Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: CtJBZ6YTOlCagDP5VXQsRhff+RCrc9y26P+2arzAC2s=
Subject key identifier: 09:CD:96:52:76:27:00:EB:50:BF:AB:52:F0:E2:E0:BA:AA:C5:BB:AF
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 019D9BBE45E88E026868DE330D1B974E394F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 139B
Signing time: Fri 17 Apr 2026 14:00:31 +0000
Manifest this update: Fri 17 Apr 2026 14:00:31 +0000
Manifest next update: Sat 18 Apr 2026 14:00:31 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: QfJhF/+eacHVTS1O8K1QrsFBo601eykHELhAn1lxYUM=)
2: 3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa (hash: VEj0HSUKE42dKjFD2uYohf7XQqVFoN8s8ftve/Xm9PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:45:e8:8e:02:68:68:de:33:0d:1b:97:4e:39:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Apr 17 14:00:31 2026 GMT
Not After : Apr 18 14:00:31 2026 GMT
Subject: CN=09cd9652762700eb50bfab52f0e2e0baaac5bbaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bb:26:4b:8b:10:21:b8:d7:34:d7:0e:77:78:
52:e8:db:fb:31:bd:77:e6:d9:e8:8b:e0:ea:aa:a5:
95:e2:be:3d:84:7e:64:b3:9a:f4:0c:e9:96:b0:eb:
1a:a2:15:7d:82:b8:d9:86:00:71:47:0e:73:de:d6:
01:22:25:36:6d:4f:eb:9a:28:81:66:ac:be:38:09:
ab:f4:14:80:6a:e9:16:fb:52:4c:b3:b6:5b:7e:ab:
a1:42:6c:4f:83:7b:0f:80:26:d8:df:e7:c5:de:6f:
b1:20:9b:d4:ad:af:7b:fd:ca:a2:a6:38:c5:42:8d:
65:37:cd:07:ad:85:a1:33:b9:3f:7e:67:e2:df:5f:
66:38:5f:3a:f2:1b:33:b9:b8:38:09:2a:e8:cd:5f:
18:e7:d8:42:94:57:18:06:e0:a4:44:df:74:09:0d:
13:74:90:34:e8:f4:bf:21:bf:ae:60:72:8d:fb:c9:
c4:7a:66:ad:e4:ef:d1:52:d0:de:56:db:5f:82:64:
0c:44:96:a8:2d:14:68:13:de:8b:b5:5f:71:28:bf:
32:23:21:08:93:07:cb:02:a7:ca:da:61:07:6d:1e:
69:18:3e:e7:4e:6b:93:ea:b5:83:2e:b6:fc:58:52:
4b:cb:cb:8b:08:aa:ba:83:a0:9d:b7:2a:76:d5:3f:
4f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CD:96:52:76:27:00:EB:50:BF:AB:52:F0:E2:E0:BA:AA:C5:BB:AF
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:a2:64:3b:18:8d:ce:a8:29:48:48:33:d4:41:61:46:1d:8d:
fe:a8:41:3c:e5:dc:b5:57:fb:ee:99:5c:76:6a:9c:b5:7f:56:
18:56:c4:69:8c:66:4c:b9:20:5f:e9:3a:62:7e:4d:ea:fe:01:
a6:4d:21:f6:7d:d9:66:0a:ed:00:87:75:81:5b:1c:57:a0:46:
a8:99:74:61:7f:91:83:25:ac:9c:d8:fd:22:c6:17:e2:34:49:
83:e1:e0:8d:cb:32:51:35:1e:fd:de:73:0a:bb:9d:be:56:9f:
14:5f:79:40:fb:96:2a:05:2e:dc:46:0f:63:df:25:31:0f:c5:
6b:04:c5:d5:87:e4:46:6d:74:7a:2a:e0:d9:ff:1a:7c:f5:a4:
12:af:ca:a5:a7:81:03:00:c8:42:f2:40:e9:e2:7a:6b:18:06:
28:be:71:41:70:63:96:88:75:80:cd:79:38:59:cc:62:a4:2d:
fa:a0:bd:b4:66:24:10:bd:9c:53:bc:ea:35:6b:d7:ea:31:41:
28:ff:97:ed:61:39:57:4f:6d:ed:47:77:9e:fa:e7:a7:b1:1e:
20:55:b3:92:db:89:93:80:b7:1a:6f:a2:67:38:4d:8e:8f:6a:
82:46:27:7e:66:7d:21:3e:03:4d:92:99:07:a5:b2:c2:62:28:
38:32:5d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:19:29 2026 by rpki-client