Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
File: aWZ-UauBVWetZ8u10biJY4Nfqfc.mft (raw, json)
Hash identifier: pmIGixbxffyhVZLXTfFjqGTSGeU7zQpmAcUmoWoyoXM=
Subject key identifier: 67:1D:FF:70:6C:EA:D7:04:D3:C1:94:45:1F:D5:09:97:F0:09:4B:6E
Authority key identifier: 69:66:7E:51:AB:81:55:67:AD:67:CB:B5:D1:B8:89:63:83:5F:A9:F7
Certificate issuer: /CN=69667e51ab815567ad67cbb5d1b88963835fa9f7
Certificate serial: 019D9AE2AF7DAC81EF0B70D5842F2C8A9514
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
Manifest number: 1022
Signing time: Fri 17 Apr 2026 10:00:40 +0000
Manifest this update: Fri 17 Apr 2026 10:00:40 +0000
Manifest next update: Sat 18 Apr 2026 10:00:40 +0000
Files and hashes: 1: aWZ-UauBVWetZ8u10biJY4Nfqfc.crl (hash: 0udZ0wLOVf4fTPeTrt24nuDkJ0JXclOZpd2qtdDTcT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:af:7d:ac:81:ef:0b:70:d5:84:2f:2c:8a:95:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69667e51ab815567ad67cbb5d1b88963835fa9f7
Validity
Not Before: Apr 17 10:00:40 2026 GMT
Not After : Apr 18 10:00:40 2026 GMT
Subject: CN=671dff706cead704d3c194451fd50997f0094b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:af:12:d0:e5:2e:8b:21:bd:05:e6:cf:37:08:
4c:a7:0e:da:89:6a:86:31:a8:93:fb:cb:54:59:00:
6e:cd:e3:a2:87:b3:ac:20:71:44:5c:fb:8f:48:d7:
96:f0:3c:54:5f:f6:ed:34:f2:4e:41:d4:8a:8c:3d:
39:14:2f:54:c0:76:3a:0f:cc:11:06:bc:b9:e1:d4:
19:f5:0c:ab:d2:b7:6f:9c:cc:bc:77:54:7b:0f:f5:
fd:82:2c:ad:fa:d8:70:18:da:f9:e0:f2:3c:50:d1:
ac:90:83:15:af:af:28:ce:fb:50:99:ea:7a:56:04:
ea:14:a8:c9:99:77:76:0d:c0:8b:43:ec:b9:88:6e:
9d:df:16:b4:83:8d:8a:1c:a2:b9:90:9b:44:48:10:
7b:6f:7f:74:b1:bf:18:e6:6b:84:17:7d:29:e0:16:
e3:b1:be:aa:38:53:e7:91:35:01:69:0b:3d:14:6e:
ff:a1:96:f9:6f:0c:1a:b3:54:97:a4:e1:b4:7c:01:
e8:42:07:04:d2:4d:78:72:91:0c:12:79:78:49:0c:
70:18:22:9b:97:7e:28:d1:5e:08:5e:43:e7:aa:a0:
54:fc:98:71:21:5c:88:5a:9c:a1:9c:25:46:a1:53:
23:45:d0:35:16:1b:a9:fb:7d:bb:a1:66:3d:20:cd:
a3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1D:FF:70:6C:EA:D7:04:D3:C1:94:45:1F:D5:09:97:F0:09:4B:6E
X509v3 Authority Key Identifier:
keyid:69:66:7E:51:AB:81:55:67:AD:67:CB:B5:D1:B8:89:63:83:5F:A9:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:3f:11:45:92:8c:e0:e4:bd:df:22:c6:e4:e4:af:b5:fa:9f:
de:6e:58:59:99:17:36:03:9c:c5:52:13:08:cc:59:44:15:88:
a1:32:6e:eb:e0:3a:d9:79:d7:51:00:b9:e5:46:39:67:51:62:
73:df:ca:b5:aa:5f:be:2f:bb:b5:d3:0c:0c:4e:b7:e3:dc:7b:
be:50:e9:3b:6b:a1:28:bb:5f:38:db:25:54:8d:f8:0c:f6:72:
61:60:7d:44:6a:8a:7b:77:c7:34:36:1a:ba:85:a4:5c:d9:d8:
0b:2c:f9:f5:12:9c:6c:de:b4:79:50:d0:27:de:19:ba:d0:55:
9d:9f:fc:b0:45:ca:c6:57:de:e9:50:ea:d8:22:ce:8c:68:7e:
d8:d0:ba:d1:63:4f:f6:7d:fd:db:a3:05:95:be:77:9e:c2:ee:
0b:19:2d:da:3c:5f:ca:bd:fc:0c:ef:49:d5:6a:47:41:3a:20:
a8:90:b6:f4:5f:12:2b:68:d6:3d:c2:b1:d1:c6:6a:5f:63:54:
ad:c6:45:c4:9b:64:35:ef:be:0f:8d:cf:6b:9a:80:ce:b3:c3:
d5:60:23:b2:18:fa:fa:b4:5e:50:10:6d:7d:1b:95:c5:be:1f:
98:40:7d:ae:ac:1b:21:83:c6:a4:25:2c:89:67:dd:5b:05:cc:
07:0b:38:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:07:12 2026 by rpki-client