Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
File: AoT9lBz3spS4gudNsPyXFnQ02rw.mft (raw, json)
Hash identifier: zhv6QoLlT3UDFdQerVbWMmQdk3slnNOHiVRMCJ5VIa4=
Subject key identifier: 21:FC:4F:4F:56:36:63:15:9B:05:49:E2:36:4D:09:FC:38:B6:EB:9D
Authority key identifier: 02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
Certificate issuer: /CN=0284fd941cf7b294b882e74db0fc97167434dabc
Certificate serial: 019CADFE0EED47B64CCA26BE5166AC655D49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
Manifest number: 22
Signing time: Mon 02 Mar 2026 10:00:34 +0000
Manifest this update: Mon 02 Mar 2026 10:00:34 +0000
Manifest next update: Tue 03 Mar 2026 10:00:34 +0000
Files and hashes: 1: AoT9lBz3spS4gudNsPyXFnQ02rw.crl (hash: 28nC48UaaSv0n8JqshQ0ft5+8OdCWuUe9R9ECI+oWto=)
2: KWX40V7o8A6zMkKoIGkCmwKYmr0.roa (hash: nJ0kf2dRdOxQXbxBLcQMmLtNRpU/yw5QdnU4YcpxOtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:0e:ed:47:b6:4c:ca:26:be:51:66:ac:65:5d:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0284fd941cf7b294b882e74db0fc97167434dabc
Validity
Not Before: Mar 2 10:00:34 2026 GMT
Not After : Mar 3 10:00:34 2026 GMT
Subject: CN=21fc4f4f563663159b0549e2364d09fc38b6eb9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:99:88:6c:e2:b3:6d:74:93:1d:09:ed:e6:fc:
56:91:03:f5:6d:85:fb:c1:35:2b:65:3f:03:ac:bf:
eb:15:eb:85:10:f8:28:b2:89:4e:ce:3b:69:e0:a4:
5e:86:9f:66:8c:71:ba:7b:8d:06:9f:bc:ef:0e:29:
b0:71:74:a0:18:92:0a:55:b6:30:4a:dc:39:4d:9c:
6d:20:fe:4f:a6:47:64:66:17:a2:09:6d:80:9d:cd:
69:71:a6:e7:b8:d2:85:15:97:e3:1f:94:06:49:d3:
f9:77:fe:de:6b:18:b0:c0:98:e7:5c:90:c3:50:a5:
49:74:dc:66:ae:f3:f2:1d:62:56:36:84:93:39:6d:
1b:4a:e8:9a:de:fe:d2:af:0d:79:cd:6d:84:c9:cf:
45:cc:85:1f:35:f8:62:24:68:ba:44:2d:01:15:8a:
56:d0:45:9f:be:f7:a7:d1:60:2a:f0:90:5c:db:97:
bf:69:c3:cf:bd:62:7c:22:b4:18:31:f7:9c:05:d9:
15:54:3a:fb:58:16:3b:cd:0a:ed:b1:f8:58:97:c5:
6f:74:6e:20:09:55:5d:21:c6:d8:a1:eb:ff:89:7a:
24:91:af:2e:c7:ea:1a:07:cd:37:ff:1f:70:92:45:
b9:75:7d:11:b5:ab:ff:60:0e:c8:8e:93:22:74:95:
2d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FC:4F:4F:56:36:63:15:9B:05:49:E2:36:4D:09:FC:38:B6:EB:9D
X509v3 Authority Key Identifier:
keyid:02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d6:8c:05:23:e0:97:e3:24:0f:4f:14:51:14:92:dd:2c:84:
e2:62:e1:6b:b7:8e:a6:8a:db:05:39:ff:23:59:3f:31:7c:67:
54:f3:19:4b:98:99:94:dc:f0:34:cc:b4:a9:b6:fe:1a:b1:f0:
d4:73:5b:b7:75:b0:43:cf:19:03:25:7d:18:4a:3f:a0:9b:3b:
95:4d:c0:45:8c:64:03:cc:b1:89:25:fa:9d:da:9f:c0:e8:f2:
8a:30:47:b4:7e:2b:92:2e:d8:12:5b:48:1c:1f:09:18:7a:f4:
9a:fa:25:4a:8e:ed:61:12:ee:a3:98:4d:5a:40:bc:7d:96:fd:
ed:1c:a1:50:62:77:a5:b8:da:3e:9f:4a:35:1b:5a:69:43:a4:
2c:bf:19:a1:cf:08:c8:50:f0:d8:73:2b:b3:84:fe:cf:a4:0a:
25:68:fd:af:7e:07:b5:79:61:39:9d:37:0a:fd:18:ef:d2:9f:
58:6c:32:93:bb:38:2c:d0:1c:34:a6:eb:ff:68:97:93:5c:c7:
31:33:dc:76:b1:45:77:00:c1:89:68:3e:bc:3c:6b:6d:b0:77:
c5:ef:e4:11:ef:24:8b:f0:27:62:48:b6:61:8c:64:28:16:87:
8b:99:ca:94:33:16:79:d6:af:a5:6e:22:84:a8:d4:19:58:29:
d9:ad:db:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:46:17 2026 by rpki-client