Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: Ur6Nc8SXPw6BRu7C/9gCKIvdIKBdD4b7D/AsQxOnHP4=
Subject key identifier: 49:38:6C:CE:3E:14:0F:76:7E:A1:0B:DD:76:B7:3E:16:2B:AD:5C:E5
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 019E2FCD8D493B1A4A06CCBD9EFCD678191E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 08:01:00 +0000
Manifest this update: Sat 16 May 2026 08:01:00 +0000
Manifest next update: Sun 17 May 2026 08:01:00 +0000
Files and hashes: 1: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: k+1rqIYeS765AegH9SJIkfgCJAGSIqqlUPqFyMJx/XA=)
2: LbPyc4hAUlUzut2p0ZpxCw83HnE.roa (hash: cLTartZVu31Sy+PEywLeLASvzBKWyq6c9Am1NnMnkbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:8d:49:3b:1a:4a:06:cc:bd:9e:fc:d6:78:19:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: May 16 08:01:00 2026 GMT
Not After : May 17 08:01:00 2026 GMT
Subject: CN=49386cce3e140f767ea10bdd76b73e162bad5ce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a8:c1:c4:f6:4e:b6:b3:6b:34:4b:49:a5:9f:
49:72:09:58:db:22:f1:4d:1a:f6:ca:c5:0c:d5:13:
05:12:55:25:47:7e:6c:76:9a:27:1b:20:11:c7:f7:
5e:3f:e4:d2:7f:a0:31:38:37:a0:6d:f9:75:23:b9:
ba:a2:b6:83:b6:e1:3b:31:7a:6f:5b:0f:e6:a5:df:
89:8c:27:42:a1:c7:e5:95:ac:f2:ca:ee:2d:a9:72:
66:d6:ac:32:8b:47:ac:a3:9d:b8:8b:eb:5d:0b:60:
97:9d:db:97:32:08:c5:63:93:97:df:66:8b:20:13:
00:6a:cc:bc:45:a4:55:b3:be:79:a0:99:17:1e:02:
1d:0f:d0:7e:35:40:b8:88:b9:ff:87:4f:01:cd:19:
db:05:f0:65:3d:e5:23:82:65:2f:62:99:7b:55:14:
a9:bd:0b:e4:dd:5c:3d:ca:08:43:3d:aa:7d:16:de:
59:64:69:84:f4:46:26:a5:e4:c4:5e:5f:41:e0:b6:
38:4f:1c:ed:63:17:b2:99:07:5d:04:74:e3:40:fe:
dc:87:de:6e:ba:56:8a:41:33:40:c2:e4:2a:45:36:
1e:bc:7c:c9:50:6f:4b:75:2a:f1:50:d6:0a:a3:a8:
aa:3d:f4:b6:fd:24:4b:66:fc:fa:e9:e2:b2:5d:da:
a5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:38:6C:CE:3E:14:0F:76:7E:A1:0B:DD:76:B7:3E:16:2B:AD:5C:E5
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:dc:06:f6:ed:f5:a1:9a:d0:04:ca:1e:ca:6a:38:13:c7:fa:
d8:f0:71:b1:b4:19:51:76:50:8d:49:8e:b7:ed:63:8f:25:63:
63:5f:be:b0:7a:d6:a3:3e:13:54:ff:89:7d:e3:f4:07:92:7d:
2d:63:c8:d7:15:f7:4e:47:d2:9c:c5:17:b2:e2:b1:ad:51:c9:
22:a5:94:4a:ad:a9:79:3a:f6:54:04:72:b5:8b:3f:14:b5:2b:
3f:f4:20:f2:00:4f:d6:38:71:2e:2f:5d:39:ee:4f:d5:60:6e:
d1:c1:72:17:8b:89:93:11:ae:34:6c:15:51:c3:67:fc:a4:5d:
d7:ff:6f:ab:b6:c1:32:f1:87:1d:dd:13:19:18:d1:67:82:32:
b5:fa:08:45:ee:b3:94:e4:f4:0d:71:ba:a9:6f:5d:d6:79:54:
82:16:4b:f9:63:4f:76:4a:a5:f7:de:c8:06:5a:3c:2d:2d:a4:
c3:6b:e9:82:08:45:58:d0:bc:11:5e:35:76:97:6d:6e:07:fa:
55:b3:69:4f:07:1c:c3:ea:cf:36:f6:e0:8e:f5:c6:44:07:81:
0c:2f:d5:8f:97:d6:c1:7c:9e:92:ad:f8:29:60:34:b9:46:8a:
4a:2b:f9:fd:4f:5a:34:ef:20:95:bc:3f:4c:79:61:10:f1:be:
f6:e2:f5:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:38:47 2026 by rpki-client