Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: GT28vDvDNyZSvt/JQDHxgQdQgn8E6CbiYWxb8emDQwc=
Subject key identifier: A9:D5:35:02:2A:31:62:D8:0D:E6:62:1C:EB:67:93:D9:D7:F9:E0:7B
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019D390A0F3EC3815E6F1D12F9B787439C40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 172E
Signing time: Sun 29 Mar 2026 10:00:53 +0000
Manifest this update: Sun 29 Mar 2026 10:00:53 +0000
Manifest next update: Mon 30 Mar 2026 10:00:53 +0000
Files and hashes: 1: 8UGI1s0WR4wlzQNu5QcJqIgdD6o.roa (hash: 0o0yTMQX8eIMkMe3RKQudDE1yMjJHai1D53A4eswsuo=)
2: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: JObkKJDeDcVmrHSXoAvy/U/lwXjYphWr982572gyFnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:0f:3e:c3:81:5e:6f:1d:12:f9:b7:87:43:9c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Mar 29 10:00:53 2026 GMT
Not After : Mar 30 10:00:53 2026 GMT
Subject: CN=a9d535022a3162d80de6621ceb6793d9d7f9e07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bf:d8:cd:1e:1c:58:7b:87:da:d2:22:2b:fe:
2d:5b:d8:59:c7:50:10:c7:d4:8a:f7:17:14:d8:b8:
b1:16:26:ff:aa:d7:37:b3:43:91:88:9e:e9:6f:f2:
b6:78:53:13:95:3b:f9:21:73:e5:5e:c2:79:52:e3:
97:38:86:47:77:c5:ef:37:0b:d4:6b:94:83:eb:f3:
cf:e9:fa:aa:4e:cc:19:b8:f4:92:2c:83:1f:ce:fc:
cc:03:73:3c:93:1a:a6:c8:2f:3f:e7:c5:73:ff:1c:
55:32:ab:b4:48:e6:9b:6c:d2:50:2b:25:34:77:07:
c8:c4:94:0b:5f:2f:e1:73:08:77:bb:fc:ef:ac:e8:
ed:d0:97:b5:4e:65:42:7d:a8:7e:be:2c:25:b9:df:
fd:13:7d:e5:6a:1f:d3:9e:a8:c5:30:9d:4c:f6:90:
82:09:16:d0:5c:20:6a:e0:4b:3b:d9:9f:a7:e6:ab:
b5:50:d2:42:64:01:ff:59:d6:67:53:2d:ab:b0:89:
b9:63:70:7a:cb:69:16:ca:c2:04:8d:6d:27:69:7b:
af:6f:66:df:8b:cf:ba:cf:0f:01:dc:83:b9:c8:6a:
63:03:97:0a:a6:d7:f7:e3:ef:ef:a3:90:ac:45:46:
31:5e:bb:16:1d:80:f6:77:8a:0c:cc:29:bc:d6:fc:
37:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D5:35:02:2A:31:62:D8:0D:E6:62:1C:EB:67:93:D9:D7:F9:E0:7B
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:a6:ff:bb:50:f5:a9:2a:34:08:d4:3c:57:bd:48:ea:cb:2f:
e3:d0:f1:f9:64:12:ac:58:0d:36:aa:78:cf:e1:15:ae:6b:ca:
98:1f:10:71:f7:0d:a4:15:97:61:1c:62:c9:6e:8f:4c:42:30:
e1:79:79:06:09:27:51:7c:74:59:31:15:eb:70:8f:c9:f3:a3:
1b:54:ff:96:03:bd:f3:c7:d1:b7:03:e0:fe:9d:43:22:2c:14:
50:17:c0:47:40:0e:fc:c1:2c:70:9d:96:55:4e:a0:29:bb:10:
9c:d7:2d:16:64:10:4f:81:32:a5:1a:7b:5a:ca:01:9f:20:06:
49:44:ff:84:77:09:b8:5b:dc:b7:60:7f:56:61:13:de:19:b1:
bf:85:2d:a5:cc:cf:06:80:9d:7c:f3:4d:0f:b7:08:44:a2:a1:
e0:03:a6:0e:49:5b:38:a3:46:b8:d9:b7:c5:fc:da:7e:1b:cd:
30:4e:70:c1:8c:66:f5:fb:6d:6f:f8:9b:f5:4a:f8:50:9d:54:
2b:02:44:6a:13:b0:2a:15:d4:ff:a8:5b:fe:a0:91:b8:e5:58:
1e:73:b2:07:ab:7d:2f:50:0c:58:23:5d:b9:dd:53:e1:88:a4:
ce:05:f7:22:d9:cc:89:70:4b:91:1d:5a:03:2e:ad:de:16:1b:
69:1a:e1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:24 2026 by rpki-client