Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
File: 2AtJfVG9n0e4T2k9aH--jPbP-3U.mft (raw, json)
Hash identifier: RqGc3pkGd7fMFRsIlVuMuJd0/1idpJ+95bocnaK1A7g=
Subject key identifier: AE:50:10:13:54:89:67:54:1F:EB:E1:EC:EC:2D:17:9C:B5:0A:54:E1
Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Certificate serial: 019D98F5322890FAF2737717F279D95FAD08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
Manifest number: 09D1
Signing time: Fri 17 Apr 2026 01:01:38 +0000
Manifest this update: Fri 17 Apr 2026 01:01:38 +0000
Manifest next update: Sat 18 Apr 2026 01:01:38 +0000
Files and hashes: 1: 2AtJfVG9n0e4T2k9aH--jPbP-3U.crl (hash: 3/yhJAD8rfWIQpZko6HKwg9dbFb2rv2vtCvgCbaCeZg=)
2: H2tuVkWgjp6XpzlorJ0CMh9rzOQ.roa (hash: has59eIOKa6q3uHYWVg7mO28StrkkiAgF2EF9c4ggME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:32:28:90:fa:f2:73:77:17:f2:79:d9:5f:ad:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Validity
Not Before: Apr 17 01:01:38 2026 GMT
Not After : Apr 18 01:01:38 2026 GMT
Subject: CN=ae501013548967541febe1ecec2d179cb50a54e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:7e:b4:46:85:62:55:74:f1:63:31:95:10:
f0:55:1c:f1:56:e5:e6:9d:a3:43:ac:16:86:27:92:
ad:f4:3d:5c:f8:d8:a7:d1:e3:a6:89:5a:71:7a:35:
c7:0a:a7:12:fe:7a:05:d5:e8:31:68:18:75:88:7d:
01:21:8e:20:5d:01:f7:a6:0a:cc:37:49:8a:a7:19:
c4:72:2c:89:bd:25:f1:03:f1:f2:02:05:ec:0d:02:
59:dc:db:44:67:37:34:cf:fc:0d:f0:ec:50:86:78:
9d:37:fd:c2:49:80:1c:4c:b1:8e:1c:98:ac:82:8d:
6e:56:77:eb:47:91:f7:e7:fe:a2:18:61:49:44:4a:
b9:1e:87:16:fc:65:98:f2:2c:74:7e:b4:71:ad:43:
24:b9:5a:48:7f:82:1b:9d:16:a7:d0:18:b4:5b:25:
3f:be:39:6e:2f:06:b9:34:b7:52:46:3a:d7:9b:df:
f9:70:47:b9:4d:14:34:88:29:06:16:a8:a4:98:c6:
60:3d:e4:b6:2a:4e:48:3d:3a:fe:ce:93:6c:ff:c2:
aa:4f:0a:04:9e:30:bf:56:e0:fe:e0:86:62:32:7c:
62:20:ae:f0:ee:5d:43:47:0f:73:2d:bc:47:2d:20:
47:0d:6b:29:13:e4:55:65:20:fc:2e:e7:c6:fc:92:
0f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:50:10:13:54:89:67:54:1F:EB:E1:EC:EC:2D:17:9C:B5:0A:54:E1
X509v3 Authority Key Identifier:
keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:1e:84:ae:f8:01:6b:2f:cf:a0:d9:07:84:62:d2:ac:e6:7b:
cc:ea:30:1f:e8:ed:82:df:03:dd:40:5a:7c:8b:99:ff:15:9c:
a4:05:ea:d7:4b:a5:6a:16:c5:a4:47:e3:75:bd:1c:f4:e6:a7:
ad:18:24:37:2a:51:a4:1a:b2:3a:a0:1a:6f:de:ed:b1:78:a8:
af:51:2c:13:00:fb:73:fc:93:85:38:17:da:2f:08:93:08:e6:
62:a1:7e:f2:a5:b1:6d:58:2c:c7:53:7a:98:c3:90:ca:a8:df:
13:e9:f8:b4:16:42:f2:bc:7d:8c:ca:fc:e9:23:ba:ac:6f:15:
df:5a:54:f8:02:25:69:e8:4b:05:96:c8:2b:7f:52:71:c0:85:
0f:aa:14:f9:86:4a:a5:5f:91:6b:40:b5:63:cd:0f:60:17:d1:
0e:2f:08:34:69:de:df:ea:be:6e:6b:ed:18:c9:0e:a1:8f:90:
e4:02:20:d2:a0:e7:c2:fc:c0:0c:87:03:6d:0c:2a:c2:59:f2:
50:07:64:17:dd:d5:4c:0e:a9:90:af:e6:1d:01:1d:01:94:7e:
ac:18:b2:c8:12:fd:ef:04:48:b6:9e:68:f5:a9:26:19:ed:6a:
e7:d1:47:96:12:19:24:c3:00:7a:ae:8b:87:f7:79:94:bc:8a:
c8:63:df:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:42:21 2026 by rpki-client