Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
File: AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft (raw, json)
Hash identifier: bMMOYfcjrgZ+uWZNxVSXOpfxz5TaqIpk1R8zlB2vCsU=
Subject key identifier: 6F:D7:30:70:BB:3A:86:0E:7F:E6:06:58:B6:C0:F5:0F:1D:1A:89:B6
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 019CABA1DB88126386FB2F67A050B15113DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
Manifest number: 1868
Signing time: Sun 01 Mar 2026 23:00:37 +0000
Manifest this update: Sun 01 Mar 2026 23:00:37 +0000
Manifest next update: Mon 02 Mar 2026 23:00:37 +0000
Files and hashes: 1: 3lE-OFcZg5HBfiXy0gupENM3iyk.roa (hash: bLLbFDCXQ+hwG1ZI2hchMxCwkBA94qpajMIUIPVAa8Q=)
2: 3yN1WaImxLytELQ8orv8zRs2JTc.roa (hash: xMQ9DHu/OHk2/N1Hs4FxQtyh2D3+E7jpj/gCToK104o=)
3: 6tH2d7DuA0R1l2Pidcpu6hElWDI.roa (hash: CfNi98riUNvkPkY0puJ/adG9NQhrM30w+euigtAJ/Sw=)
4: AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl (hash: zClTmhSoJjSSLYs0kaLrW2KkBl9xZf6o5+O+VEOSgBM=)
5: TzbPsDZ-cxzqjv8-LwUqnZiNDVA.roa (hash: Fw/wCqm5ct+1+LFhxRHPMU/lUojt4L4OVaEyFt+zO+s=)
6: ddUJNLSqBtnSmNldI4m1ICrrXaA.roa (hash: 3+OVO0aN+wd5+fw851/RNy2HHQdglPinsg8QGb8dxQo=)
7: eJhW9z5ku9_qhNiO6iw_ATXoEHw.roa (hash: EPkgNIk6bKUUZeeYQssHTaftEyd1+IqUJt3qVX40j0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:db:88:12:63:86:fb:2f:67:a0:50:b1:51:13:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Mar 1 23:00:37 2026 GMT
Not After : Mar 2 23:00:37 2026 GMT
Subject: CN=6fd73070bb3a860e7fe60658b6c0f50f1d1a89b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:87:ea:ef:2b:d9:0a:09:d2:01:af:1c:82:bb:
8d:d0:0c:13:15:4d:b4:e1:af:6c:73:7a:a7:78:e8:
64:32:c3:a3:9b:0b:9b:58:43:68:7d:0f:d9:96:83:
b1:02:17:12:92:ed:0d:c6:c2:10:a7:ea:48:7d:a2:
bc:8e:ad:ec:d7:57:76:1f:9d:6f:73:8e:2f:fe:3c:
25:b2:45:cc:94:17:3b:b4:49:72:0a:b7:fd:b5:37:
19:cd:71:af:c3:f2:14:23:94:dc:91:cd:7e:b1:8f:
73:02:8b:0b:b1:1a:75:82:00:c0:93:0a:79:ff:ac:
8f:bf:d1:79:7b:51:60:af:04:59:ca:1c:f8:8e:ae:
94:0f:21:28:92:87:fb:e2:94:a2:f4:ae:aa:0a:09:
5d:57:bc:c4:20:62:5b:64:7a:fa:da:a1:6d:c1:df:
92:3c:12:9a:5f:6f:2d:90:4d:8a:98:48:8b:78:ac:
fc:20:d1:6d:15:6e:3d:50:c5:42:6b:57:4e:c9:85:
e1:fd:d7:40:c3:3d:6b:60:f6:2c:32:06:7f:7b:38:
81:6b:0f:e4:45:93:3f:6b:a6:a2:88:cd:d7:8f:3f:
65:73:60:d9:63:47:47:c3:8e:97:db:d2:5c:6e:d8:
5a:db:82:67:95:a2:32:97:dc:d3:cd:57:d8:1d:25:
ff:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D7:30:70:BB:3A:86:0E:7F:E6:06:58:B6:C0:F5:0F:1D:1A:89:B6
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:05:de:72:e6:8f:18:ef:a3:0d:4c:e8:2d:56:38:aa:5f:7b:
03:88:a1:e7:cb:03:46:d2:74:94:b2:a4:ba:28:d1:c3:74:f3:
3a:64:a9:bb:92:cf:24:81:38:e9:54:9f:4e:c1:0a:ca:3b:87:
82:be:e9:03:86:7b:e8:8c:2a:51:08:79:4b:6f:e7:75:45:3e:
63:f4:c5:be:45:bb:06:69:05:76:31:6a:43:d0:bb:07:97:ea:
f7:02:5a:f9:4b:4c:17:a8:05:cb:9e:b0:5d:c1:aa:de:fd:11:
4a:d9:7f:ef:da:87:a8:03:35:0b:a1:7b:01:4d:f2:a1:94:66:
e9:e3:7d:b0:24:7d:99:6b:4c:e2:2d:bf:e9:31:75:7b:f9:cd:
cd:19:3d:75:26:8a:b5:af:25:47:61:4d:63:1c:66:d2:2e:ac:
12:ed:bb:ed:f9:a3:8b:ec:09:1c:07:0e:c9:82:13:d5:45:12:
f3:f3:33:eb:98:4c:2e:9e:d3:3b:99:fc:60:72:e9:a5:0a:59:
5d:6d:e1:cf:0e:a5:85:6a:8f:ac:1d:69:ba:3d:b4:8c:8d:23:
21:b5:0c:4d:c0:f7:b9:10:62:6a:a3:f6:f7:a5:92:46:57:ed:
52:ce:76:e8:7d:c4:76:48:7f:7e:0f:94:8e:38:a2:42:86:1e:
52:3a:64:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:45:13 2026 by rpki-client