Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
File: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft (raw, json)
Hash identifier: Pp+s73HAYATTGRN5YJ2YbOTV0bm3qd1lK8q/FqOb7js=
Subject key identifier: DB:BD:EF:51:C8:13:AE:E4:81:00:F7:03:43:D2:20:CF:BD:18:24:09
Authority key identifier: 02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0
Certificate issuer: /CN=02af3b635354b9757b9f2d68ea5d58c50742aab0
Certificate serial: 019CADFE6BD4FD44BA8F92778B69C6DFB014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
Manifest number: E2
Signing time: Mon 02 Mar 2026 10:00:57 +0000
Manifest this update: Mon 02 Mar 2026 10:00:57 +0000
Manifest next update: Tue 03 Mar 2026 10:00:57 +0000
Files and hashes: 1: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl (hash: jZBDse7q4lv/Yo0k1nGY6itS9i6vFAoTSfUW/jU/3Js=)
2: NGyMHcBWRIkoIoJ_ncGJDqHCOTQ.roa (hash: 7EeVGxOBQ9n5FgZRMYhe7gBwkfF77z2pQwSgFDZNEOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:6b:d4:fd:44:ba:8f:92:77:8b:69:c6:df:b0:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02af3b635354b9757b9f2d68ea5d58c50742aab0
Validity
Not Before: Mar 2 10:00:57 2026 GMT
Not After : Mar 3 10:00:57 2026 GMT
Subject: CN=dbbdef51c813aee48100f70343d220cfbd182409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:64:1a:60:df:2b:5d:f6:96:5a:b2:89:19:
d1:02:62:bb:cd:df:df:18:01:22:fc:af:96:6f:0b:
20:d1:42:92:1d:8c:3c:1f:03:2d:72:e3:ba:8d:d3:
78:83:bb:f9:4f:0a:5a:81:58:59:cf:a1:9e:8f:57:
db:9b:49:4f:4c:7d:5a:7a:ea:8b:71:fc:df:bb:01:
bc:a9:37:b4:01:58:00:e1:38:99:4f:93:00:ab:9f:
99:cb:ab:86:e1:f4:27:b6:e8:b2:13:59:54:02:34:
c2:ad:4e:88:12:6a:9d:c7:d3:32:58:db:4e:9b:f1:
49:2d:27:8d:b4:2b:83:87:79:16:ae:7a:a5:a8:43:
a8:e2:e9:6c:ea:52:d6:cf:f5:84:94:fc:47:b2:d8:
6a:eb:a4:b8:7e:71:b9:ac:09:a5:94:f4:fb:d5:66:
b6:4d:41:b4:c2:e1:b9:1b:7d:0e:18:e8:91:e5:b1:
a1:1a:7e:93:f4:fd:83:98:a1:8f:5e:dd:e9:68:fa:
e3:51:63:ee:9b:8d:8b:55:58:08:10:77:21:3c:f2:
c5:a3:74:d4:df:a4:94:cf:52:c9:f8:d8:19:cb:98:
0a:6f:b9:7d:9a:c9:ee:5e:65:e8:ad:f7:df:ef:1b:
17:7c:32:95:c1:a3:ea:88:2b:5d:89:33:2a:94:de:
79:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BD:EF:51:C8:13:AE:E4:81:00:F7:03:43:D2:20:CF:BD:18:24:09
X509v3 Authority Key Identifier:
keyid:02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:65:bb:e4:77:6b:1c:82:0a:48:bd:5d:f3:a2:99:23:7d:70:
a7:ac:6c:0a:8b:d8:68:00:b1:52:13:65:ac:0c:61:b4:f3:4f:
c5:74:6d:76:fa:83:c4:b9:04:2c:c6:bc:09:c6:69:05:5d:78:
07:9c:78:9e:9c:fd:94:65:1f:0a:79:d8:68:a0:6a:bb:47:eb:
d7:f5:7e:8a:b3:a1:e2:03:e8:05:3f:f8:8c:5c:59:07:41:fa:
16:3b:62:8a:7d:78:8f:76:e5:cf:4c:32:9b:18:a1:f9:98:38:
d5:82:1a:51:89:8d:b0:c3:c3:56:4c:e3:85:b7:a2:df:6c:05:
1b:a1:b6:27:07:fb:1d:02:47:65:5f:06:c1:17:80:6a:a1:8a:
15:7d:dd:53:ba:62:3b:7d:b7:8f:da:45:7b:cd:cc:6b:9b:04:
bf:1c:c7:06:26:f8:db:dd:3a:fe:4e:a3:e8:8f:ba:cb:f7:c6:
fd:de:e5:05:6e:ae:e4:8b:11:da:e9:fc:50:88:3d:a4:56:e5:
8c:c6:67:60:7d:8f:44:07:ad:cb:ff:4a:a4:78:40:12:a9:b6:
b5:12:58:f5:49:f3:31:23:48:1d:ee:39:a2:bf:57:9b:69:8c:
33:e4:1f:88:13:f7:8d:1a:7b:57:86:98:81:56:01:ef:58:89:
94:7a:39:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:17:53 2026 by rpki-client