Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: UcD+WPI2+tsZoW1lp16eWYOBRRggWaHh4DJjNmUNB88=
Subject key identifier: F2:86:4E:54:63:63:77:C2:6C:C3:AF:D8:19:5F:F4:01:16:B4:61:49
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 019CABD99ABA4BD3FF287FEF8BD434F63815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 00:01:30 +0000
Manifest this update: Mon 02 Mar 2026 00:01:30 +0000
Manifest next update: Tue 03 Mar 2026 00:01:30 +0000
Files and hashes: 1: RxByI3rH_YsmBp9MFWCFAA3GDzM.roa (hash: kPBLDDqbqmranSBPQ+O5l9xhMyzuVrqfoP6GlvpDNU8=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: WPKxGu7G46rdUYcD4eXY7EWSTPpjC1lPqXVS1h1AaaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:9a:ba:4b:d3:ff:28:7f:ef:8b:d4:34:f6:38:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Mar 2 00:01:30 2026 GMT
Not After : Mar 3 00:01:30 2026 GMT
Subject: CN=f2864e54636377c26cc3afd8195ff40116b46149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:76:c6:c1:f4:4d:3b:e8:f0:0b:03:bb:e0:24:
72:64:25:1b:85:a1:7a:38:79:e2:fe:78:04:f2:70:
6e:37:56:84:98:6f:e1:70:be:94:96:ca:2b:59:c9:
c3:06:bd:3c:a2:d1:7e:e5:e1:8d:e9:50:46:a4:ab:
ab:be:20:4c:47:87:51:4b:45:9a:78:92:87:b5:56:
39:ea:0d:12:98:7a:b3:1a:18:d8:e8:2a:3a:18:c6:
04:7b:15:bb:80:6b:a9:73:d1:4e:a4:9a:79:ad:d5:
a9:50:fc:b7:66:2a:50:d4:d4:4b:2f:14:41:08:ee:
37:2e:6a:d5:c9:95:b7:21:99:ef:85:d7:04:0a:6c:
78:a2:1d:7a:49:35:f1:b3:b1:77:76:99:71:ee:09:
fe:bc:73:7c:e1:11:24:69:5b:a1:39:5f:85:01:d1:
09:b0:27:11:a5:33:df:6f:68:f1:fc:aa:73:53:ee:
3b:70:95:54:b1:e7:5a:e7:09:88:1e:3e:f3:43:3c:
a5:e6:23:6c:59:a8:16:7f:73:65:61:43:9e:61:6c:
fc:c0:a0:5c:60:67:4e:bd:b0:1a:60:ad:93:d5:56:
7f:56:4e:9d:52:37:ee:29:b6:9b:d2:7f:a0:c5:91:
80:c4:7d:5f:3a:a8:b8:bd:3a:e2:8f:b9:ce:88:ce:
93:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:86:4E:54:63:63:77:C2:6C:C3:AF:D8:19:5F:F4:01:16:B4:61:49
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:68:8d:d5:5e:6a:f4:38:7c:4d:15:70:a7:1e:c7:3f:49:59:
0b:e2:0e:fc:27:86:83:98:b6:c8:2b:56:e3:72:a3:1a:96:85:
fd:4c:b2:19:03:33:75:09:e8:8e:b4:b2:8e:e0:87:b4:b6:73:
eb:4d:08:e4:9d:71:69:98:a0:1d:5f:53:ee:7c:b6:64:08:6c:
11:f9:ea:a5:c2:fc:6e:57:cb:b1:da:be:52:8f:4a:71:a9:ad:
0d:2a:f5:15:0d:a7:75:0a:c9:f5:64:74:b9:8c:17:51:cf:70:
4b:c1:10:34:ed:2f:40:9d:09:ab:f0:51:66:34:9c:4c:96:5b:
f7:c8:23:88:cf:cc:af:a5:fe:76:83:1f:d9:77:7c:02:50:b6:
53:07:46:cd:1c:cf:af:87:8d:d7:41:5c:33:8a:3e:e8:8e:69:
e3:9d:2b:ab:28:1c:68:2c:88:34:86:e9:a7:c4:9c:cc:db:56:
aa:36:85:1a:3a:7a:1b:d8:9e:80:3c:1f:06:cc:46:fb:19:43:
02:99:ce:5d:90:1f:fe:4e:64:d3:1c:14:53:14:5a:cc:39:91:
36:e8:0b:0e:39:21:16:f5:d7:2b:8e:cb:80:f6:ca:77:ce:3f:
8c:f8:80:de:b5:e6:7f:6f:41:26:c3:62:8c:60:41:0c:cd:c4:
99:c4:a7:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2Zq6S9P/KH/vi9Q09jgVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODdkMDA0N2ZiMWQ4OTEyYzYzZjkxMTMwNWE3MTRmNDM4
YjFlNzEwHhcNMjYwMzAyMDAwMTMwWhcNMjYwMzAzMDAwMTMwWjAzMTEwLwYDVQQD
EyhmMjg2NGU1NDYzNjM3N2MyNmNjM2FmZDgxOTVmZjQwMTE2YjQ2MTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHbGwfRNO+jwCwO74CRyZCUbhaF6
OHni/ngE8nBuN1aEmG/hcL6UlsorWcnDBr08otF+5eGN6VBGpKurviBMR4dRS0Wa
eJKHtVY56g0SmHqzGhjY6Co6GMYEexW7gGupc9FOpJp5rdWpUPy3ZipQ1NRLLxRB
CO43LmrVyZW3IZnvhdcECmx4oh16STXxs7F3dplx7gn+vHN84REkaVuhOV+FAdEJ
sCcRpTPfb2jx/KpzU+47cJVUseda5wmIHj7zQzyl5iNsWagWf3NlYUOeYWz8wKBc
YGdOvbAaYK2T1VZ/Vk6dUjfuKbab0n+gxZGAxH1fOqi4vTrij7nOiM6TSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPKGTlRjY3fCbMOv2Blf9AEWtGFJMB8GA1UdIwQY
MBaAFGmH0AR/sdiRLGP5ETBacU9Dix5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlmUUJILXgySkVzWV9rUk1GcHhUME9MSG5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9kODM0NTQtZDM1OS00ZTllLTg0MWMt
NDI5MTRiZTBhYTA0LzEvYVlmUUJILXgySkVzWV9rUk1GcHhUME9MSG5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy9kODM0NTQtZDM1OS00ZTllLTg0MWMtNDI5MTRiZTBhYTA0
LzEvYVlmUUJILXgySkVzWV9rUk1GcHhUME9MSG5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOGiN1V5q
9Dh8TRVwpx7HP0lZC+IO/CeGg5i2yCtW43KjGpaF/UyyGQMzdQnojrSyjuCHtLZz
600I5J1xaZigHV9T7ny2ZAhsEfnqpcL8blfLsdq+Uo9KcamtDSr1FQ2ndQrJ9WR0
uYwXUc9wS8EQNO0vQJ0Jq/BRZjScTJZb98gjiM/Mr6X+doMf2Xd8AlC2UwdGzRzP
r4eN10FcM4o+6I5p450rqygcaCyINIbpp8SczNtWqjaFGjp6G9iegDwfBsxG+xlD
ApnOXZAf/k5k0xwUUxRazDmRNugLDjkhFvXXK47LgPbKd84/jPiA3rXmf29BJsNi
jGBBDM3EmcSn2Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:07:31 2026 by rpki-client