Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json)
Hash identifier: kIKyRNx+7UhCkq1NwNNTK07xZ7kcKx/53Ka1SPWBYqI=
Subject key identifier: 1B:32:A4:0A:40:90:79:0F:4D:4B:07:DD:26:E8:3B:90:5B:01:53:5F
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 019CAD59460764F70E8EF639B95A7E72572E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 07:00:34 +0000
Manifest this update: Mon 02 Mar 2026 07:00:34 +0000
Manifest next update: Tue 03 Mar 2026 07:00:34 +0000
Files and hashes: 1: 58YF0ymtPf000UYsXQwLeX0ZufU.roa (hash: 40hd3BRBbvBiTvhYzazTmqFgM3O0ax5/aAw4bE5lLLg=)
2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: M4JtcmzahBbqeW6P/Nv85yyWrTXMBlUchj8IekiKHBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:46:07:64:f7:0e:8e:f6:39:b9:5a:7e:72:57:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Mar 2 07:00:34 2026 GMT
Not After : Mar 3 07:00:34 2026 GMT
Subject: CN=1b32a40a4090790f4d4b07dd26e83b905b01535f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:88:31:aa:ee:b4:f6:53:17:8d:da:66:08:
57:6a:9e:3c:11:bf:09:fa:0f:e6:e5:1c:da:75:b8:
05:3b:98:8f:0d:eb:53:4c:65:94:9a:57:08:f1:1e:
a0:a7:61:27:06:56:55:21:c7:57:91:80:89:be:7f:
a2:23:5e:d7:db:e4:f4:e0:1e:16:cf:e1:64:df:82:
d2:e1:54:f8:e7:aa:da:ed:f0:62:01:92:49:cc:ad:
39:2f:75:19:4f:26:22:fa:65:9f:22:8d:8c:bf:a3:
45:f4:18:32:9c:39:45:38:48:0b:3c:27:89:f4:d2:
ca:6f:0c:d6:20:a0:de:25:5c:5b:4f:8a:33:5a:bc:
2c:2a:24:f9:9d:1f:30:b2:9d:9b:70:d2:9e:6a:6d:
1a:74:d0:e7:57:4c:1d:0d:2a:08:9e:2a:58:f4:8b:
71:fd:63:10:ae:8a:ae:61:52:35:be:4e:8e:9c:a4:
03:72:39:ad:79:78:6c:04:f6:74:4f:e8:60:6a:3c:
7a:70:1d:8e:fe:f6:2c:cc:4d:02:cb:fb:ce:fe:10:
63:71:c1:8e:0c:0a:f8:21:3d:2e:3e:f3:33:20:43:
9f:58:0b:69:a3:d8:9e:53:14:4b:c8:54:8d:50:a3:
4a:62:22:0f:d7:01:d0:e7:b2:9a:ae:8a:e3:68:ae:
99:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:32:A4:0A:40:90:79:0F:4D:4B:07:DD:26:E8:3B:90:5B:01:53:5F
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:dd:92:76:96:ff:d8:91:ba:5c:35:02:7e:57:41:4f:9c:4e:
46:2c:b8:a8:2c:81:46:f8:52:46:0d:48:b5:4f:ed:96:93:e3:
dc:58:59:f9:5e:e9:aa:aa:7d:62:4b:d2:11:89:53:0c:2a:0c:
94:2d:17:6b:4e:33:eb:67:17:61:e2:64:7e:4f:6e:3e:b2:c5:
3d:fa:ac:ef:b0:37:9c:80:b3:1a:bf:4e:43:5e:a1:ba:5e:82:
a9:29:a0:99:2f:fa:27:9b:64:48:75:96:7a:76:74:df:7e:8a:
38:c4:a5:8e:73:5e:50:7d:44:b7:fb:7d:1b:ea:dd:69:62:eb:
c5:98:06:f4:2b:1b:eb:c6:cc:22:c3:00:19:09:41:8e:68:46:
fc:51:b5:be:70:ac:ce:0d:ee:5e:7e:78:aa:60:d7:b0:91:f5:
1f:ad:f9:26:a4:0e:91:36:0f:9a:95:e9:f3:cb:1b:3b:21:ae:
e8:3a:14:82:02:4e:1d:4c:18:bd:98:02:95:64:32:cc:27:6d:
73:c5:82:21:45:9b:23:7a:8a:76:ad:21:c8:0a:f0:4b:a5:78:
14:2e:79:06:63:8d:e2:1e:1b:ff:b8:30:63:93:93:0d:a4:9c:
0e:04:74:7c:36:81:42:e4:21:01:c1:cb:47:ce:bd:d5:ed:56:
06:b3:ee:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:50 2026 by rpki-client