Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
File: Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json)
Hash identifier: XP4dZwnMYtIGGFh9P/zmNPYLjFjC24lw2kIEhjTlp3o=
Subject key identifier: 3D:71:CC:D4:B2:8C:ED:FF:19:CE:46:4B:22:9D:85:A4:85:12:89:A4
Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
Certificate issuer: /CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Certificate serial: 019CABD97E75074F45171F30D72615D344B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
Manifest number: 04BF
Signing time: Mon 02 Mar 2026 00:01:23 +0000
Manifest this update: Mon 02 Mar 2026 00:01:23 +0000
Manifest next update: Tue 03 Mar 2026 00:01:23 +0000
Files and hashes: 1: 0U-rEF9agnpJ5Ty3fMelv62IQ0M.roa (hash: fzpeIGTnD7Q+WUFkK4UZ/gImbOfjt8R2WwapBm5NRmI=)
2: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: xQfGNHoR+i9XmDumsXqLZaiICkIaDQVGx8+X1tZMnsw=)
3: pvD38KfkiRiyA2ciIkT3w1-D9ho.roa (hash: d0J3qo9sPsuBsDx9fbtomBKJ9mGpLuYbMo3eWUmo/lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:7e:75:07:4f:45:17:1f:30:d7:26:15:d3:44:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Validity
Not Before: Mar 2 00:01:23 2026 GMT
Not After : Mar 3 00:01:23 2026 GMT
Subject: CN=3d71ccd4b28cedff19ce464b229d85a4851289a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2e:02:1c:f5:c5:0a:cc:98:81:73:5c:6f:9c:
8d:b3:16:89:05:c0:e1:c5:50:c3:fc:e0:e4:0a:75:
05:48:4a:e7:9c:50:2f:82:60:ca:cb:15:65:8f:14:
32:be:b5:86:e4:f2:ce:ca:35:d0:8e:6b:0d:26:14:
8f:0a:6d:bf:39:d6:95:e7:5a:ae:76:11:ef:fe:81:
a8:06:35:52:66:4e:c9:e6:b8:34:ec:50:86:57:f0:
48:7e:f2:f4:54:ba:49:e2:8d:80:69:3f:da:bf:4e:
12:5a:83:7d:18:52:13:f6:7c:7e:87:c8:cb:b0:07:
b4:77:c0:69:1f:9f:0c:8c:d0:3b:c3:8f:ea:d1:cd:
cb:da:7b:56:95:ab:82:e3:e7:1a:5d:a1:58:4e:a9:
50:90:14:dc:09:cd:5b:91:41:50:2c:2e:0e:11:af:
da:a1:8a:c9:d0:eb:7c:32:17:df:f8:74:df:06:a3:
2b:2b:3f:e5:35:78:7e:aa:bf:72:31:57:ab:55:9d:
bf:6a:3a:3a:96:61:f5:13:91:63:be:a3:c9:44:9b:
6e:19:85:a5:ac:71:d9:5e:c6:41:af:bb:01:54:7d:
d2:57:66:d4:88:bb:d5:59:5d:2c:9e:e8:d3:28:e0:
6c:99:d4:9c:f3:f8:77:3b:94:fa:3a:f6:33:7d:1e:
b2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:71:CC:D4:B2:8C:ED:FF:19:CE:46:4B:22:9D:85:A4:85:12:89:A4
X509v3 Authority Key Identifier:
keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:db:54:16:80:73:46:d4:61:45:4e:f7:08:6d:65:85:39:ff:
5b:8b:11:eb:35:93:ab:60:21:f6:a1:12:e5:b4:27:64:a3:3c:
6b:f0:e4:97:c1:e9:c0:da:93:d2:96:97:63:f2:a8:63:d4:22:
02:ca:d2:be:fe:04:1d:46:40:eb:75:a8:80:64:56:0d:04:09:
9e:1e:93:50:64:54:ad:23:92:af:1e:9b:8d:40:25:20:2a:9f:
a3:fd:f7:08:55:70:91:6e:77:13:1a:c4:30:7b:db:02:0b:df:
7b:98:12:32:7a:76:6f:22:63:df:0d:0e:04:42:37:ba:36:a4:
a8:c4:80:08:7e:e1:dd:b7:26:84:99:b0:66:e2:0d:94:ef:44:
e6:6e:e9:5f:e6:d5:8e:df:cc:8a:eb:b7:dd:78:ea:56:97:60:
1a:41:05:c9:97:13:20:51:64:36:77:35:bd:77:1c:dc:60:2f:
4d:1e:9a:a7:ef:0c:42:5f:78:3f:0f:48:6e:3e:f7:60:09:22:
4d:29:89:d1:c7:9a:74:9c:40:f7:24:68:21:cd:ae:d1:5a:8a:
4e:66:84:e0:cf:d8:19:0a:ed:72:04:47:8f:9b:54:13:d5:7a:
12:a5:a8:f1:70:75:01:d7:60:8b:9e:54:bc:2f:be:2d:1b:07:
28:2e:db:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2X51B09FFx8w1yYV00S1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNmQ1MTFjZTNhZjkwYzRkNjAxYzdjY2Y4MzYwNTIzNzEz
ZTJjOTAwHhcNMjYwMzAyMDAwMTIzWhcNMjYwMzAzMDAwMTIzWjAzMTEwLwYDVQQD
EygzZDcxY2NkNGIyOGNlZGZmMTljZTQ2NGIyMjlkODVhNDg1MTI4OWE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwS4CHPXFCsyYgXNcb5yNsxaJBcDh
xVDD/ODkCnUFSErnnFAvgmDKyxVljxQyvrWG5PLOyjXQjmsNJhSPCm2/OdaV51qu
dhHv/oGoBjVSZk7J5rg07FCGV/BIfvL0VLpJ4o2AaT/av04SWoN9GFIT9nx+h8jL
sAe0d8BpH58MjNA7w4/q0c3L2ntWlauC4+caXaFYTqlQkBTcCc1bkUFQLC4OEa/a
oYrJ0Ot8Mhff+HTfBqMrKz/lNXh+qr9yMVerVZ2/ajo6lmH1E5FjvqPJRJtuGYWl
rHHZXsZBr7sBVH3SV2bUiLvVWV0snujTKOBsmdSc8/h3O5T6OvYzfR6yHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD1xzNSyjO3/Gc5GSyKdhaSFEomkMB8GA1UdIwQY
MBaAFAJtURzjr5DE1gHHzPg2BSNxPiyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzkt
ODRkYTYyMDY2ZThhLzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzktODRkYTYyMDY2ZThh
LzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU9tUFoBz
RtRhRU73CG1lhTn/W4sR6zWTq2Ah9qES5bQnZKM8a/Dkl8HpwNqT0paXY/KoY9Qi
AsrSvv4EHUZA63WogGRWDQQJnh6TUGRUrSOSrx6bjUAlICqfo/33CFVwkW53ExrE
MHvbAgvfe5gSMnp2byJj3w0OBEI3ujakqMSACH7h3bcmhJmwZuINlO9E5m7pX+bV
jt/Miuu33XjqVpdgGkEFyZcTIFFkNnc1vXcc3GAvTR6ap+8MQl94Pw9Ibj73YAki
TSmJ0ceadJxA9yRoIc2u0VqKTmaE4M/YGQrtcgRHj5tUE9V6EqWo8XB1Addgi55U
vC++LRsHKC7bDg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:05:00 2026 by rpki-client