Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: aE4q5aurqL6f0qoynbz/EAX/keRptbDPYsU0ZhyjO1A=
Subject key identifier: B8:E3:1A:16:2A:3C:AB:44:EC:FB:C6:2F:AA:4C:46:4B:D8:38:9B:BF
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 019CAE357D65B13776F2A18B9E9798D8E0C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 1320
Signing time: Mon 02 Mar 2026 11:01:06 +0000
Manifest this update: Mon 02 Mar 2026 11:01:06 +0000
Manifest next update: Tue 03 Mar 2026 11:01:06 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: +U1nqO89ZAwOJ/AkNYTExlu8VcQ1zu4A50sz4OXVDQ4=)
2: 3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa (hash: VEj0HSUKE42dKjFD2uYohf7XQqVFoN8s8ftve/Xm9PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:7d:65:b1:37:76:f2:a1:8b:9e:97:98:d8:e0:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Mar 2 11:01:06 2026 GMT
Not After : Mar 3 11:01:06 2026 GMT
Subject: CN=b8e31a162a3cab44ecfbc62faa4c464bd8389bbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fa:3d:35:7f:7c:23:79:62:8f:05:aa:58:6d:
09:03:b5:9c:30:90:03:08:7a:ed:6e:4e:a9:55:8f:
a1:e2:73:94:5c:ea:ca:ea:d6:0c:37:e2:ab:fa:c9:
4c:16:fa:7d:31:e7:ff:41:cf:6b:09:46:9e:b9:7c:
13:16:38:95:96:f2:2c:36:fa:06:31:8b:8d:b8:42:
fe:1d:10:5f:d7:ea:52:63:30:2b:be:53:0a:09:e7:
f7:4a:80:ca:00:14:01:e9:3e:4b:bb:9d:ee:8e:d4:
e0:cc:c2:b1:f4:7d:57:67:0c:4a:dd:5d:74:81:43:
b9:3f:4d:7b:09:b1:1d:59:cd:35:7c:d7:c4:27:d7:
db:e8:09:26:7e:d8:3c:42:17:e8:c5:57:6d:65:d0:
0e:3f:e0:32:3c:b9:ef:22:55:83:a7:bf:61:87:69:
36:6a:f8:07:62:2a:87:cc:dd:e5:1a:37:17:ce:cf:
a8:33:4a:10:f6:06:3c:65:e0:60:c9:cf:5b:f9:33:
b8:ce:69:24:7d:aa:1f:6f:4a:08:e1:d4:75:cd:bf:
28:f0:70:b9:bf:d1:c8:9b:60:4d:3b:7e:c5:27:1b:
72:5e:13:d3:b5:7a:9a:ba:ef:7b:97:e9:3f:d9:82:
bf:e0:04:36:9f:75:af:e0:65:f4:a3:0c:57:2f:61:
91:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E3:1A:16:2A:3C:AB:44:EC:FB:C6:2F:AA:4C:46:4B:D8:38:9B:BF
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:8e:f7:77:e7:9f:3a:ed:7f:ed:06:ac:90:33:de:9a:67:00:
8a:4f:ed:fa:b5:32:7a:32:a9:50:de:74:1d:8a:f9:7f:29:c4:
ee:e3:b2:3d:c8:dd:fe:9f:2d:be:f1:45:dd:31:3d:6a:8e:fb:
c5:06:32:82:c7:a6:a1:64:d1:8c:47:45:32:f3:95:dd:ec:82:
03:6b:b2:9d:54:5d:5d:bf:a6:87:55:5d:c3:88:ec:a3:7c:aa:
7b:12:3c:4d:3d:07:25:7a:40:b6:3e:66:8e:d0:b4:7d:25:16:
59:7e:b0:2a:b4:ba:70:a9:f0:4c:8d:ae:f7:cb:d7:3c:bd:68:
6d:c0:c9:f0:9b:53:24:ec:a2:ff:41:71:2a:46:8e:e7:a6:e5:
e2:3a:ce:19:3f:de:b0:6a:2e:61:b7:87:93:d8:ca:b8:60:6b:
e3:b3:24:7d:08:3c:31:28:03:d0:ba:72:ac:73:f5:13:da:be:
05:30:e1:33:d2:d4:c1:1a:78:df:52:eb:91:68:f5:56:e6:ee:
a7:6a:7a:61:55:b0:56:29:56:63:d0:b0:67:42:3b:b0:f0:fa:
86:2a:ea:ff:9c:ad:f3:eb:6d:1a:a7:58:a9:eb:bb:b8:fa:53:
16:3a:c7:53:b6:13:24:a7:ac:f1:00:a7:23:e0:8e:fa:0b:04:
18:ca:98:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:49:14 2026 by rpki-client