Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: 8Zmiz1m5sHlfIH3V810Cccp/lp8TlQJgqDB3JWc4tOc=
Subject key identifier: 12:74:E3:9A:04:49:95:38:3F:AD:D9:46:44:D6:61:43:0D:40:A0:50
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 019CAEDA13EFFBFAF65679EA4DC799EBC699
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0CFA
Signing time: Mon 02 Mar 2026 14:00:53 +0000
Manifest this update: Mon 02 Mar 2026 14:00:53 +0000
Manifest next update: Tue 03 Mar 2026 14:00:53 +0000
Files and hashes: 1: SDv1pmvtKKy8j5zdxmiuQfAHvKA.roa (hash: la1FbIJeldqJDtutGbiRvWT587OJLuf+NXuNKZUoghY=)
2: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: Ja6vrLgpDMx2JOuJiNQuqu+NdBOxakgeSIxdg4lIDOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:da:13:ef:fb:fa:f6:56:79:ea:4d:c7:99:eb:c6:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Mar 2 14:00:53 2026 GMT
Not After : Mar 3 14:00:53 2026 GMT
Subject: CN=1274e39a044995383fadd94644d661430d40a050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3c:22:13:27:ee:a6:db:79:0f:05:b3:32:d3:
57:e5:fd:4f:d1:55:ca:dc:a5:4f:38:97:8c:a3:3d:
88:08:8d:4e:89:01:a8:f5:60:6a:39:cf:4e:24:81:
5c:cc:62:02:5d:0a:eb:1a:33:2a:17:bb:09:a8:2e:
ef:8f:fb:91:94:49:81:22:40:d8:42:fc:69:4d:5e:
40:36:12:14:75:81:0c:2e:83:2c:e0:b3:40:71:d9:
62:3d:7e:62:2a:db:00:52:81:51:f0:fa:d3:7b:39:
6c:1c:08:78:e9:b0:a2:6e:81:50:41:de:3d:ef:b6:
44:21:f2:20:e0:1f:e3:0d:70:df:8d:c2:1c:d6:52:
e1:1a:84:9c:f7:b3:62:d9:50:ec:6f:e2:cb:6a:33:
4c:d1:42:0a:ae:12:ab:e3:96:cf:d6:78:ff:cc:70:
fc:5c:7f:b1:1b:82:b5:f3:a6:18:2d:16:5e:1a:d8:
c1:ad:bf:c6:aa:ae:45:5f:04:53:d5:1c:5f:9f:2e:
0d:b4:33:ec:7f:94:7a:fb:fe:42:f5:1c:a6:70:2e:
09:ec:17:af:50:bb:21:1f:2d:82:0e:dd:90:e3:3a:
4f:1f:87:26:41:3a:ab:f0:b3:f5:28:40:30:98:2a:
fc:01:1a:65:fe:b8:08:b8:9b:c1:d6:a6:d6:d7:e0:
f9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:74:E3:9A:04:49:95:38:3F:AD:D9:46:44:D6:61:43:0D:40:A0:50
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e5:61:eb:cc:96:51:c3:65:0c:b3:68:31:c3:29:18:62:36:
26:b4:d4:83:ef:18:b9:a3:6d:5b:f7:55:0d:d6:b6:d1:48:2b:
c5:0e:bc:d8:89:e4:bf:62:98:e0:5d:88:cc:a7:74:a8:09:e4:
35:55:9a:da:a3:5f:e6:7b:10:47:0c:43:5e:69:39:ff:1d:4e:
1d:0e:f8:7b:49:0c:a9:ff:81:ef:b8:8b:c3:c6:3e:ed:e1:92:
76:ce:eb:93:ec:38:41:58:2c:06:d5:3d:f1:cb:3f:86:54:bd:
08:7e:d1:79:a7:b4:c4:88:5d:2a:ad:64:e6:07:c1:66:6d:4a:
57:db:dd:e4:af:b9:0a:12:cf:6d:c4:bd:e4:a4:1b:c3:12:27:
a6:5c:11:27:97:7b:43:bf:fa:4d:71:6f:a7:3a:81:02:e2:e8:
b4:61:18:bc:fd:d8:70:7f:df:3d:19:7a:54:91:ee:dd:32:07:
ce:cc:b7:af:ca:1f:0e:72:48:83:ca:70:60:0d:78:2c:29:1e:
ec:b7:9f:f0:67:08:ec:40:03:91:c5:f5:70:e4:c7:2b:3d:09:
aa:f5:68:81:8f:4f:b8:65:49:ab:01:23:7a:2d:95:57:94:3d:
40:98:f5:24:8f:6f:b8:10:f3:ef:2b:d3:ac:08:b0:b7:49:14:
ff:ec:4d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:26:06 2026 by rpki-client