Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: C35EJAshWSxb1Xrij5gHt+MYEkwbv3dbrpEQ+NZtcHw=
Subject key identifier: 7D:6E:FE:F0:FF:96:38:7E:7B:6C:DC:D0:72:C2:6C:3A:42:94:89:A9
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 019D39AE8F164E5D800002756F27291A07B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 13:00:34 +0000
Manifest this update: Sun 29 Mar 2026 13:00:34 +0000
Manifest next update: Mon 30 Mar 2026 13:00:34 +0000
Files and hashes: 1: CwgZcUkyKLt048Oqe9IkcFcNcGM.roa (hash: 863NNHY2dcVFVj1Sa4r+ACtbVTP+iPOTXWUzEVvig7k=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: 6eYBmBgg+kVJ5PbDsZkeIswnVitJtk/uJdb2NDC0rsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:8f:16:4e:5d:80:00:02:75:6f:27:29:1a:07:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Mar 29 13:00:34 2026 GMT
Not After : Mar 30 13:00:34 2026 GMT
Subject: CN=7d6efef0ff96387e7b6cdcd072c26c3a429489a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b0:28:43:9a:79:d4:c3:a4:31:c9:be:0d:22:
16:dd:3e:f4:9f:e3:61:94:dc:71:1e:5e:52:04:76:
3d:39:e4:9b:31:b9:70:1a:22:72:4f:f4:c2:03:e6:
52:48:17:21:c0:2b:73:60:75:01:2a:5c:dd:dd:95:
24:23:13:76:a5:47:6b:e9:86:4a:70:d2:bc:76:f8:
b2:7e:f6:b1:2f:97:da:61:89:24:35:6e:e3:23:7e:
a6:5f:94:d6:d3:64:d5:7a:87:c4:90:db:64:7c:cd:
a8:a6:15:6d:15:b9:81:3b:5a:3a:20:2c:98:71:13:
af:d5:aa:f0:d8:62:f3:22:4f:8a:0c:1c:08:60:ec:
fb:1b:58:03:e0:d4:56:60:27:a9:12:45:f0:c6:e3:
f6:de:69:49:c3:85:fb:44:e1:fd:22:14:c7:ba:b3:
13:9d:98:47:25:ae:f9:04:51:46:f9:71:27:36:18:
d5:3b:14:ea:0a:c3:33:0e:59:1c:fc:55:8e:35:2d:
05:a9:a5:81:4f:b2:a2:e4:ab:95:74:91:72:1a:75:
cd:43:8c:bb:cb:1c:32:73:41:1d:cc:34:32:40:20:
92:b1:bd:6a:55:82:74:8d:a6:40:71:17:75:de:09:
e2:95:5c:ac:20:e9:fb:f2:0b:0b:98:4c:91:ce:e3:
fd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:6E:FE:F0:FF:96:38:7E:7B:6C:DC:D0:72:C2:6C:3A:42:94:89:A9
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:d4:e7:f1:84:b8:8c:fc:d4:82:07:b5:b0:e2:16:47:bf:9e:
ae:78:2a:d2:62:d4:3d:08:ed:46:d8:8b:b0:a3:bd:9d:8b:4b:
17:73:14:79:ca:3d:4e:1e:02:bd:05:f9:a3:33:a5:80:13:ce:
ea:4f:9e:48:27:09:23:b1:8f:7e:d9:a5:47:8a:1c:50:e4:17:
f5:67:c0:8f:2c:c8:5a:62:fe:00:dc:62:53:be:b9:45:6c:0f:
be:c7:79:95:2b:64:a8:58:ff:41:43:dc:4a:31:bf:cb:fe:3b:
6a:c9:2a:ee:66:fd:2b:dd:3a:65:29:14:13:89:6e:a2:42:f4:
f7:83:78:fb:d8:07:df:03:d6:9b:d6:5f:8f:e3:40:88:fc:73:
d3:79:a5:3c:fc:1c:19:e1:7f:7e:f1:27:89:35:9a:56:76:b0:
22:71:bb:5c:7c:c5:a3:b7:8a:f4:51:a2:0b:83:2f:03:20:96:
b0:b1:fb:00:18:e1:33:9a:03:a3:5f:8a:73:1c:da:e6:91:18:
c4:7b:00:13:0a:a0:b9:97:bc:f4:11:a8:0b:a8:e6:ff:c0:a5:
5a:90:bc:dd:ab:4c:47:58:e0:f3:f9:bc:6a:85:e8:8b:66:9f:
4c:b7:bb:8f:09:16:f0:93:59:0b:0c:1c:4a:28:67:56:d6:bb:
57:49:c5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:44 2026 by rpki-client