Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: upc2Y442yPBJpkoncTeN16HoCrPWG9Ab9gVSXzDbmF0=
Subject key identifier: 33:EC:B4:CF:4D:AB:74:8F:B2:F1:F4:7C:CC:02:7D:E6:59:C0:3A:75
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 019CAB33F9D5CBDE351FE769BAE295E79C6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 1112
Signing time: Sun 01 Mar 2026 21:00:35 +0000
Manifest this update: Sun 01 Mar 2026 21:00:35 +0000
Manifest next update: Mon 02 Mar 2026 21:00:35 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: 5MZarV7HmEkQ3tfRxcB+PLim+SCwgeqh6YgUptBNUo0=)
2: NSYoMgdv_GgQV27_GIPye5U9jPQ.roa (hash: 4AlK45WxtVu086BCXSG5HnwL06CQHoIesX5EAX9HMxU=)
3: RQ8JIGxsT6j17dfeEPWw2-YRi2c.roa (hash: qbacCBbHQjk4PtD2GWcsUuyb/kcc9ZQ6pfK2TjjwNeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:f9:d5:cb:de:35:1f:e7:69:ba:e2:95:e7:9c:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Mar 1 21:00:35 2026 GMT
Not After : Mar 2 21:00:35 2026 GMT
Subject: CN=33ecb4cf4dab748fb2f1f47ccc027de659c03a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9a:97:af:9d:ff:00:96:b7:e0:b5:5e:38:66:
98:ee:26:c4:6a:de:2c:fd:a3:cf:e0:dd:e5:b3:bf:
18:12:f7:81:fc:8a:75:27:7a:a6:9f:39:af:6d:85:
70:e8:8b:26:84:2b:93:0b:0a:dd:aa:05:0c:d5:b9:
57:b1:5f:c8:57:61:16:9c:66:32:b7:1c:08:27:61:
86:5a:30:4b:6e:0d:85:eb:2d:05:9b:2f:c1:bd:c6:
41:2a:a2:c5:55:55:51:08:34:c6:f6:e3:d8:c0:9d:
ce:f2:d8:7d:89:7b:fd:e8:67:2e:ae:78:e6:de:e8:
38:f8:0f:2f:5a:4c:02:47:76:fa:c3:09:f0:55:d2:
ba:94:5b:fb:0f:f5:ac:f4:3b:05:1b:8b:60:40:21:
93:e0:15:a4:64:66:92:26:14:fa:fc:8d:75:7d:d6:
f2:b0:f7:77:e4:06:38:7f:bc:b3:4f:c0:e2:29:e1:
13:df:b4:8c:9f:ff:0e:17:7e:18:1f:9c:8e:94:41:
fd:42:0f:0f:b0:fc:84:59:ef:62:aa:c8:b2:24:8b:
a2:75:4e:94:cc:5c:88:b0:fc:d3:c4:de:d7:57:b9:
87:69:e3:c4:b7:3a:e4:5b:5a:c7:09:a1:77:38:27:
dd:9a:e0:4f:8e:1c:89:d8:fa:d3:72:e9:46:b9:4a:
02:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:EC:B4:CF:4D:AB:74:8F:B2:F1:F4:7C:CC:02:7D:E6:59:C0:3A:75
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:39:97:b3:05:9c:26:58:80:8c:aa:42:5d:94:84:88:1e:97:
00:f1:45:6d:c1:a7:4e:4b:7a:3b:11:5e:5a:3a:35:94:dd:7a:
8f:db:28:6f:bb:68:94:e7:d9:49:4e:ce:8f:c5:8a:49:66:dd:
71:60:55:5a:c3:e3:58:d3:81:44:0e:b8:db:1b:d3:fc:45:37:
8d:11:7f:07:fd:20:72:a4:e7:8e:ae:9f:e9:cc:ca:4e:dd:7b:
52:42:dc:69:f1:bc:89:a8:a8:c5:d9:36:5c:ae:c1:ca:7d:a0:
62:c1:90:59:c7:03:98:9a:d3:57:f0:4f:82:34:0c:a4:58:1e:
47:3c:d4:87:b0:b8:48:e1:a4:97:75:78:8c:78:49:fd:d9:c2:
a4:c2:d3:e5:a7:9e:cb:ec:88:f7:ae:8b:6a:20:a0:9e:66:e7:
a9:0e:08:ca:89:7e:ae:3f:45:58:5b:06:9f:5c:01:ca:8b:db:
08:ce:7f:3a:91:bd:3e:a4:01:20:05:ad:65:1e:ef:a2:a0:fb:
04:19:1a:92:49:e4:11:e5:c1:d0:14:4b:79:50:e9:f1:ba:14:
5b:c4:68:3b:21:8a:e2:ed:0f:28:c9:77:0b:6d:27:05:b2:7f:
fe:4e:39:10:04:49:f6:be:ad:bc:e3:70:99:36:a5:86:b9:df:
51:d4:bd:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:37:06 2026 by rpki-client