Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
File: afY2pbazoordg_l0Rtewg7lMPa4.mft (raw, json)
Hash identifier: K7RsZDqRJGB39SDs2RZip2IZvrSrTH1UxVBmUxba6VY=
Subject key identifier: 59:E1:D5:5C:94:26:22:7B:E5:FD:5D:C7:53:C0:86:E5:55:61:54:05
Authority key identifier: 69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE
Certificate issuer: /CN=69f636a5b6b3a28add83f97446d7b083b94c3dae
Certificate serial: 019D389C0C50887A567396CFCF022674148B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
Manifest number: 085F
Signing time: Sun 29 Mar 2026 08:00:43 +0000
Manifest this update: Sun 29 Mar 2026 08:00:43 +0000
Manifest next update: Mon 30 Mar 2026 08:00:43 +0000
Files and hashes: 1: afY2pbazoordg_l0Rtewg7lMPa4.crl (hash: WISKVP4SHVObclZxScmK97C3gjyn+ENWRPNXMAl3Sn0=)
2: yVIh76xTZ4QX7LFk-xKKVayLUYw.roa (hash: QHMxu1cY+b4CW+lhAzUzhzJoH+xpmKyHhi16mUYw9vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:0c:50:88:7a:56:73:96:cf:cf:02:26:74:14:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f636a5b6b3a28add83f97446d7b083b94c3dae
Validity
Not Before: Mar 29 08:00:43 2026 GMT
Not After : Mar 30 08:00:43 2026 GMT
Subject: CN=59e1d55c9426227be5fd5dc753c086e555615405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:83:77:97:ae:3c:15:5b:2e:02:ee:3f:98:6d:
66:f7:26:ef:c8:1d:99:8e:0a:48:0d:f9:7b:fe:0d:
10:eb:13:f9:bb:49:fb:3f:a0:81:bc:77:27:bc:6f:
66:9f:87:dc:53:69:ee:c0:19:dc:29:78:3c:b8:a5:
35:74:6f:cb:f0:a8:c1:7c:89:46:38:7c:2d:f9:7e:
35:db:8d:bd:ac:46:e5:9b:18:f5:a9:0b:48:39:7b:
84:fc:46:e3:02:b7:1d:ae:f4:d7:76:85:34:27:9e:
04:4b:dd:ea:15:e6:72:07:c8:dd:e9:47:92:1a:f8:
b9:c0:74:d4:f7:1a:d6:b0:e3:9f:18:a8:be:6b:65:
c2:99:ed:c7:3d:2f:65:d9:ce:93:ff:34:06:2a:52:
4c:e9:ee:3b:e1:ce:7a:6e:c8:4c:2f:5b:1d:20:24:
b6:36:2e:2f:a4:0e:8f:b8:36:c4:e9:4e:80:c4:43:
83:bb:2e:b5:a3:de:eb:32:e1:0d:67:6c:9a:cc:f7:
f0:3b:85:c2:ca:21:86:bc:07:2a:b3:54:21:ba:db:
85:a4:58:9e:c1:6b:88:ec:e3:19:8d:61:e6:a5:6f:
16:0c:8c:11:da:a1:1e:b4:9f:b8:78:63:c3:89:6c:
dd:2b:b8:a5:3e:65:59:6a:fc:83:8f:15:32:6c:31:
d7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E1:D5:5C:94:26:22:7B:E5:FD:5D:C7:53:C0:86:E5:55:61:54:05
X509v3 Authority Key Identifier:
keyid:69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:8a:b2:5a:79:56:c0:44:4d:bf:23:c5:f4:fe:02:79:08:f6:
cb:a0:45:7e:87:e8:79:4c:f6:d7:d2:7a:9f:f6:0d:3e:b5:0a:
