Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: S+eHhvbPp5go1HxR0I+RkTgNNTtpYtgq9ScB8SUduLc=
Subject key identifier: 82:82:E4:5F:EE:89:C6:86:3B:5C:89:7B:A3:0E:C5:F3:D1:BA:1F:A5
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 019D3909F87C28840DCD846B820ACD13D123
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 0A11
Signing time: Sun 29 Mar 2026 10:00:47 +0000
Manifest this update: Sun 29 Mar 2026 10:00:47 +0000
Manifest next update: Mon 30 Mar 2026 10:00:47 +0000
Files and hashes: 1: 1-oVMePvmP_ShU4g9iq3PEMwk624.asa (hash: pi0ntWvCbn7cLEwUcdMKB4Mh3rw+t4rGo3pT9vesjgs=)
2: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: dQ7SqLZSeA87IaQ6EzMcTNpiEpsivDw9xvt9gYTWE1Y=)
3: JfiKnbeqPSQWrccipxHIV5asnZc.roa (hash: So58lqCsWHBSZ8BZGYVkNJbNtgNVSoZeRVERTPcUKB8=)
4: zWI51cMGq8NIsv4xHlGLcLlujuY.roa (hash: eQXeTCbeaOa+X96n8vuRc2zEoYqnb9UvGcseeMKxWrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:f8:7c:28:84:0d:cd:84:6b:82:0a:cd:13:d1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: Mar 29 10:00:47 2026 GMT
Not After : Mar 30 10:00:47 2026 GMT
Subject: CN=8282e45fee89c6863b5c897ba30ec5f3d1ba1fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:58:e7:35:13:e0:e8:36:05:96:a7:28:06:e6:
ed:90:03:24:60:0f:f1:f2:a0:ba:da:5f:d6:59:f2:
e9:f4:7a:86:eb:29:a0:ea:9a:74:94:8e:28:89:b1:
1a:fb:53:ec:1e:c7:fa:58:b2:42:0d:49:0a:45:44:
f0:a8:20:6e:97:95:49:85:5c:32:11:95:f1:05:e2:
78:f7:45:90:a5:59:65:15:a7:f5:bf:b7:97:9a:e6:
41:8c:55:c4:bf:57:bc:11:23:69:48:50:36:0a:f0:
14:53:05:4f:bf:fe:5b:2c:9c:2f:ae:44:ae:70:68:
bd:97:6a:68:ba:88:3e:2a:f2:b9:33:b7:bb:6d:d1:
2c:df:7f:65:c7:f8:3e:b7:1a:c1:f6:6e:fb:d4:f3:
37:61:e4:59:73:b2:81:2a:27:1f:ae:c1:45:f5:26:
08:8b:c5:68:a0:18:9a:bb:38:5f:0b:aa:a6:79:40:
38:ee:d2:cc:5a:2f:71:09:6a:27:c0:d6:58:41:5d:
3e:4f:e8:c6:51:f1:b4:59:15:11:58:a0:a4:01:17:
eb:82:99:ef:bc:f9:32:69:a1:1a:42:de:4d:e3:55:
05:d9:7b:81:cd:3a:b0:4d:ad:58:58:7e:34:1f:fc:
8a:0d:ed:b8:fc:5c:0f:ac:9b:81:94:93:06:f8:28:
d5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:82:E4:5F:EE:89:C6:86:3B:5C:89:7B:A3:0E:C5:F3:D1:BA:1F:A5
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:e5:8b:dd:64:f8:0f:bb:9f:34:22:67:5d:92:dc:02:55:f4:
