Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json)
Hash identifier: 96bLFUcJq+bmeCSqcc+iGBLhN6C0DZdwrRpJ7EQUOvw=
Subject key identifier: A7:91:F3:D4:98:47:88:A3:94:C2:8F:C6:F9:95:9F:6F:7E:A3:B9:CB
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 019DCD4F7852A5F5C40434DE2FCE68608D39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
Manifest number: 18E1
Signing time: Mon 27 Apr 2026 05:00:30 +0000
Manifest this update: Mon 27 Apr 2026 05:00:30 +0000
Manifest next update: Tue 28 Apr 2026 05:00:30 +0000
Files and hashes: 1: 9M-CJkVBZVuqIwi3Sawh0isCz1k.roa (hash: aFU0pADsAbTvFke0dF4U47/0s76HwBtoQCpl6QnSuNI=)
2: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: gnWHqoY5yM5CGH9LrHTNfYNCbDDSIXgxfjp5K/ygwX8=)
3: KbY29WtKZkz8Fbjj7QvLlg811Iw.roa (hash: vGh5FY7zuISKMd7QAir+eppKFgiFx2llO5uFQh7FV0A=)
4: Yczj7zwVDs2cX_wNQ-ssqLpurf0.roa (hash: lpodXqk6t7MJFjfZg1Uow8LLK/4R3ylcdMkmlTgRneo=)
5: hkJYoKxZ5NaqYkSY0GG7dfC0J6M.roa (hash: M6l2Qx3MyNr2ADezdHbYqYOeyWWrHzzKzTBcWubDLyY=)
6: iN3PbeV3-UffGNWyXfh7JHJfK74.roa (hash: JtoeR6EU9pVtvyEClltI2vcG5Q/h7OJRN/rUzf7IfP8=)
7: qydppjeYfUzDVxdV73Ghn9vaAYk.roa (hash: F/o5ke8f18yC9oKEjHkU0hNCPxAS0/yMbN5QTK0st0g=)
8: sH1teYqG2FqEXd7RfMCaBcOnmaw.roa (hash: suxWcXpZV2IMJ73fGzjwM37LJ58quwhaki1YE7N0sRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:4f:78:52:a5:f5:c4:04:34:de:2f:ce:68:60:8d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Apr 27 05:00:30 2026 GMT
Not After : Apr 28 05:00:30 2026 GMT
Subject: CN=a791f3d4984788a394c28fc6f9959f6f7ea3b9cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1c:2d:ed:9e:4c:90:de:4c:b7:21:2e:f0:cc:
3e:63:6d:12:9c:72:3f:3f:b7:84:e6:54:88:d6:75:
1f:03:7a:27:44:0a:28:19:78:7c:58:19:0d:04:5a:
f9:ab:66:60:af:ab:8f:8a:2e:2b:ba:85:8c:65:6e:
a9:41:7c:be:ce:2b:af:6f:6a:fb:66:4e:2b:2d:1a:
c2:73:7c:b5:53:48:39:ba:cb:45:2e:67:3c:68:c5:
27:f6:39:f9:74:db:04:d1:17:0f:9c:74:ca:73:fa:
5a:39:6d:5b:0b:e5:e4:ff:ba:14:2a:0a:65:c0:13:
4e:3a:08:e4:01:d0:b5:49:ae:f2:f8:69:66:81:f7:
e7:d2:d7:7b:18:ab:b1:0d:dc:69:84:12:1d:bf:56:
d2:a8:ce:32:fd:c8:c6:50:08:7a:e1:ca:cc:d2:70:
0a:28:b0:0d:06:98:f6:17:d9:ac:9b:e8:63:74:d8:
30:7e:bb:5d:9f:87:50:30:3f:a3:3e:8a:d4:84:07:
6c:c5:87:75:af:d6:9c:93:91:0a:42:7c:ac:ac:e2:
af:27:1d:bc:ce:b3:51:ec:58:3e:c8:b1:66:f5:00:
32:56:0f:d0:9c:2c:37:9e:57:33:e4:f7:13:95:d5:
81:ff:25:15:93:9c:67:49:a0:0f:45:15:38:57:40:
50:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:91:F3:D4:98:47:88:A3:94:C2:8F:C6:F9:95:9F:6F:7E:A3:B9:CB
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e4:e7:57:3b:cb:4f:63:c3:58:49:a2:b9:28:5f:df:de:7f:
49:7f:24:a2:0c:ea:b0:73:a4:22:ab:b2:fc:c4:da:62:4a:9d:
e1:1e:ac:78:1a:dd:30:76:2c:65:d7:71:e7:f7:fc:12:6c:0b:
b5:6d:10:ea:c7:68:34:ec:75:0c:60:6d:47:39:3c:88:0c:3d:
d7:dc:6a:18:3a:c9:de:11:c1:46:77:59:95:e5:23:7c:20:b9:
61:37:e0:fe:e5:0a:f2:8f:41:3b:8c:cd:90:09:e4:7d:f3:a6:
9a:6d:92:b2:d4:06:1a:da:aa:48:a7:e5:1f:b2:9d:4d:3c:19:
61:b9:94:c0:30:d3:37:ea:92:ea:3b:fb:af:12:37:b1:23:57:
c5:3f:cf:ea:38:54:07:d2:dd:ed:e7:95:bb:9e:43:7d:07:0f:
62:15:f9:d8:dd:4d:b8:02:e3:3e:6f:99:59:cf:d6:a7:ce:1f:
7e:59:f0:9b:16:b6:f7:5f:d4:1c:d2:77:00:55:58:63:e1:15:
ae:8e:14:30:4e:06:e5:6f:ab:eb:9c:4e:d1:99:cf:79:c2:da:
15:d0:d8:0e:81:35:08:90:1b:9b:e4:da:85:51:dd:a2:82:68:
31:e9:d3:41:c7:e2:d7:d2:db:63:dc:cf:c7:a8:f3:fa:e9:e9:
40:e4:ca:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:54:12 2026 by rpki-client