:68:8a:36:
c1:c8:d2:7c:70:04:77:0e:f6:cc:fa:e1:50:90:8f:
2b:f6:71:7d:6d:31:6d:c6:32:87:41:a0:f6:9f:01:
25:b1:59:5c:98:52:88:3d:a6:c0:46:72:06:a1:47:
eb:4c:14:43:8a:d6:07:65:af:0b:17:27:d3:2f:bf:
1c:ab:8a:b6:65:9b:de:85:56:39:06:08:69:4e:73:
dc:ff:e4:25:5e:84:1f:fb:ce:bf:34:b7:64:92:9b:
41:ca:66:93:7d:33:63:1e:44:3d:cd:3c:b6:4f:ba:
12:43:38:87:b2:62:d0:62:2a:e9:99:15:01:81:8b:
1d:ad:02:89:77:c8:fa:60:43:32:e5:cc:b9:9f:38:
fb:60:d7:ac:89:83:de:36:65:f6:64:f2:27:35:03:
3a:0b:82:e4:f8:81:91:31:e7:a8:9e:ca:a4:61:28:
9b:12:34:f1:d8:e3:fc:ff:4e:10:d2:6f:06:cc:89:
86:d8:70:96:96:d0:bd:57:30:6a:24:c1:8b:7a:bd:
2d:ee:65:c0:84:53:a7:8f:69:1f:30:7c:fc:47:bc:
a2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:71:2E:B1:F2:8E:8D:E0:2B:6B:60:51:E3:B1:78:62:D3:90:3F:F1
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:eb:fb:69:8d:68:f1:f3:50:aa:ab:bb:6c:c0:17:e9:d1:13:
8f:95:0f:44:cc:c9:7f:78:a3:df:a3:5e:72:fa:36:69:ed:11:
bb:e9:9a:40:2e:2e:43:21:2c:bf:55:4a:7e:31:cc:f7:17:1f:
11:96:2b:9e:ff:58:a6:1d:b2:82:6f:29:57:80:88:83:0b:b7:
0e:21:89:03:c2:ce:ab:30:37:2e:55:33:38:d2:a8:52:3a:b8:
cc:c4:1a:17:4e:61:4e:4f:1f:c9:cb:8f:e4:15:1a:18:4c:3f:
d9:35:ab:3b:94:c1:ca:58:c3:07:0d:d4:7f:6f:70:c6:a9:f0:
bd:95:9c:a8:c9:7d:72:84:7a:36:47:4a:e0:28:d2:62:39:42:
25:1b:5b:f3:a9:73:e8:ab:33:2c:e8:89:e4:31:fe:23:6b:7d:
96:0e:2d:84:d1:5a:43:8f:d6:85:38:a5:90:ac:ba:43:6b:9f:
ec:60:0f:0e:48:99:74:3e:2c:ef:b5:0d:2d:df:d1:4e:02:e9:
0d:5d:83:e7:e1:d6:c3:41:0f:15:63:34:84:88:71:d3:99:9e:
06:63:07:2d:2c:5a:85:02:a7:6c:db:ec:ef:1c:10:da:26:60:
ce:7d:0e:8d:48:92:a2:f5:f8:dd:06:08:9c:00:0e:62:ae:a1:
56:50:67:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:39 2026 by rpki-client