Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
File: aweCDo1ADzwl3dC-G0bFTpVZYKE.mft (raw, json)
Hash identifier: Aog/sq/n84X9/T1mR2hepe8ZQDGtwZx/ZKXJp3cK1oY=
Subject key identifier: A7:7D:FF:D8:82:9E:5A:11:DF:BB:D0:10:DC:80:B7:A1:9F:8D:E2:8C
Authority key identifier: 6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
Certificate issuer: /CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Certificate serial: 019CAA215490DD0FB2548B5A6246AED65C79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
Manifest number: 0F5F
Signing time: Sun 01 Mar 2026 16:00:36 +0000
Manifest this update: Sun 01 Mar 2026 16:00:36 +0000
Manifest next update: Mon 02 Mar 2026 16:00:36 +0000
Files and hashes: 1: aweCDo1ADzwl3dC-G0bFTpVZYKE.crl (hash: PQLybJ9ay2Z5wwcGTkVAL1D5N0dklHOxfPXGWaOZTYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:54:90:dd:0f:b2:54:8b:5a:62:46:ae:d6:5c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Validity
Not Before: Mar 1 16:00:36 2026 GMT
Not After : Mar 2 16:00:36 2026 GMT
Subject: CN=a77dffd8829e5a11dfbbd010dc80b7a19f8de28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:89:a7:2c:1a:46:42:86:58:25:02:47:94:
a3:2f:f1:6e:5d:82:aa:84:96:6f:c4:58:35:a0:c5:
c3:07:10:da:14:a4:99:22:f3:a9:3b:7d:bd:64:55:
80:e5:58:96:6a:80:8b:c6:1c:2f:dd:92:a4:f7:c9:
b5:31:2d:5d:61:8a:45:b6:13:73:d5:5e:6b:dc:bf:
47:31:42:4e:ff:bb:e2:5b:7d:ae:80:12:10:86:21:
db:cb:0d:ce:2f:9f:9c:b4:78:dc:3a:5a:d9:82:ba:
4e:5d:7d:50:86:2f:e3:dc:2c:84:a3:74:a9:99:c5:
d1:6f:e8:da:3b:3a:a2:3e:2b:bf:71:46:e5:0e:73:
06:53:e9:db:c5:b8:7f:19:28:61:b7:11:ed:af:61:
b1:eb:00:f2:93:e8:ad:3f:35:da:d5:7c:d3:4a:7b:
a3:ee:d1:aa:8c:6a:f4:f5:e8:0b:2c:ae:ea:d5:73:
69:81:fa:83:fe:c0:3b:11:c9:e4:2c:ea:1d:b6:2e:
5f:13:ce:78:fd:c5:83:e4:00:b1:61:53:55:11:7f:
f0:75:7f:53:57:c3:79:7c:73:25:07:0f:cc:d1:55:
d4:66:c5:8d:14:e3:2e:b4:90:fa:8b:25:d3:67:b7:
d7:4a:fe:e1:8e:48:2a:fe:26:60:71:4d:c2:fd:1e:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:7D:FF:D8:82:9E:5A:11:DF:BB:D0:10:DC:80:B7:A1:9F:8D:E2:8C
X509v3 Authority Key Identifier:
keyid:6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c3:73:1a:f5:cf:34:00:1c:36:9a:d1:86:f4:a6:5a:f4:98:
4a:ab:ce:ed:f7:7b:38:09:08:4b:01:f9:63:ac:e2:5d:7a:11:
2a:87:fa:dd:fa:fd:5f:52:39:cc:23:3d:60:d2:07:14:c5:e5:
e0:f5:01:11:9d:03:e9:37:e8:48:2a:66:af:c7:31:b3:91:b5:
9f:36:0d:03:32:5e:c0:43:c8:b7:be:a3:f9:5e:a1:11:d9:e6:
26:8e:46:da:4e:60:5e:b6:4e:3b:73:01:99:89:a3:44:5a:68:
6d:2f:67:f1:f3:00:0d:77:42:18:ed:28:ea:8b:bb:32:e6:b0:
31:b1:34:89:7a:77:0f:0e:70:7e:a6:35:93:30:4b:cb:4a:5d:
db:66:be:cd:ee:15:e1:be:eb:72:42:43:ce:47:03:d0:9c:62:
c6:a1:0c:9d:25:1b:de:22:7b:d6:f9:6d:22:7b:a9:70:b9:ad:
63:48:35:7b:a8:71:f6:e9:6c:b7:b2:42:93:ff:6e:20:df:f2:
56:c3:54:de:a2:ef:1e:16:4f:85:86:13:21:3b:bf:f6:63:c8:
d3:dc:16:fc:d1:9a:56:3f:f4:b8:17:a0:09:dd:95:86:99:ef:
f6:34:ab:48:4d:e9:ac:64:e2:0e:54:c9:e5:37:fe:59:0e:fb:
1b:98:fa:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:10 2026 by rpki-client