Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
File: aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft (raw, json)
Hash identifier: 3OhIGSjnxH6wpuzIz8Q9kmcLw3U5LCZUzGQJx2wsSqo=
Subject key identifier: 49:A7:D7:CB:1C:B9:D5:04:50:95:52:10:DC:7D:FE:00:06:26:24:24
Authority key identifier: 68:6D:18:40:49:3E:EE:34:5F:8C:02:AD:8A:A7:F0:F0:F4:1B:A4:50
Certificate issuer: /CN=686d1840493eee345f8c02ad8aa7f0f0f41ba450
Certificate serial: 019CAD59F73C1B3F0FB5FE2F6B10E85CCC86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 07:01:20 +0000
Manifest this update: Mon 02 Mar 2026 07:01:20 +0000
Manifest next update: Tue 03 Mar 2026 07:01:20 +0000
Files and hashes: 1: Uocr9SIrv8jbsgJXhQAIDOX3hGs.roa (hash: 4iPmjoYeqHL7835MhflNIw3FaZg4Ojg4Y6QdIx6OiEc=)
2: aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl (hash: XmZeRC7vRInph67DC3TswqSpBfH+vvOKUrW24T7yMMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:f7:3c:1b:3f:0f:b5:fe:2f:6b:10:e8:5c:cc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=686d1840493eee345f8c02ad8aa7f0f0f41ba450
Validity
Not Before: Mar 2 07:01:20 2026 GMT
Not After : Mar 3 07:01:20 2026 GMT
Subject: CN=49a7d7cb1cb9d50450955210dc7dfe0006262424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:24:15:51:f8:5f:36:b8:68:29:af:10:d5:41:
9d:e2:94:9b:47:90:fe:62:78:78:a4:bb:fe:45:15:
21:e5:ff:89:86:18:fb:4a:d6:8b:66:a5:c4:db:33:
3b:05:d4:06:68:cd:f9:6b:a9:b0:a3:ad:b2:f8:cc:
8e:df:e5:eb:97:f8:0d:4f:b9:ff:67:87:bd:94:9e:
84:42:ee:66:86:42:69:5e:cc:6c:93:75:84:cc:e2:
11:ac:be:a2:a3:d5:2c:92:59:ce:03:32:95:24:61:
72:15:d4:54:1a:0d:82:51:09:de:12:f3:b4:13:47:
54:85:cc:e1:16:13:eb:64:08:28:3b:d2:f7:39:93:
21:2c:4f:c8:5a:ab:ee:d9:2f:0a:0c:03:44:87:0c:
43:c4:a1:14:aa:d4:8f:e7:3b:96:ad:8a:0a:06:c4:
82:e6:ba:55:51:b7:26:e6:46:59:74:0f:bb:f3:1b:
f8:78:22:5b:75:84:f6:3d:0b:05:af:4b:c4:9b:cb:
57:12:ec:66:1e:b8:47:e5:9d:17:c9:a4:f2:22:2a:
c0:38:c3:44:f1:d6:c1:b4:36:2b:df:38:d1:2f:54:
81:ca:22:1f:8e:7b:38:35:fc:9b:e6:75:d6:d2:14:
fe:52:05:a0:ee:3a:ae:72:4b:d2:ed:0c:d2:25:b9:
d4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A7:D7:CB:1C:B9:D5:04:50:95:52:10:DC:7D:FE:00:06:26:24:24
X509v3 Authority Key Identifier:
keyid:68:6D:18:40:49:3E:EE:34:5F:8C:02:AD:8A:A7:F0:F0:F4:1B:A4:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aG0YQEk-7jRfjAKtiqfw8PQbpFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e42ecf-78ff-4b58-8760-826d05ccfe25/1/aG0YQEk-7jRfjAKtiqfw8PQbpFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:38:2c:2c:22:4b:01:1c:16:7f:ee:e5:55:f6:f7:1c:a5:3e:
