Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
File: aiElvfZalVLVuOF6s2FaoQuAWXY.mft (raw, json)
Hash identifier: 643cO6wcWP9Lhq0XFOQFpKxnfU+UoV2c2pXqdbGHesM=
Subject key identifier: 24:A7:5F:7B:C5:0B:00:CF:4A:60:09:4E:3B:7E:5B:79:C3:42:B9:D5
Authority key identifier: 6A:21:25:BD:F6:5A:95:52:D5:B8:E1:7A:B3:61:5A:A1:0B:80:59:76
Certificate issuer: /CN=6a2125bdf65a9552d5b8e17ab3615aa10b805976
Certificate serial: 019D397770E7723B3C21E5C3CDBE8B51CB25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
Manifest number: 0491
Signing time: Sun 29 Mar 2026 12:00:21 +0000
Manifest this update: Sun 29 Mar 2026 12:00:21 +0000
Manifest next update: Mon 30 Mar 2026 12:00:21 +0000
Files and hashes: 1: aiElvfZalVLVuOF6s2FaoQuAWXY.crl (hash: bZTF5my0szLUP1yBDnSFA2tkX3UW5LQmWiMjoVYEzXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:70:e7:72:3b:3c:21:e5:c3:cd:be:8b:51:cb:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a2125bdf65a9552d5b8e17ab3615aa10b805976
Validity
Not Before: Mar 29 12:00:21 2026 GMT
Not After : Mar 30 12:00:21 2026 GMT
Subject: CN=24a75f7bc50b00cf4a60094e3b7e5b79c342b9d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:62:44:3b:3f:04:cc:46:96:51:64:f1:86:8f:
3d:e8:a3:85:45:59:7a:ad:96:3d:cf:dc:89:f8:79:
57:45:df:1e:da:e9:1a:d6:15:25:6a:d3:6b:82:fd:
ce:81:5d:6b:0b:aa:fb:ed:f5:c9:7d:70:c6:99:ea:
48:6f:23:bb:56:d7:87:6e:d7:4b:fe:9c:49:6e:ee:
79:b6:01:c5:aa:a8:8e:29:40:57:a9:fa:90:10:09:
39:36:81:27:dc:75:aa:8e:80:de:82:70:93:6c:f1:
10:5f:5b:bf:2a:cf:15:cf:91:38:56:f7:35:96:6a:
15:03:63:22:4a:d8:5c:d1:ae:df:d6:54:1b:c2:37:
8f:65:cf:44:85:a7:f4:c9:aa:20:cc:8f:f1:32:69:
ec:4b:1c:2a:19:89:16:3c:4d:00:c1:e4:cb:12:42:
a4:47:31:55:de:f5:fc:2f:6d:76:da:ec:38:9c:83:
bc:30:de:8d:7a:f1:b8:d6:bf:c6:19:4d:44:f1:ab:
c9:0e:d8:91:27:da:73:9f:97:15:34:68:2e:da:88:
8b:89:fe:ed:b1:8e:2c:65:f0:75:71:46:f7:d3:dd:
d4:23:24:e4:e7:b8:33:a0:7a:d7:d7:65:f5:f1:be:
d8:8c:fc:4f:c2:2f:08:d0:11:65:a0:7e:1a:6a:9d:
39:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A7:5F:7B:C5:0B:00:CF:4A:60:09:4E:3B:7E:5B:79:C3:42:B9:D5
X509v3 Authority Key Identifier:
keyid:6A:21:25:BD:F6:5A:95:52:D5:B8:E1:7A:B3:61:5A:A1:0B:80:59:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aiElvfZalVLVuOF6s2FaoQuAWXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/f5b68e-e093-46d5-8d0d-63ed22cabc92/1/aiElvfZalVLVuOF6s2FaoQuAWXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:27:ee:50:f4:2e:8f:c4:c1:c1:9d:37:f7:c6:ce:33:94:2c:
