Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: RvoPCgtgodpjbXZ7lzrFNNKgZ+z/cMTCcq2rBQdN2EU=
Subject key identifier: 4F:C9:32:D5:A9:40:95:65:ED:85:1F:4E:5A:88:C5:D1:1F:E9:44:C8
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019CAA8F99BDF171B5CD7A2E0FF28A040CD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 12C1
Signing time: Sun 01 Mar 2026 18:01:03 +0000
Manifest this update: Sun 01 Mar 2026 18:01:03 +0000
Manifest next update: Mon 02 Mar 2026 18:01:03 +0000
Files and hashes: 1: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: C9ljHYVwYXpHyIK/lYBLNLvNxwatJC7KUeUHtm59HiY=)
2: qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa (hash: fcQ2Ei/HI72zlpQU19GPaQ5DdqwsBsYj6lbFhVkHW2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:99:bd:f1:71:b5:cd:7a:2e:0f:f2:8a:04:0c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Mar 1 18:01:03 2026 GMT
Not After : Mar 2 18:01:03 2026 GMT
Subject: CN=4fc932d5a9409565ed851f4e5a88c5d11fe944c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7e:f1:e2:72:3c:c3:88:1a:b1:97:3a:5f:51:
be:59:91:9a:8c:60:8f:5f:74:6f:bc:96:64:07:66:
91:02:5f:d8:b7:16:fa:a1:aa:e6:44:12:e2:55:2e:
fa:71:be:b0:bd:ab:f3:90:f4:3b:9c:a9:6f:2d:97:
55:f7:55:d9:cb:b7:c1:36:64:9a:b0:03:a9:7b:f6:
74:8b:ce:4e:d0:62:22:63:02:dc:98:dc:dd:38:cd:
b1:b8:a2:1c:f5:59:c3:a6:82:ac:ca:ec:5c:d7:2f:
69:49:10:47:62:ee:3c:43:56:d0:9c:f0:85:7e:0d:
22:11:99:03:c1:80:bc:c9:97:c6:20:29:03:2b:9a:
81:b0:ca:b6:0b:58:fe:55:58:80:72:71:0d:65:f9:
ff:fa:a6:a5:81:ea:bf:0a:5f:e4:cf:7c:be:1f:35:
fa:e0:7b:69:69:09:e9:2a:eb:ca:02:c2:d8:31:28:
59:af:e5:36:8a:83:d6:10:77:cc:f5:d2:0f:23:a8:
29:2f:f1:d2:69:9c:d9:ee:24:98:97:d3:8b:2c:ee:
0b:0d:51:8a:a1:60:74:8e:41:74:24:0d:3d:18:a5:
62:66:e9:01:78:b1:d3:68:c6:2b:8e:dd:00:71:a6:
f6:a7:a0:4d:be:9d:e7:74:12:18:6d:5f:b4:69:03:
32:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C9:32:D5:A9:40:95:65:ED:85:1F:4E:5A:88:C5:D1:1F:E9:44:C8
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:36:80:3b:b9:6a:ad:65:0d:24:12:f3:55:55:97:63:92:fd:
f6:1f:d4:f7:5b:3b:33:f0:c6:cf:c9:05:a2:c5:50:2d:b3:d3:
33:2b:81:39:91:2d:76:72:eb:e1:34:d4:ad:6c:7b:f5:91:80:
c8:02:72:ac:7c:35:48:56:17:1e:11:38:d4:5b:64:b4:d7:ba:
f1:b8:3b:1c:3c:ff:9c:ee:eb:fe:56:bd:fd:70:ed:b0:c9:97:
34:9e:30:6e:69:29:dc:da:62:47:94:96:fa:83:5e:74:b8:bd:
cb:7d:4f:0c:c0:36:bb:eb:e2:2a:0c:5c:94:7d:c4:4f:64:3c:
93:7a:e2:bc:01:de:92:00:9b:7d:a0:64:93:85:6f:59:e0:92:
c6:6b:e5:ab:02:40:ad:2b:61:0a:5f:1c:7f:e8:21:c2:90:82:
c9:bf:3c:eb:61:e5:d2:11:f2:ae:71:6f:dd:0e:eb:a7:93:8b:
13:40:23:96:44:a1:5d:5a:28:b6:0e:aa:46:ad:c3:b6:9b:71:
0c:4e:29:57:7c:d9:2a:eb:b4:98:6f:e9:05:a5:fe:7a:33:fa:
d4:14:33:22:fe:4a:5d:6a:a8:51:0e:05:12:04:12:7d:a1:b0:
1c:0c:45:ff:7d:68:fe:8e:b8:1e:18:46:56:d5:bf:ac:d3:73:
56:83:aa:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:43:51 2026 by rpki-client