Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
File: o52_aHirAKRS-LB_iQ06s0g3Yns.mft (raw, json)
Hash identifier: VSKS5xduhF9qmj+x3JufhSjdGgJe+JCWtPVzonABukA=
Subject key identifier: FF:03:3B:D9:95:62:74:4B:C4:FB:8D:86:C6:46:B9:3C:B7:05:BC:AC
Authority key identifier: A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
Certificate issuer: /CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Certificate serial: 019CABD98180AA6182DFB139583B93A6AF66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
Manifest number: 070A
Signing time: Mon 02 Mar 2026 00:01:24 +0000
Manifest this update: Mon 02 Mar 2026 00:01:24 +0000
Manifest next update: Tue 03 Mar 2026 00:01:24 +0000
Files and hashes: 1: irICw9k54gxIc6MwAFiIdqi5VAM.roa (hash: cVexCvCqPHrx0mmIhLbiS62tGFKhVl04e+CAM0DmAGQ=)
2: o52_aHirAKRS-LB_iQ06s0g3Yns.crl (hash: ZvxqYxqRaiwjh/XfyGcbivczcoV6bOfcolZTneFuCxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:81:80:aa:61:82:df:b1:39:58:3b:93:a6:af:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Validity
Not Before: Mar 2 00:01:24 2026 GMT
Not After : Mar 3 00:01:24 2026 GMT
Subject: CN=ff033bd99562744bc4fb8d86c646b93cb705bcac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:29:7c:66:18:bb:f5:b6:a5:8c:80:82:2b:d7:
5d:aa:16:dd:dd:02:93:43:fc:62:46:8e:ca:3c:2b:
23:27:30:96:43:71:a6:28:8c:f0:71:e8:94:00:d3:
9d:de:30:59:f2:eb:95:50:1b:84:a1:03:32:9a:0e:
4c:9d:ea:12:0c:04:ab:06:99:da:07:d9:81:17:4c:
89:54:18:a3:22:2d:d6:cb:71:43:14:01:c8:d1:9a:
fd:3b:e0:eb:41:2f:1d:f4:d4:69:11:d4:06:22:c6:
26:c2:ed:f5:a0:9c:c6:25:fa:ba:3a:38:fa:b8:97:
60:f4:84:30:81:7f:ab:f1:5a:11:e6:b1:69:42:90:
c1:98:9d:93:c4:3b:d7:d9:57:41:75:31:ba:44:f1:
d0:5f:20:83:79:7a:12:d9:24:4e:00:27:f1:08:94:
a1:2b:03:ae:eb:6e:73:07:e7:70:45:d5:52:02:a4:
90:5c:d4:9d:6f:84:bf:20:9c:48:5c:bc:e5:50:a7:
66:e3:7e:58:93:17:e6:e9:d8:24:31:20:0a:00:99:
ad:4b:6f:1e:57:35:8d:47:1b:8e:ee:75:66:87:07:
d3:bd:ec:33:f5:69:30:fd:1d:23:0c:d8:80:ca:5e:
2c:9a:85:f8:02:1f:e8:28:8f:eb:6e:6a:fe:cb:e2:
b9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:03:3B:D9:95:62:74:4B:C4:FB:8D:86:C6:46:B9:3C:B7:05:BC:AC
X509v3 Authority Key Identifier:
keyid:A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:7b:50:54:87:53:22:eb:f8:ba:ae:eb:e4:83:2a:11:43:c4:
25:44:4d:b1:2b:32:99:88:0d:13:7a:f2:64:18:6f:57:d6:9c:
e1:81:ab:d0:d8:38:54:57:0c:ee:ec:c6:76:c0:be:f6:91:1b:
39:71:44:75:18:1e:c7:58:77:57:4d:bf:22:b3:c6:87:db:2c:
35:c5:1b:15:e7:92:cb:32:c4:e5:e6:9a:e0:65:ce:f8:04:dd:
5e:e1:cf:42:fe:1e:a6:da:ad:7f:8e:d4:bd:17:de:2a:e4:ff:
55:18:ae:4c:ef:a0:ad:30:5d:31:8d:ef:e5:93:77:59:23:e5:
f2:0e:63:bd:16:e5:10:ab:c6:93:f3:a9:cd:d5:76:cb:99:5e:
c5:4d:46:a2:a6:f2:4f:4f:79:1b:8d:77:c8:1d:95:01:62:d1:
0e:be:80:a0:56:cb:7f:e4:c0:b3:75:51:6e:86:68:ce:ba:f7:
06:05:1c:9d:d6:22:1a:20:3a:8d:47:b3:f9:85:5c:41:8d:6b:
24:7f:e9:df:e7:f2:fe:8e:fe:95:f7:ea:00:c6:73:a8:31:6c:
2d:ff:07:68:9f:c0:36:66:c2:1f:49:25:4e:6b:4a:80:8e:b3:
31:bd:87:90:72:d1:f8:ad:41:99:07:13:74:37:e4:28:1c:5d:
49:3d:0d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:10:53 2026 by rpki-client