Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: C10OiFnwN7sZRnWgxPYhKl/RCXtr5tSzGsWgpvKomyw=
Subject key identifier: EE:C0:E9:F0:FB:86:65:45:25:DC:5E:7A:D1:1D:DF:F0:EC:56:0B:A9
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 019D992AF118739A0A044E7D802DAF54FB8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 1184
Signing time: Fri 17 Apr 2026 02:00:21 +0000
Manifest this update: Fri 17 Apr 2026 02:00:21 +0000
Manifest next update: Sat 18 Apr 2026 02:00:21 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: rSmpSnTSvhi2S5tzF74ubDjB/vwHaJuxqjR9S6lg7vA=)
2: mIZXI4mZrRbzXPh4YmTsjubQ1Zc.roa (hash: bzN5/dHvXtXSM/Oh2+pMoFqPyzgsKGPGMLfbcUvulmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2a:f1:18:73:9a:0a:04:4e:7d:80:2d:af:54:fb:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Apr 17 02:00:21 2026 GMT
Not After : Apr 18 02:00:21 2026 GMT
Subject: CN=eec0e9f0fb86654525dc5e7ad11ddff0ec560ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:69:06:ae:56:c6:2d:f5:a2:03:3c:c4:cc:8a:
c0:b8:ab:48:57:58:39:1a:26:5f:33:25:14:1d:db:
76:f3:09:b3:3a:7c:8d:67:8d:9d:0a:35:f3:87:01:
58:5b:f9:b4:fa:89:13:d2:78:b6:ba:66:2c:28:8a:
bc:67:00:a8:ca:39:75:cd:fc:99:13:28:f9:2b:0b:
25:8e:6d:28:30:cd:66:26:9b:2d:3f:e1:08:44:7a:
bb:11:bb:ca:13:a6:a5:3d:93:f6:df:35:fe:4f:af:
06:2d:80:eb:23:f7:e9:92:90:49:32:b4:b6:d9:63:
fd:13:fe:94:a8:68:39:15:d7:e3:89:7a:f3:e1:33:
07:ab:ca:58:5f:8d:af:dd:7c:af:b9:e7:4a:ca:3d:
e1:3c:bd:1d:a8:15:91:6b:e0:a5:df:5d:50:9c:9e:
13:07:8d:9d:08:7a:fa:2d:21:8e:d9:84:c9:64:67:
90:43:4e:34:d1:10:a8:3b:30:ff:c8:90:e5:45:6e:
42:17:6e:29:8c:03:02:83:74:0e:89:1d:ac:31:dc:
ac:40:c9:ad:a0:e8:09:2e:71:b9:22:07:1e:40:bd:
72:07:76:45:68:a6:3b:9e:13:24:42:dd:5b:d6:58:
2f:b9:db:e6:11:cd:d6:f6:bd:63:26:0e:9b:d5:6f:
6a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C0:E9:F0:FB:86:65:45:25:DC:5E:7A:D1:1D:DF:F0:EC:56:0B:A9
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:89:cc:50:1e:64:76:e2:25:ae:21:77:a5:e2:0f:05:45:a2:
cb:e5:4f:2b:68:6c:c8:67:78:7f:26:08:88:89:d4:18:43:a1:
a2:a8:bc:7d:1e:42:fd:5d:d9:1b:67:6b:d3:3e:e7:27:df:06:
e2:8c:f4:db:97:c0:fd:76:71:8a:4c:90:15:b3:b1:93:26:f4:
1c:44:09:52:08:03:2b:5f:d0:ea:4b:3d:70:31:4e:c6:16:dc:
5e:f2:51:b5:ba:28:db:9d:98:70:91:7e:a9:a4:e7:01:9b:b8:
63:9c:db:36:f4:51:58:ee:00:cb:a6:fc:02:0f:08:4e:a4:85:
d3:1f:39:f6:74:1b:50:73:9b:4c:4d:53:87:df:f0:41:1b:a8:
fc:55:34:1c:15:4d:81:c6:4d:f2:56:9b:dd:2e:17:a6:56:88:
d9:c0:20:ec:e2:53:01:6f:1d:62:08:c9:f5:99:0a:6d:f2:28:
15:f7:23:20:70:5e:83:b1:6c:f6:b2:aa:6d:a3:c6:41:ea:f7:
13:79:00:df:05:4d:2a:23:73:4c:7e:e4:90:2a:24:37:95:81:
21:b0:e9:8f:e9:3c:b3:64:34:93:c8:ae:9b:e1:17:a7:10:06:
1e:de:31:2c:cd:ca:e9:77:ff:2d:32:03:39:06:67:31:6b:23:
99:47:27:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:05:09 2026 by rpki-client