Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: d4zRnUw06Cvju2ohEvSYbhLh74AWjKGMe7/IlmMt2KE=
Subject key identifier: 16:A0:DA:D0:07:C0:7C:5D:82:94:8E:37:B6:35:45:EE:53:07:66:83
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019DA3AF1F28748F05704F785A28914A0CAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 1342
Signing time: Sun 19 Apr 2026 03:00:56 +0000
Manifest this update: Sun 19 Apr 2026 03:00:56 +0000
Manifest next update: Mon 20 Apr 2026 03:00:56 +0000
Files and hashes: 1: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: ayBXAva0jzJq360OowQ5j0zKe6zFoskbHrWTgcRnS3A=)
2: qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa (hash: fcQ2Ei/HI72zlpQU19GPaQ5DdqwsBsYj6lbFhVkHW2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:1f:28:74:8f:05:70:4f:78:5a:28:91:4a:0c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Apr 19 03:00:56 2026 GMT
Not After : Apr 20 03:00:56 2026 GMT
Subject: CN=16a0dad007c07c5d82948e37b63545ee53076683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e1:7f:6e:d8:3e:6b:b5:56:c4:c2:b9:80:89:
a1:b1:05:60:c8:4a:cc:91:e9:c2:d7:77:85:45:76:
c0:74:ee:20:b8:f5:e9:05:f4:8c:99:22:ca:3f:71:
44:45:7a:91:8b:e7:6d:75:48:9d:a4:0b:e0:df:9d:
61:d5:10:60:e2:5d:9f:df:96:0a:10:de:24:c4:d2:
2c:40:a5:a7:8a:a0:8d:69:d8:0e:8a:37:30:ed:59:
5a:6f:94:07:80:06:0c:8a:41:82:53:a1:a3:fa:9b:
a5:0c:2f:c6:95:fb:c9:28:ab:d7:26:34:eb:ae:7f:
c0:5f:91:c8:7e:5f:f9:5e:e9:f7:bf:4a:df:30:16:
5a:4f:ad:a9:0f:3e:bd:77:5e:8b:dd:fb:0d:c5:4e:
f3:d7:f8:17:7f:de:8c:2a:68:49:2a:90:7c:35:c7:
86:f2:a1:4b:6e:d9:d9:ff:f9:8f:d1:4f:14:f1:d9:
be:74:1d:6b:9d:5a:d5:84:26:d4:34:bd:31:0b:a6:
eb:ae:98:8a:04:1c:01:72:bd:df:23:25:a5:9c:01:
ca:4b:38:18:5a:32:b6:8a:f9:cd:05:58:70:3f:53:
d4:6b:44:75:1a:c3:53:77:d6:a9:bf:32:28:3d:59:
5a:b7:a6:02:7a:27:a1:6a:af:35:c4:1c:c7:00:c1:
27:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A0:DA:D0:07:C0:7C:5D:82:94:8E:37:B6:35:45:EE:53:07:66:83
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:52:c9:56:b1:cd:3f:cc:81:bb:4f:9a:8e:aa:af:f2:94:f7:
a0:17:99:2a:0e:9a:81:67:c8:f8:0b:4b:1d:76:f9:f3:38:f5:
d4:c4:a7:86:13:24:91:ad:5c:dd:09:2c:9e:2f:2e:9e:2d:79:
8a:d8:ed:de:ce:e9:2e:49:4a:10:5e:39:70:a1:fb:ab:39:eb:
d0:e7:05:93:fd:9d:5c:91:92:94:c8:1e:79:9c:ca:2b:a9:8d:
cf:cd:df:16:f5:36:d0:e0:4b:0d:ee:01:f6:ef:d0:3a:84:bc:
c3:32:b9:ff:99:1a:82:4c:c3:30:5a:b9:57:9d:fe:b1:40:f7:
7b:71:0d:2e:46:1d:9a:34:ff:08:58:34:dd:f1:a5:51:fb:38:
a0:b0:eb:64:07:a7:6b:e6:1a:aa:fa:23:45:05:42:cb:78:50:
27:1c:50:9f:5f:6a:7f:d5:83:ba:5c:8c:e5:f4:b7:fc:5e:04:
1e:a8:2b:24:90:80:ae:8f:75:1a:af:71:ae:93:3f:0e:2f:a1:
0a:df:c7:f7:64:dc:8d:e9:d0:af:f1:96:53:46:5b:52:f4:88:
e9:2b:a7:0d:e6:10:ad:34:17:ba:12:35:42:64:91:b4:35:72:
e3:4e:a5:4d:e5:76:6b:04:7b:5b:37:11:fb:2a:ab:de:6e:4c:
48:ca:b3:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:07 2026 by rpki-client