Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: cmjZCeHZRKxQrs5c1tubXoSulFTd7to4jSoCL0QfmjY=
Subject key identifier: 2D:05:BB:D2:ED:70:A5:F1:19:DB:72:31:1A:D6:32:FF:7D:ED:25:EC
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 019CABA265560903CBD95D4B9CDA4A74C24E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 1109
Signing time: Sun 01 Mar 2026 23:01:12 +0000
Manifest this update: Sun 01 Mar 2026 23:01:12 +0000
Manifest next update: Mon 02 Mar 2026 23:01:12 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: 7T5dXeHAkxI/Sb+4ezWWTldGvYVRGPG8VIf4qgf78ps=)
2: mIZXI4mZrRbzXPh4YmTsjubQ1Zc.roa (hash: bzN5/dHvXtXSM/Oh2+pMoFqPyzgsKGPGMLfbcUvulmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:65:56:09:03:cb:d9:5d:4b:9c:da:4a:74:c2:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Mar 1 23:01:12 2026 GMT
Not After : Mar 2 23:01:12 2026 GMT
Subject: CN=2d05bbd2ed70a5f119db72311ad632ff7ded25ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:09:14:9a:34:4e:f2:74:a4:98:ab:a2:41:60:
9e:d4:fe:01:02:80:22:ce:f4:a0:c9:d8:23:28:ed:
e3:60:3e:9d:48:1c:b0:ac:6b:fe:24:bd:0a:29:ae:
7b:38:7a:5e:b8:9f:6a:e7:02:72:58:c8:a7:ce:fb:
a3:de:bd:2b:b7:21:c0:d0:64:35:02:6f:92:87:3a:
27:92:be:2a:ca:c3:92:fd:ed:27:96:4c:2f:5e:89:
e5:16:dc:d6:64:47:dd:e0:40:b0:db:b1:5e:bd:ed:
e6:51:de:11:70:33:cf:3e:fc:d0:c0:52:91:e1:70:
26:5f:94:81:1e:cd:b2:21:b1:b0:ed:01:95:4f:99:
bf:e4:d2:bc:9f:b5:bd:d4:36:1b:f0:d9:e1:e8:5c:
36:4e:8f:13:3b:0f:41:0f:82:bd:dd:95:09:fd:b3:
c7:67:0f:4e:50:af:66:c1:a9:3a:f0:40:cf:6f:98:
28:da:94:04:6f:7d:c0:b7:d0:92:30:2a:3b:f1:b9:
35:88:22:68:de:7b:9f:82:ad:c3:8e:f8:3a:ff:0c:
4f:0c:f0:2e:1b:9b:bc:be:32:fa:5e:ce:45:f4:a5:
90:02:8d:b8:a2:16:d2:6b:93:4f:e1:b1:e3:53:75:
44:b1:71:f7:58:59:ae:a5:86:48:48:fd:18:b2:d1:
2d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:05:BB:D2:ED:70:A5:F1:19:DB:72:31:1A:D6:32:FF:7D:ED:25:EC
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b7:37:41:d5:2a:44:db:dc:a3:9b:0d:88:55:b1:c4:22:52:
0f:48:b8:ce:35:35:58:e4:a4:69:a5:1f:0c:de:7c:71:63:05:
0e:7f:09:6e:1b:28:63:ca:97:c6:01:ae:d1:54:a7:14:2c:5b:
88:cf:e9:ae:d8:eb:cd:04:45:f8:26:52:49:b8:1c:97:03:f4:
b6:dc:92:8b:db:92:9c:7a:af:b4:a0:8c:8b:3a:cb:c4:22:5f:
67:62:55:de:20:a5:5c:e7:87:43:ef:b2:29:6b:69:a8:ed:41:
f9:67:96:9d:b1:3c:f4:c6:83:19:dd:58:7c:75:a3:b5:52:01:
30:19:6e:7b:fe:57:bb:99:43:50:f5:b7:72:56:54:ec:e3:40:
c3:56:de:2f:05:ed:80:6c:f4:e6:6a:a7:ec:2d:03:f2:7d:fa:
ac:dc:24:c8:c3:51:ca:92:a3:c6:d4:9b:a3:80:27:21:80:43:
c5:ae:10:1f:8a:c8:fa:36:88:2e:31:cd:ce:dc:82:67:2f:da:
81:a6:c9:3f:e0:e0:2a:3c:79:f1:a8:60:a7:38:0c:1b:97:38:
c7:0d:6a:ce:fe:12:51:ca:0e:1f:52:9a:0d:bb:c9:f3:3f:3c:
f5:cf:0b:55:62:5c:5f:95:f6:65:31:5d:d8:ff:26:14:65:a0:
9a:cf:20:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:14:52 2026 by rpki-client