Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: uCwxd/gyMmgb2pErdNI0iOzxoKeNBX1cJZg5dkiJqaQ=
Subject key identifier: 1F:61:63:81:CC:23:C5:87:70:B8:9F:FC:28:56:3E:D2:41:02:04:46
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 019E2F96AA392A3C0F108DE3C217CB7A59E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 10BA
Signing time: Sat 16 May 2026 07:01:03 +0000
Manifest this update: Sat 16 May 2026 07:01:03 +0000
Manifest next update: Sun 17 May 2026 07:01:03 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: BIs0o7f3n9ehe7Lat3MPnTHpWBsWjlPWA6AYhNmkFxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:aa:39:2a:3c:0f:10:8d:e3:c2:17:cb:7a:59:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: May 16 07:01:03 2026 GMT
Not After : May 17 07:01:03 2026 GMT
Subject: CN=1f616381cc23c58770b89ffc28563ed241020446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a0:12:34:af:ff:1a:9b:6d:ef:41:01:d7:0d:
e9:50:14:33:a2:d2:94:5a:cc:88:0d:87:9f:78:4e:
a2:59:1b:90:be:3e:b9:79:45:57:da:46:b2:49:7f:
09:2c:ed:0c:f6:86:55:9c:c3:07:23:25:32:00:08:
1a:9a:74:3d:0a:99:33:a5:13:6a:12:f7:15:02:bb:
f1:4a:8e:41:7f:c6:21:52:ac:66:3f:0f:47:59:df:
dd:23:af:ad:4f:cf:f9:03:77:17:08:5a:29:7b:ed:
34:cb:dd:24:d0:1e:51:8e:47:87:51:80:8a:16:52:
43:1f:04:f7:20:3d:e4:5e:dd:c8:e0:e3:45:cc:91:
47:e1:0f:7c:ed:23:0f:8f:a6:10:57:62:4a:a6:1f:
6e:a1:97:62:1f:d0:c9:ce:5e:d8:8f:81:e3:19:26:
b2:30:e6:a9:0c:92:9b:fb:b5:8b:f1:3b:d3:99:e2:
75:2d:e9:4b:33:77:6d:cc:c2:91:fb:41:2d:1d:68:
4e:2f:80:32:a8:78:85:76:95:5c:cf:8f:d2:e9:03:
31:4b:1c:be:f3:64:30:4c:d7:72:dd:a5:63:9c:7e:
ea:c9:c5:78:1f:bc:90:2b:2e:5f:05:00:e2:10:ad:
92:83:e4:cd:77:bc:20:97:85:3b:c3:e5:b1:57:c1:
2f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:61:63:81:CC:23:C5:87:70:B8:9F:FC:28:56:3E:D2:41:02:04:46
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:5a:d8:d9:ed:d9:3d:5d:9a:21:f6:60:c5:5f:04:0e:b3:b0:
be:de:4c:a6:b9:1e:a0:f1:2a:e8:e3:3d:fc:2d:b8:e8:3b:c1:
b4:e3:1f:6c:9f:5d:a8:61:f3:58:08:d4:a8:57:2d:db:86:e6:
d3:42:33:16:0c:2e:7d:c4:18:4b:5a:08:f2:e9:53:50:8a:76:
b1:50:40:d3:ea:7c:82:a2:16:37:0d:24:1c:98:ae:d0:c0:d5:
bb:77:51:3e:0c:e2:9a:3e:bb:4a:ac:95:6d:dd:15:f5:51:eb:
da:5d:05:00:06:89:7b:9c:6c:5c:52:9d:50:92:17:d7:51:9a:
c7:07:d9:63:2e:e6:ff:dc:74:8c:6b:23:ae:37:eb:7a:09:c5:
3d:55:c5:5c:5d:52:81:2d:3e:c4:02:f2:d0:07:ab:b9:a5:b4:
c4:9f:3a:f2:01:2c:27:62:78:83:10:1c:5a:fa:0e:41:f9:90:
45:bd:6b:1d:1f:05:35:eb:8f:69:fe:ba:70:78:cb:eb:2d:1f:
02:4f:94:da:6a:f8:1d:b2:6b:61:c8:bf:83:61:2c:58:02:ad:
f7:77:92:c5:c0:e9:43:b9:5b:7f:90:74:bd:aa:17:39:69:b4:
08:42:19:70:8a:7d:4b:ec:4a:02:79:45:48:a1:c6:a6:f8:0d:
ea:a5:89:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlqo5KjwPEI3jwhfLelnlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNTAzNDhjZjYwNjQyZjU0ZWM5MDcyNGRlNzhhYWEwM2Rj
ZDM4ZTEwHhcNMjYwNTE2MDcwMTAzWhcNMjYwNTE3MDcwMTAzWjAzMTEwLwYDVQQD
EygxZjYxNjM4MWNjMjNjNTg3NzBiODlmZmMyODU2M2VkMjQxMDIwNDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKASNK//Gptt70EB1w3pUBQzotKU
WsyIDYefeE6iWRuQvj65eUVX2kaySX8JLO0M9oZVnMMHIyUyAAgamnQ9CpkzpRNq
EvcVArvxSo5Bf8YhUqxmPw9HWd/dI6+tT8/5A3cXCFope+00y90k0B5RjkeHUYCK
FlJDHwT3ID3kXt3I4ONFzJFH4Q987SMPj6YQV2JKph9uoZdiH9DJzl7Yj4HjGSay
MOapDJKb+7WL8TvTmeJ1LelLM3dtzMKR+0EtHWhOL4AyqHiFdpVcz4/S6QMxSxy+
82QwTNdy3aVjnH7qycV4H7yQKy5fBQDiEK2Sg+TNd7wgl4U7w+WxV8EvpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB9hY4HMI8WHcLif/ChWPtJBAgRGMB8GA1UdIwQY
MBaAFABQNIz2BkL1TskHJN54qqA9zTjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mMTI0YjItNDc0ZS00NWEwLWI3M2Et
ZTU0YjA2YTkzNTI2LzEvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9mMTI0YjItNDc0ZS00NWEwLWI3M2EtZTU0YjA2YTkzNTI2
LzEvQUZBMGpQWUdRdlZPeVFjazNuaXFvRDNOT09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuVrY2e3Z
PV2aIfZgxV8EDrOwvt5MprkeoPEq6OM9/C246DvBtOMfbJ9dqGHzWAjUqFct24bm
00IzFgwufcQYS1oI8ulTUIp2sVBA0+p8gqIWNw0kHJiu0MDVu3dRPgzimj67SqyV
bd0V9VHr2l0FAAaJe5xsXFKdUJIX11GaxwfZYy7m/9x0jGsjrjfregnFPVXFXF1S
gS0+xALy0AeruaW0xJ868gEsJ2J4gxAcWvoOQfmQRb1rHR8FNeuPaf66cHjL6y0f
Ak+U2mr4HbJrYci/g2EsWAKt93eSxcDpQ7lbf5B0vaoXOWm0CEIZcIp9S+xKAnlF
SKHGpvgN6qWJcA==
-----END CERTIFICATE-----
Generated at Sat May 16 17:13:25 2026 by rpki-client