36:b4:9b:9a:2c:fc:4a:4d:66:06:b7:3f:fc:f9:79:c9:2e:c3:
10:c0:05:e0:75:c6:d1:61:24:d3:b9:78:f4:0a:90:d3:1b:11:
58:3b:dd:ec:c7:d5:8b:b8:9f:4b:30:9c:67:09:14:63:21:c1:
b8:9d:7f:a2:88:85:f6:a5:1e:6b:9a:ce:08:7c:f4:a3:67:11:
05:bf:55:76:3e:f5:4a:f2:e9:f4:96:df:77:df:58:4c:dd:6b:
85:51:22:45:82:c6:67:18:4a:ce:f9:73:41:95:9f:1d:c0:58:
6b:b7:e3:eb:cd:cc:56:73:67:4d:2a:e6:cd:59:82:4e:32:b6:
36:05:e7:1c:ef:82:da:f3:22:e4:7d:93:14:bf:b6:a0:70:26:
f4:38:14:28:3d:46:c3:e2:33:48:45:c8:35:b4:16:ca:26:6d:
4e:61:fd:94:43:25:70:a6:23:d4:32:68:62:25:54:63:65:0b:
90:e2:ff:1e:c0:33:d1:f8:47:79:5a:f4:7a:42:5e:c8:9b:88:
8d:16:20:76:d1:48:9d:85:a9:ca:d5:2e:cc:90:5b:21:45:6f:
e8:99:76:b2:5a:8e:f7:16:53:55:d6:46:a9:1b:6a:01:af:d9:
f2:61:06:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWfc8Gz8Ptf4vaxDoXMyGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NmQxODQwNDkzZWVlMzQ1ZjhjMDJhZDhhYTdmMGYwZjQx
YmE0NTAwHhcNMjYwMzAyMDcwMTIwWhcNMjYwMzAzMDcwMTIwWjAzMTEwLwYDVQQD
Eyg0OWE3ZDdjYjFjYjlkNTA0NTA5NTUyMTBkYzdkZmUwMDA2MjYyNDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CQVUfhfNrhoKa8Q1UGd4pSbR5D+
Ynh4pLv+RRUh5f+Jhhj7StaLZqXE2zM7BdQGaM35a6mwo62y+MyO3+Xrl/gNT7n/
Z4e9lJ6EQu5mhkJpXsxsk3WEzOIRrL6io9UsklnOAzKVJGFyFdRUGg2CUQneEvO0
E0dUhczhFhPrZAgoO9L3OZMhLE/IWqvu2S8KDANEhwxDxKEUqtSP5zuWrYoKBsSC
5rpVUbcm5kZZdA+78xv4eCJbdYT2PQsFr0vEm8tXEuxmHrhH5Z0XyaTyIirAOMNE
8dbBtDYr3zjRL1SByiIfjns4Nfyb5nXW0hT+UgWg7jquckvS7QzSJbnUWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEmn18scudUEUJVSENx9/gAGJiQkMB8GA1UdIwQY
MBaAFGhtGEBJPu40X4wCrYqn8PD0G6RQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUcwWVFFay03alJmakFLdGlxZnc4UFFicEZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9lNDJlY2YtNzhmZi00YjU4LTg3NjAt
ODI2ZDA1Y2NmZTI1LzEvYUcwWVFFay03alJmakFLdGlxZnc4UFFicEZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9lNDJlY2YtNzhmZi00YjU4LTg3NjAtODI2ZDA1Y2NmZTI1
LzEvYUcwWVFFay03alJmakFLdGlxZnc4UFFicEZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKDgsLCJL
ARwWf+7lVfb3HKU+NrSbmiz8Sk1mBrc//Pl5yS7DEMAF4HXG0WEk07l49AqQ0xsR
WDvd7MfVi7ifSzCcZwkUYyHBuJ1/ooiF9qUea5rOCHz0o2cRBb9Vdj71SvLp9Jbf
d99YTN1rhVEiRYLGZxhKzvlzQZWfHcBYa7fj683MVnNnTSrmzVmCTjK2NgXnHO+C
2vMi5H2TFL+2oHAm9DgUKD1Gw+IzSEXINbQWyiZtTmH9lEMlcKYj1DJoYiVUY2UL
kOL/HsAz0fhHeVr0ekJeyJuIjRYgdtFInYWpytUuzJBbIUVv6Jl2slqO9xZTVdZG
qRtqAa/Z8mEGNA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:02:40 2026 by rpki-client