6d:1c:20:f5:ee:6e:8f:05:47:5a:eb:23:7f:7d:dd:d6:c9:22:
58:9b:90:20:57:8d:be:18:d7:e8:b3:49:a0:42:67:d2:ef:0d:
47:33:25:cb:97:16:2e:a1:ee:38:66:c9:bd:dd:d3:1d:d3:03:
91:90:39:6f:ef:39:5f:05:c7:90:74:3f:63:04:f4:0c:4c:05:
62:35:a4:55:bd:fd:32:44:65:b3:f0:09:5d:ca:5f:d1:50:6d:
b5:0f:ed:32:81:9f:e8:d5:35:37:0a:25:6c:91:d1:ae:c0:44:
51:eb:c0:a1:f5:41:81:27:03:b9:da:17:67:d7:a4:e6:7d:34:
44:f2:51:5a:72:8a:07:e5:d8:dc:b3:50:d0:19:a3:35:9d:1f:
47:3c:40:3b:8b:50:43:04:a4:a4:06:f5:70:d0:d4:8e:96:27:
13:a4:e8:2f:c2:e0:9b:4e:5d:b1:0e:ee:09:20:2c:6b:78:76:
e6:9b:21:14:93:65:b8:59:d2:07:8c:ba:76:4f:9e:d2:67:81:
59:2d:03:3e:1a:0b:65:81:95:c2:18:98:fe:38:b2:39:4c:25:
fd:c2:7e:06:c5:79:3c:5f:34:b7:2d:29:28:a5:be:fc:b9:53:
3e:ce:c7:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Cfh8KIQNzYRrggrNE9EjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDAxZTAyNDk0MThiMzU3NTQ3MjY4ODI0ZjYyNDQ5MjVk
OGRiMzkwHhcNMjYwMzI5MTAwMDQ3WhcNMjYwMzMwMTAwMDQ3WjAzMTEwLwYDVQQD
Eyg4MjgyZTQ1ZmVlODljNjg2M2I1Yzg5N2JhMzBlYzVmM2QxYmExZmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmljnNRPg6DYFlqcoBubtkAMkYA/x
8qC62l/WWfLp9HqG6ymg6pp0lI4oibEa+1PsHsf6WLJCDUkKRUTwqCBul5VJhVwy
EZXxBeJ490WQpVllFaf1v7eXmuZBjFXEv1e8ESNpSFA2CvAUUwVPv/5bLJwvrkSu
cGi9l2pouog+KvK5M7e7bdEs339lx/g+txrB9m771PM3YeRZc7KBKicfrsFF9SYI
i8VooBiauzhfC6qmeUA47tLMWi9xCWonwNZYQV0+T+jGUfG0WRURWKCkARfrgpnv
vPkyaaEaQt5N41UF2XuBzTqwTa1YWH40H/yKDe24/FwPrJuBlJMG+CjV4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIKC5F/uicaGO1yJe6MOxfPRuh+lMB8GA1UdIwQY
MBaAFNdAHgJJQYs1dUcmiCT2JEkl2Ns5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjIt
NTA3ODkxMzk1NDE3LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9kNzMxMzctYjA4OS00ZGI0LWI2YjItNTA3ODkxMzk1NDE3
LzEvMTBBZUFrbEJpelYxUnlhSUpQWWtTU1hZMnprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeeWL3WT4
D7ufNCJnXZLcAlX0bRwg9e5ujwVHWusjf33d1skiWJuQIFeNvhjX6LNJoEJn0u8N
RzMly5cWLqHuOGbJvd3THdMDkZA5b+85XwXHkHQ/YwT0DEwFYjWkVb39MkRls/AJ
Xcpf0VBttQ/tMoGf6NU1NwolbJHRrsBEUevAofVBgScDudoXZ9ek5n00RPJRWnKK
B+XY3LNQ0BmjNZ0fRzxAO4tQQwSkpAb1cNDUjpYnE6ToL8Lgm05dsQ7uCSAsa3h2
5pshFJNluFnSB4y6dk+e0meBWS0DPhoLZYGVwhiY/jiyOUwl/cJ+BsV5PF80ty0p
KKW+/LlTPs7H7Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:19 2026 by rpki-client