Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
File: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft (raw, json)
Hash identifier: o0CofAhViVKIfFWhq/M8tI9a/j70HkWud6gON5M2XZw=
Subject key identifier: 37:07:73:A4:21:36:8C:27:60:9F:6F:90:AD:99:99:C0:18:31:E0:10
Authority key identifier: 02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0
Certificate issuer: /CN=02af3b635354b9757b9f2d68ea5d58c50742aab0
Certificate serial: 019DA52F5F06D658AE0EC89F34D95B7642EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
Manifest number: 0162
Signing time: Sun 19 Apr 2026 10:00:38 +0000
Manifest this update: Sun 19 Apr 2026 10:00:38 +0000
Manifest next update: Mon 20 Apr 2026 10:00:38 +0000
Files and hashes: 1: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl (hash: nWjHj3CtrvES+JCpGgt1NA6Sj6Btr3r5uhaiXvRr1zo=)
2: NGyMHcBWRIkoIoJ_ncGJDqHCOTQ.roa (hash: 7EeVGxOBQ9n5FgZRMYhe7gBwkfF77z2pQwSgFDZNEOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:5f:06:d6:58:ae:0e:c8:9f:34:d9:5b:76:42:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02af3b635354b9757b9f2d68ea5d58c50742aab0
Validity
Not Before: Apr 19 10:00:38 2026 GMT
Not After : Apr 20 10:00:38 2026 GMT
Subject: CN=370773a421368c27609f6f90ad9999c01831e010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5e:98:5f:4f:25:84:15:a1:93:80:99:90:d0:
44:b7:66:d1:f3:6a:17:59:57:7a:4f:b1:17:59:c2:
af:dd:c8:f6:a4:3a:7f:59:61:10:b8:90:ec:e4:db:
32:a4:9b:90:88:30:3f:6e:1e:ba:a4:a5:0b:fa:54:
71:81:22:6b:8e:9a:a5:8e:64:ad:5a:d5:9d:08:12:
93:c5:9c:56:78:39:c9:bb:c7:11:21:88:5b:59:8d:
8d:52:c6:64:d4:9b:ae:73:6c:b3:1b:42:dd:c8:38:
d0:81:bb:f0:20:5a:61:d2:05:97:60:45:1f:1d:7f:
28:1f:bd:72:5c:0b:4f:8e:a7:22:e5:97:7e:84:c3:
92:51:86:ad:de:a9:59:13:24:1b:1f:b7:e6:8e:57:
71:29:81:fa:f3:74:a2:92:48:d6:30:06:88:05:36:
17:69:2f:a6:8b:07:13:74:38:11:14:c4:9d:fd:67:
cc:6c:73:68:06:3a:cf:03:97:24:d6:65:75:9f:ec:
e8:cc:ff:bb:e9:e3:53:65:ae:0c:6b:a6:11:fd:ef:
86:b2:49:31:c4:9f:a7:76:37:2a:c5:ec:ac:0a:89:
ae:f9:21:90:71:94:9d:7c:6a:0e:5a:0c:60:2f:ee:
33:5b:04:f6:6e:99:ac:c0:f3:8a:72:a6:06:5a:d8:
79:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:07:73:A4:21:36:8C:27:60:9F:6F:90:AD:99:99:C0:18:31:E0:10
X509v3 Authority Key Identifier:
keyid:02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f6:c7:a9:f1:c9:45:62:de:c4:76:80:8f:39:26:75:d6:fb:
35:5f:36:27:10:94:b6:8e:05:b3:7e:2c:f6:6e:11:aa:61:ce:
b1:42:14:50:d4:b9:eb:77:2b:e5:77:18:9d:23:a3:53:ae:17:
52:fc:d3:bd:e7:cd:d3:b2:32:c5:6d:fb:4c:05:b7:83:9d:24:
49:59:d8:79:89:cb:e7:4c:64:c7:2e:c5:f9:a4:78:36:76:9b:
ad:1b:6b:d7:0e:5d:6c:e2:98:4a:2a:ab:48:6c:98:c7:e0:ad:
b7:60:57:ac:da:89:6e:0d:17:40:a6:01:c6:91:81:37:5e:e4:
70:2c:36:63:c4:3b:3e:38:f3:37:9d:27:71:64:c8:2b:53:7b:
04:77:6c:6a:30:25:28:51:e1:ec:b1:50:33:99:67:ac:bc:b9:
ee:90:cd:86:00:ff:c2:a4:a8:ba:d8:5a:58:ce:6a:5a:f0:95:
28:e9:b2:c7:53:28:91:99:69:67:f7:63:7c:be:2f:d8:71:2a:
4f:36:74:57:a9:8c:84:ed:e8:74:64:35:cb:b6:ad:9c:be:4e:
3f:ef:67:7b:a9:aa:77:30:80:28:2d:07:2b:ab:2b:3b:6f:3f:
85:e1:d0:8c:fc:dc:40:45:10:b6:0c:d6:06:95:7f:15:96:6b:
bd:98:83:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 13:44:28 2026 by rpki-client