41:f4:31:34:34:3e:60:d9:c4:79:82:32:46:d9:05:04:e4:44:
fd:c6:8b:54:79:2f:2c:f0:17:fc:31:86:86:5b:1b:eb:20:75:
0c:91:02:5f:b6:5a:a4:74:53:0a:85:6a:1b:41:00:7a:f8:e0:
6c:87:21:cb:2d:15:c6:1a:4b:75:ff:7d:4d:d5:2a:2e:b8:be:
97:95:bb:90:0e:98:c0:ea:d6:7f:aa:e6:5e:37:74:d8:84:45:
d9:ca:a6:68:34:0b:b0:16:be:01:e6:47:d5:a7:11:85:3b:8e:
1a:0c:bb:9b:b7:3d:ec:b1:b2:32:ae:01:de:6a:75:fc:c0:5b:
a9:e7:31:e1:5f:55:28:c5:74:cd:2e:48:34:98:4c:e1:53:00:
50:96:df:dd:ed:04:e8:9e:0d:8a:52:ba:63:34:bf:72:40:97:
30:c9:23:4f:a8:98:b5:33:57:6c:92:93:c8:d8:a1:35:5b:ff:
f4:00:5a:96:a4:9b:8f:a7:fb:8e:c4:5a:e8:9a:4f:7f:70:7d:
bb:94:a3:79:44:01:05:cb:0c:ad:50:39:e0:a3:24:12:50:42:
6b:76:c4:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nAxQiHpWc5bPzwImdBSLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ZjYzNmE1YjZiM2EyOGFkZDgzZjk3NDQ2ZDdiMDgzYjk0
YzNkYWUwHhcNMjYwMzI5MDgwMDQzWhcNMjYwMzMwMDgwMDQzWjAzMTEwLwYDVQQD
Eyg1OWUxZDU1Yzk0MjYyMjdiZTVmZDVkYzc1M2MwODZlNTU1NjE1NDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4oN3l648FVsuAu4/mG1m9ybvyB2Z
jgpIDfl7/g0Q6xP5u0n7P6CBvHcnvG9mn4fcU2nuwBncKXg8uKU1dG/L8KjBfIlG
OHwt+X412429rEblmxj1qQtIOXuE/EbjArcdrvTXdoU0J54ES93qFeZyB8jd6UeS
Gvi5wHTU9xrWsOOfGKi+a2XCme3HPS9l2c6T/zQGKlJM6e474c56bshML1sdICS2
Ni4vpA6PuDbE6U6AxEODuy61o97rMuENZ2yazPfwO4XCyiGGvAcqs1QhutuFpFie
wWuI7OMZjWHmpW8WDIwR2qEetJ+4eGPDiWzdK7ilPmVZavyDjxUybDHXJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFnh1VyUJiJ75f1dx1PAhuVVYVQFMB8GA1UdIwQY
MBaAFGn2NqW2s6KK3YP5dEbXsIO5TD2uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWZZMnBiYXpvb3JkZ19sMFJ0ZXdnN2xNUGE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9lOTk5NTQtYzAwZi00MDE0LThlNzEt
OGFlZTJiZjg5YjkxLzEvYWZZMnBiYXpvb3JkZ19sMFJ0ZXdnN2xNUGE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9lOTk5NTQtYzAwZi00MDE0LThlNzEtOGFlZTJiZjg5Yjkx
LzEvYWZZMnBiYXpvb3JkZ19sMFJ0ZXdnN2xNUGE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm4qyWnlW
wERNvyPF9P4CeQj2y6BFfofoeUz219J6n/YNPrUKQfQxNDQ+YNnEeYIyRtkFBORE
/caLVHkvLPAX/DGGhlsb6yB1DJECX7ZapHRTCoVqG0EAevjgbIchyy0VxhpLdf99
TdUqLri+l5W7kA6YwOrWf6rmXjd02IRF2cqmaDQLsBa+AeZH1acRhTuOGgy7m7c9
7LGyMq4B3mp1/MBbqecx4V9VKMV0zS5INJhM4VMAUJbf3e0E6J4NilK6YzS/ckCX
MMkjT6iYtTNXbJKTyNihNVv/9ABalqSbj6f7jsRa6JpPf3B9u5SjeUQBBcsMrVA5
4KMkElBCa3bE/w==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:29 2026 by rpki-client