Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: Aq1ChpU/xCMu2kokZixVfIQ1rDRQ2C4Fvw6PpK88pkg=
Subject key identifier: A3:C9:25:E0:05:7F:4D:69:63:FF:CB:D5:75:42:CB:D0:D6:15:07:BE
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 019EC14895D6E9CC53C2A958957B5D1F0E14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 1433
Signing time: Sat 13 Jun 2026 14:00:20 +0000
Manifest this update: Sat 13 Jun 2026 14:00:20 +0000
Manifest next update: Sun 14 Jun 2026 14:00:20 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: pGgEo3oHtWwW1at5XUOGMEj+KvEPJX+bvuBbujW524g=)
2: 3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa (hash: VEj0HSUKE42dKjFD2uYohf7XQqVFoN8s8ftve/Xm9PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:95:d6:e9:cc:53:c2:a9:58:95:7b:5d:1f:0e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Jun 13 14:00:20 2026 GMT
Not After : Jun 14 14:00:20 2026 GMT
Subject: CN=a3c925e0057f4d6963ffcbd57542cbd0d61507be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9a:97:80:01:dd:b3:01:63:a8:a3:b2:4e:49:
97:62:b4:d6:1d:f7:ca:ed:92:23:e6:19:fd:76:de:
7b:fd:3a:45:12:91:4e:04:a4:ef:d2:84:52:e2:f0:
ab:5f:17:49:fc:fc:11:61:ae:9d:1f:76:d4:3a:e2:
36:6c:55:c2:bf:d1:d1:51:19:db:1e:8f:13:98:ab:
e8:70:1a:c4:21:c8:51:0e:45:12:d6:79:20:67:6b:
83:ea:b6:0c:7f:80:67:74:1d:a4:2a:c4:5b:ff:8e:
98:a4:86:ff:6b:af:3c:87:5b:7f:9e:73:8a:93:d4:
4f:80:2e:15:a7:62:5c:40:17:83:3f:b7:70:87:a9:
0a:26:38:ce:27:cb:e4:61:e4:78:96:9a:73:41:34:
ab:68:77:e7:0d:c0:9e:ae:0f:e5:b4:9d:c1:5b:de:
3a:e1:73:ba:54:14:4a:50:32:ae:5d:d5:27:75:44:
df:94:48:2a:22:e3:19:af:2f:0a:d6:a0:37:da:ef:
e5:dd:51:77:e3:31:fe:59:d1:95:de:ae:87:45:f2:
19:1b:32:39:c2:fd:14:6e:a7:87:86:43:3d:5e:19:
2b:9f:6c:78:64:72:bb:1e:42:d0:0d:29:d7:69:2f:
51:a4:df:1d:07:a0:0f:35:03:bd:c6:8d:a4:c6:54:
68:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C9:25:E0:05:7F:4D:69:63:FF:CB:D5:75:42:CB:D0:D6:15:07:BE
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:c7:da:10:7f:13:84:6f:14:0f:b1:25:c3:5f:7e:06:52:c4:
6a:db:b2:94:68:2d:29:f4:f3:3f:82:44:6d:03:ce:b1:9a:0a:
e2:e7:28:0b:2f:75:f2:dd:94:7a:93:55:11:b3:4e:e7:65:7f:
20:47:47:05:56:05:51:17:07:8a:cc:b8:8e:a0:54:c6:c8:31:
e3:62:10:12:f0:67:7f:1d:01:40:b2:6e:61:ec:2e:60:05:54:
85:f5:23:86:d6:47:6d:49:03:d0:f9:d0:4b:67:0b:bd:d4:5d:
ff:da:c5:45:95:dc:8e:56:5b:30:78:73:19:d6:03:01:51:ea:
32:f9:21:bf:d7:91:6b:29:aa:55:66:d5:d7:3d:69:f2:65:c7:
5e:16:e8:ea:5b:a2:05:30:e9:ad:07:a9:b3:90:bc:07:db:9b:
38:45:60:b3:03:7f:3c:f7:aa:98:21:c6:c0:7c:09:65:ba:6b:
69:35:08:bb:3b:2e:56:9e:7f:02:fb:4e:e4:60:a8:64:49:3b:
84:c6:14:6d:f5:74:c7:63:5e:ec:e4:22:b8:c2:9e:2c:4e:6b:
04:6b:80:85:af:5e:18:79:e5:e9:80:c5:ef:12:af:d3:14:3a:
26:3b:08:36:08:c5:68:9f:13:83:0b:25:28:c9:7e:79:a2:b8:
ad:0a:54:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:08:49 2026 by rpki-client