1d:3f:e0:d6:64:44:e4:57:3b:7f:4f:a3:b4:9c:c6:0e:1b:ee:
9f:31:0d:3f:6c:a6:ea:bc:69:8f:98:fe:cf:33:67:6c:5c:e6:
a8:c1:b4:bb:73:36:28:96:6d:03:80:45:f2:a4:91:5e:8f:cc:
3c:77:71:13:85:54:c0:d1:f0:4d:14:ed:1d:f7:38:34:fb:62:
83:df:32:34:e1:13:e1:5d:a3:13:3b:58:16:3f:b2:91:5d:c2:
af:83:f9:cf:6a:bc:99:c2:f4:61:c6:a6:f4:48:86:01:9a:0d:
3c:4d:6d:48:39:1c:82:ae:f0:68:45:48:1f:45:9b:2f:bf:db:
d6:d0:a7:a8:a6:4c:08:66:84:3d:a0:19:20:f2:74:ea:38:a7:
1a:c9:78:9b:cb:d7:8a:67:3a:03:c9:9f:9f:1e:a7:78:14:90:
3f:5b:24:11:b0:02:57:fb:d8:dc:ef:69:f2:8d:a0:66:5b:51:
e6:9e:70:c9:33:28:64:8b:64:d3:1d:23:55:c9:c5:64:f2:63:
0a:7c:5c:ba:0f:ac:e5:c1:90:47:7d:a4:f7:a8:3d:a8:cb:9b:
cd:54:b6:38:0c:90:a2:d0:88:df:5d:c7:24:36:54:a2:b0:9a:
b0:a9:39:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d3Dncjs8IeXDzb6LUcslMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMjEyNWJkZjY1YTk1NTJkNWI4ZTE3YWIzNjE1YWExMGI4
MDU5NzYwHhcNMjYwMzI5MTIwMDIxWhcNMjYwMzMwMTIwMDIxWjAzMTEwLwYDVQQD
EygyNGE3NWY3YmM1MGIwMGNmNGE2MDA5NGUzYjdlNWI3OWMzNDJiOWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6WJEOz8EzEaWUWTxho896KOFRVl6
rZY9z9yJ+HlXRd8e2uka1hUlatNrgv3OgV1rC6r77fXJfXDGmepIbyO7VteHbtdL
/pxJbu55tgHFqqiOKUBXqfqQEAk5NoEn3HWqjoDegnCTbPEQX1u/Ks8Vz5E4Vvc1
lmoVA2MiSthc0a7f1lQbwjePZc9Ehaf0yaogzI/xMmnsSxwqGYkWPE0AweTLEkKk
RzFV3vX8L2122uw4nIO8MN6NevG41r/GGU1E8avJDtiRJ9pzn5cVNGgu2oiLif7t
sY4sZfB1cUb3093UIyTk57gzoHrX12X18b7YjPxPwi8I0BFloH4aap054QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCSnX3vFCwDPSmAJTjt+W3nDQrnVMB8GA1UdIwQY
MBaAFGohJb32WpVS1bjherNhWqELgFl2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWlFbHZmWmFsVkxWdU9GNnMyRmFvUXVBV1hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9mNWI2OGUtZTA5My00NmQ1LThkMGQt
NjNlZDIyY2FiYzkyLzEvYWlFbHZmWmFsVkxWdU9GNnMyRmFvUXVBV1hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9mNWI2OGUtZTA5My00NmQ1LThkMGQtNjNlZDIyY2FiYzky
LzEvYWlFbHZmWmFsVkxWdU9GNnMyRmFvUXVBV1hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnCfuUPQu
j8TBwZ0398bOM5QsHT/g1mRE5Fc7f0+jtJzGDhvunzENP2ym6rxpj5j+zzNnbFzm
qMG0u3M2KJZtA4BF8qSRXo/MPHdxE4VUwNHwTRTtHfc4NPtig98yNOET4V2jEztY
Fj+ykV3Cr4P5z2q8mcL0Ycam9EiGAZoNPE1tSDkcgq7waEVIH0WbL7/b1tCnqKZM
CGaEPaAZIPJ06jinGsl4m8vXimc6A8mfnx6neBSQP1skEbACV/vY3O9p8o2gZltR
5p5wyTMoZItk0x0jVcnFZPJjCnxcug+s5cGQR32k96g9qMubzVS2OAyQotCI313H
JDZUorCasKk5eQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:20 2026 by rpki-client