Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: zIIfM1IGMhM3jWHqjlX777jdEw1iq3kVe31lbgbp/5g=
Subject key identifier: F4:B3:3C:FF:A5:CB:54:A4:33:20:22:FE:4F:68:E6:C1:12:A2:C2:F1
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 019CACEB77120B584811F1F5F6E88CB8E753
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0CF9
Signing time: Mon 02 Mar 2026 05:00:38 +0000
Manifest this update: Mon 02 Mar 2026 05:00:38 +0000
Manifest next update: Tue 03 Mar 2026 05:00:38 +0000
Files and hashes: 1: SDv1pmvtKKy8j5zdxmiuQfAHvKA.roa (hash: la1FbIJeldqJDtutGbiRvWT587OJLuf+NXuNKZUoghY=)
2: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: AiFPjbqyk0e0NrJZVLV7lPj18Abr2zhiJZRB7a4P95w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:77:12:0b:58:48:11:f1:f5:f6:e8:8c:b8:e7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Mar 2 05:00:38 2026 GMT
Not After : Mar 3 05:00:38 2026 GMT
Subject: CN=f4b33cffa5cb54a4332022fe4f68e6c112a2c2f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:6d:d8:87:da:97:f2:fb:1c:0c:77:32:95:
6b:67:25:55:e4:53:a1:d6:fa:6e:2d:84:93:0b:a5:
f7:1b:d5:39:55:2d:99:4e:0e:78:f9:b5:e8:be:ef:
c9:ce:24:4f:47:95:c4:a2:02:da:aa:f8:80:96:ec:
a1:04:e9:93:49:cb:30:fb:a2:10:42:49:9b:17:1b:
b3:b9:11:fd:c0:66:4b:84:a3:11:51:93:ce:b7:99:
36:df:b7:65:ba:84:c5:d3:97:22:3c:1d:c6:d5:fc:
f0:34:43:cb:25:35:1a:6d:a3:88:0f:a9:3b:8f:0c:
6d:89:c3:d9:be:4c:4a:06:0d:80:f8:4a:13:fb:9b:
e3:ae:20:20:92:69:95:68:bd:fd:a2:f8:e3:70:0d:
38:73:56:f8:e8:35:3f:55:31:3e:eb:40:09:5d:6a:
88:1d:8c:9b:9e:37:62:c6:18:b7:65:0e:d8:56:cc:
1d:47:54:ce:62:bb:fb:6e:e4:81:c9:2b:a6:d4:12:
02:cb:22:48:f7:76:8c:c1:37:07:d8:98:29:83:c6:
8a:87:b4:6d:54:7f:d4:fc:f9:84:56:61:47:a1:ee:
e0:90:85:bb:7d:d8:94:26:05:0a:64:dc:cf:8a:6c:
ca:77:db:bf:4c:a5:62:79:9e:4d:6a:c7:38:28:df:
d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B3:3C:FF:A5:CB:54:A4:33:20:22:FE:4F:68:E6:C1:12:A2:C2:F1
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:78:d7:7b:a3:53:a8:f8:79:27:43:1f:cc:6e:7a:d7:f9:80:
be:99:7b:83:6f:c5:d2:2a:d3:f9:93:8d:bd:c1:32:10:23:bd:
53:7b:6e:98:86:be:9b:3a:9c:f4:8e:b7:86:d0:45:40:d6:6c:
95:e6:c8:8b:0a:de:56:49:c6:34:24:92:d2:c2:d6:96:dc:26:
6a:19:25:42:1b:d4:74:62:67:11:34:31:89:14:4a:87:0c:8b:
72:a8:f6:5f:db:ce:61:a9:38:0c:64:4d:75:2b:21:56:a8:a0:
5a:a4:08:3f:1c:7a:26:4b:82:3a:82:2b:4a:cb:e4:b9:10:ca:
f1:a8:df:e6:4b:20:bb:8e:38:30:27:b0:74:05:9c:4e:18:09:
75:32:9a:e5:55:3b:cc:c4:10:1e:dc:f1:c8:d3:ed:cc:63:10:
90:c5:30:b4:0b:ac:af:e1:8b:5e:ac:1c:bc:cc:5d:bb:a4:7d:
0a:3a:af:51:fb:9c:63:b5:1d:10:41:0b:68:3f:3d:4c:d0:66:
f2:4e:11:9d:4d:3f:ea:42:5a:69:f6:2c:bd:96:65:83:92:6f:
db:14:7e:9d:6b:17:e8:3c:7e:f9:76:74:76:f1:30:25:36:fd:
22:cc:6f:7a:1c:d3:2c:9a:6a:0e:bc:76:b0:e4:14:77:b5:22:
b2:d9:97:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:09:15 2026 by rpki-client