Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: nEUzi46cXxhFB9weQGzww0+i84Txv5HSdW9nsmFixZU=
Subject key identifier: 2E:FD:55:84:29:77:C5:AB:4C:05:64:95:FB:D8:7E:9A:79:49:68:DD
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019F19E8470AE869619634975771B8AFB370
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 1827
Signing time: Tue 30 Jun 2026 19:01:20 +0000
Manifest this update: Tue 30 Jun 2026 19:01:20 +0000
Manifest next update: Wed 01 Jul 2026 19:01:20 +0000
Files and hashes: 1: 8UGI1s0WR4wlzQNu5QcJqIgdD6o.roa (hash: 0o0yTMQX8eIMkMe3RKQudDE1yMjJHai1D53A4eswsuo=)
2: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: q5Ws8BnB2pYzGJx8MRoCf7S6G3sO1ibY9VXfyf6cu/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e8:47:0a:e8:69:61:96:34:97:57:71:b8:af:b3:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Jun 30 19:01:20 2026 GMT
Not After : Jul 1 19:01:20 2026 GMT
Subject: CN=2efd55842977c5ab4c056495fbd87e9a794968dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a8:8a:18:7a:ef:87:d5:de:2f:a7:2e:16:d7:
d4:3a:a2:58:5f:11:25:b8:f8:52:56:7d:f7:07:bb:
3b:94:4a:97:c0:9e:f0:a3:8f:34:85:81:23:01:c8:
f2:9d:93:5b:58:51:55:f5:da:cf:9a:c3:03:db:88:
ac:e1:b8:60:67:b6:ce:72:c4:d1:b6:aa:08:b0:4f:
75:9e:a0:a5:14:56:6a:f3:75:b8:38:ff:a3:e1:28:
23:c0:38:6c:3c:f1:2f:51:2a:80:82:12:ca:3b:1a:
72:1b:aa:61:59:d8:76:b3:1e:3e:6b:e8:a5:cc:4b:
66:a1:ee:6a:2a:9f:0b:ca:a9:a4:15:ee:6b:ba:9e:
72:3e:4c:02:a4:6f:f1:74:fe:88:b2:e9:c0:05:9a:
0c:41:7a:88:75:3f:06:ea:f3:be:9b:8d:d5:ef:77:
43:fc:51:be:c4:09:70:c3:7b:39:9e:47:1e:59:02:
89:c8:f2:1f:38:a0:c2:a3:48:12:24:db:71:d3:a5:
c2:59:71:37:4d:d8:f6:93:dc:ed:19:59:1d:a5:a0:
f0:d1:f7:ab:2a:a9:55:1c:01:4a:cb:be:57:22:b2:
31:f4:04:41:d1:01:b8:56:d5:c2:b8:6e:a0:e9:82:
dc:a1:93:ad:9f:49:76:c7:7c:b8:41:13:c0:5e:8a:
5c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:FD:55:84:29:77:C5:AB:4C:05:64:95:FB:D8:7E:9A:79:49:68:DD
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:37:34:b0:74:9f:50:0b:d9:98:1d:42:4a:cd:11:52:e5:82:
13:c5:17:0b:33:20:17:da:21:9d:e4:c6:e5:87:85:ce:2d:37:
41:1f:65:0e:69:0c:05:24:c2:b7:71:72:f8:f2:02:dd:aa:e1:
21:09:55:29:0e:53:03:bf:e6:bb:0a:96:9a:4a:bd:51:b9:85:
fc:f4:8d:2b:9d:41:12:f0:33:be:6f:ad:e7:0a:e7:cf:df:05:
88:38:12:f5:34:3f:81:1f:51:20:48:a1:89:84:92:82:fd:2d:
c8:72:5a:9d:32:92:c3:1b:0f:2d:12:3d:e0:c8:61:25:e0:25:
73:27:19:6f:7e:e4:30:89:09:2c:c9:83:de:61:1e:d0:e2:48:
fb:21:d2:b0:77:ef:dd:8f:bf:c6:f2:be:76:81:dc:68:e3:d5:
3f:56:47:9c:aa:32:00:d8:3b:05:81:37:c2:db:a5:40:89:a5:
b3:ba:6e:bf:64:ef:5a:71:6d:24:41:19:1f:91:db:9c:09:fe:
03:5a:c6:98:d8:6e:76:d9:d5:2b:e4:28:c0:79:59:f7:ea:4e:
43:23:a9:88:d7:36:e5:7a:9a:7a:ed:01:90:d3:86:88:c2:8a:
6c:16:33:1f:25:5b:53:37:62:84:f8:a5:02:81:56:13:33:28:
77:83:1e:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:42:53 2026 by rpki-client