Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: YCWkB7w8N3pjglESpMpZMojSe4zPi3//qFruzyhJrXw=
Subject key identifier: E5:B6:43:26:A4:5E:87:CD:17:A2:74:76:F3:3D:9F:99:AB:5D:DD:0D
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 019D389C104817ED1A60370A5D0E8B5537B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 13CE
Signing time: Sun 29 Mar 2026 08:00:45 +0000
Manifest this update: Sun 29 Mar 2026 08:00:45 +0000
Manifest next update: Mon 30 Mar 2026 08:00:45 +0000
Files and hashes: 1: 6tZKYli0xFjSrMTaPxgthKbfu_g.roa (hash: lqL9qb+FKGUxGrpBLb7Tf9OnZbQiDT4OvdfFGjgah0c=)
2: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: eLwYyhdB87aPnwZbe1L6IZv6L6GFNRhZQigg2OP5EJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:10:48:17:ed:1a:60:37:0a:5d:0e:8b:55:37:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Mar 29 08:00:45 2026 GMT
Not After : Mar 30 08:00:45 2026 GMT
Subject: CN=e5b64326a45e87cd17a27476f33d9f99ab5ddd0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:48:d9:67:0e:8f:10:c3:09:0d:df:a3:05:
10:f9:88:c8:4a:10:b7:14:3f:72:76:70:19:4a:7d:
73:fb:b5:dc:f5:11:b2:72:c9:01:61:76:37:c2:04:
0a:b2:a4:a1:bb:d7:2e:9e:08:68:57:18:a0:f5:1f:
f7:1c:25:a6:68:4d:d0:f3:b9:43:01:80:e7:92:6e:
c7:55:69:53:84:df:ae:ba:45:78:4d:84:ef:c5:0e:
70:b1:53:ba:c8:8a:02:52:e6:98:45:19:60:ba:b6:
32:0a:c3:bd:30:97:6d:6c:01:77:5f:62:4b:3e:24:
6e:6c:d0:f0:f5:92:5b:aa:e5:7a:cf:eb:d0:8e:06:
c4:26:76:67:26:a6:e8:41:af:3f:92:80:87:8f:8e:
87:b6:08:36:26:c0:12:e7:56:b9:8c:cc:36:7e:da:
ac:05:0c:6c:0e:c7:08:38:02:55:52:b8:9c:ee:b8:
bb:0d:2b:9d:89:53:ea:b1:ec:37:9c:b4:7b:16:b3:
01:45:fd:98:51:ac:25:bb:e9:39:0e:a7:ab:ce:b5:
31:7a:cf:31:2d:6e:52:69:12:d6:e9:88:a6:e4:01:
0c:3a:06:2e:82:1c:fa:d9:6c:19:4c:42:64:a6:35:
55:fd:c3:f6:f1:2a:b5:c3:33:21:28:a1:44:a1:13:
61:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B6:43:26:A4:5E:87:CD:17:A2:74:76:F3:3D:9F:99:AB:5D:DD:0D
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:be:ae:62:4f:16:1a:20:9b:69:34:77:e2:34:8a:a6:7e:6c:
f2:5c:77:39:95:eb:06:f4:6e:14:e7:06:1a:15:1a:bb:da:a0:
c7:60:b1:a7:94:d5:1d:3d:65:13:99:80:3e:35:61:f3:35:a8:
4a:74:b9:12:62:47:c2:da:27:82:03:49:18:49:d4:02:7e:18:
c0:f3:38:1e:e2:27:3c:3d:d7:08:e9:0e:5b:a6:6b:97:7b:7d:
f9:8a:31:b3:55:07:66:8a:fc:96:a1:8e:dc:a4:9a:a3:bb:83:
c4:f4:e6:32:0d:72:c3:f4:61:89:69:b0:3c:dc:7b:a7:a5:65:
01:9f:6d:8a:8f:2c:d8:73:05:6a:02:37:b9:f8:0e:1e:6a:ce:
98:96:a0:3e:68:39:15:c0:12:e5:b3:2c:79:b7:f0:42:20:c9:
23:7e:15:1f:06:fa:0a:1b:a7:2b:38:81:7a:d4:ee:47:0a:f6:
9b:f5:a5:3f:08:21:1f:ed:57:69:0f:89:40:c6:22:cc:31:34:
b4:e0:3f:bc:74:ad:44:bd:2c:f2:5e:bd:b6:5e:56:a1:63:2d:
16:3b:6d:54:4f:a0:63:95:a2:f3:b9:1a:c5:44:3f:df:df:85:
c7:fe:48:90:09:f5:26:14:70:30:1f:3c:b1:7c:cb:42:fd:ff:
a8:d8:50:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nBBIF+0aYDcKXQ6LVTe4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZTJjMzM3MzFhZGNhNTdkY2MzM2IyZmI4MjMzZmMwMzhi
MDk1ZTkwHhcNMjYwMzI5MDgwMDQ1WhcNMjYwMzMwMDgwMDQ1WjAzMTEwLwYDVQQD
EyhlNWI2NDMyNmE0NWU4N2NkMTdhMjc0NzZmMzNkOWY5OWFiNWRkZDBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0BI2WcOjxDDCQ3fowUQ+YjIShC3
FD9ydnAZSn1z+7Xc9RGycskBYXY3wgQKsqShu9cunghoVxig9R/3HCWmaE3Q87lD
AYDnkm7HVWlThN+uukV4TYTvxQ5wsVO6yIoCUuaYRRlgurYyCsO9MJdtbAF3X2JL
PiRubNDw9ZJbquV6z+vQjgbEJnZnJqboQa8/koCHj46Htgg2JsAS51a5jMw2ftqs
BQxsDscIOAJVUric7ri7DSudiVPqsew3nLR7FrMBRf2YUawlu+k5DqerzrUxes8x
LW5SaRLW6Yim5AEMOgYughz62WwZTEJkpjVV/cP28Sq1wzMhKKFEoRNhJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOW2QyakXofNF6J0dvM9n5mrXd0NMB8GA1UdIwQY
MBaAFADiwzcxrcpX3MM7L7gjP8A4sJXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS85ZDVmZWItYmVkYS00MTQ3LTlkODMt
YzlhZDM3Zjk0Y2Q3LzEvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS85ZDVmZWItYmVkYS00MTQ3LTlkODMtYzlhZDM3Zjk0Y2Q3
LzEvQU9MRE56R3R5bGZjd3pzdnVDTV93RGl3bGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiL6uYk8W
GiCbaTR34jSKpn5s8lx3OZXrBvRuFOcGGhUau9qgx2Cxp5TVHT1lE5mAPjVh8zWo
SnS5EmJHwtonggNJGEnUAn4YwPM4HuInPD3XCOkOW6Zrl3t9+Yoxs1UHZor8lqGO
3KSao7uDxPTmMg1yw/RhiWmwPNx7p6VlAZ9tio8s2HMFagI3ufgOHmrOmJagPmg5
FcAS5bMsebfwQiDJI34VHwb6ChunKziBetTuRwr2m/WlPwghH+1XaQ+JQMYizDE0
tOA/vHStRL0s8l69tl5WoWMtFjttVE+gY5Wi87kaxUQ/39+Fx/5IkAn1JhRwMB88
sXzLQv3/qNhQFQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:21 2026 by rpki-client