Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
File: AoT9lBz3spS4gudNsPyXFnQ02rw.mft (raw, json)
Hash identifier: xheeF7uSClRsfO/l3SBizALgkF9Ug8wqQWarlTz3Nq0=
Subject key identifier: D1:80:0E:BF:7D:BA:22:15:58:33:83:1A:67:98:0C:0D:22:A5:F4:D2
Authority key identifier: 02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
Certificate issuer: /CN=0284fd941cf7b294b882e74db0fc97167434dabc
Certificate serial: 019EC300D9717008873284877B576518A9C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
Manifest number: 0136
Signing time: Sat 13 Jun 2026 22:01:13 +0000
Manifest this update: Sat 13 Jun 2026 22:01:13 +0000
Manifest next update: Sun 14 Jun 2026 22:01:13 +0000
Files and hashes: 1: AoT9lBz3spS4gudNsPyXFnQ02rw.crl (hash: /vsve8n3fDpfTZ7rCMakRg8/raB4wZSslo2x3VLh180=)
2: KWX40V7o8A6zMkKoIGkCmwKYmr0.roa (hash: nJ0kf2dRdOxQXbxBLcQMmLtNRpU/yw5QdnU4YcpxOtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 22:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:d9:71:70:08:87:32:84:87:7b:57:65:18:a9:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0284fd941cf7b294b882e74db0fc97167434dabc
Validity
Not Before: Jun 13 22:01:13 2026 GMT
Not After : Jun 14 22:01:13 2026 GMT
Subject: CN=d1800ebf7dba22155833831a67980c0d22a5f4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ab:d4:a0:a3:8d:bb:dc:3c:ed:86:16:43:44:
08:52:17:34:41:46:d0:eb:a6:55:b1:f1:23:12:57:
a2:28:ee:12:af:0a:5c:a5:6e:35:e8:3a:74:3f:d1:
ee:4a:9b:90:57:31:a8:10:61:ef:b0:38:be:9e:0f:
d1:19:dd:ff:26:87:7b:51:91:e9:6e:ab:56:ea:38:
5a:46:1d:3b:6f:de:68:7c:e0:01:46:ab:d5:4f:6e:
6b:87:e4:2a:b6:5e:86:9a:19:69:d3:76:94:00:74:
31:18:d4:7c:5a:39:43:ac:51:41:62:a2:2d:cf:94:
bb:e7:ec:96:89:0b:c5:af:13:9d:6d:3a:eb:e5:0f:
12:82:fc:89:79:00:ac:d1:58:bb:a7:ce:fb:78:9e:
0b:2d:d6:ee:d0:32:61:a6:0b:c4:bc:08:86:9c:79:
2a:66:16:5b:d8:04:06:df:6c:39:33:66:fb:7d:8a:
4e:89:75:46:bb:3a:42:20:98:22:c7:e9:2f:a5:3b:
c6:df:d7:bc:78:e7:b0:e1:d2:5e:6c:cb:ae:49:93:
8a:15:d4:44:e8:87:8b:48:1e:be:a3:f8:72:99:b1:
46:e9:ea:29:80:32:60:3a:e5:de:a8:fd:14:2e:9e:
9c:d8:7b:c0:b4:44:73:15:a3:93:f7:ed:69:e6:c0:
27:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:80:0E:BF:7D:BA:22:15:58:33:83:1A:67:98:0C:0D:22:A5:F4:D2
X509v3 Authority Key Identifier:
keyid:02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:65:c2:ab:5d:2e:43:54:20:6d:7d:68:dc:e8:b4:90:f8:b1:
cb:d7:c8:58:f3:b2:1f:45:58:ed:45:7d:f1:67:f3:3f:23:ce:
12:0b:c8:3e:fc:a9:60:73:27:88:68:c8:47:49:b1:0c:f4:71:
1f:03:15:bb:ff:3c:6b:57:2e:35:29:86:4c:a3:dc:9a:4f:64:
29:09:b2:17:de:94:85:3e:6c:c0:6f:a5:a1:b4:99:7f:de:83:
38:ac:41:3f:08:4e:c6:72:56:dd:7a:6f:25:84:37:39:44:42:
a7:24:d9:8a:3e:41:83:10:d3:e4:5f:f1:d7:8a:20:61:01:b0:
e9:7f:35:2d:4a:e1:15:cf:4a:f7:09:20:96:26:b0:22:ec:eb:
7a:e8:49:25:8a:6f:ec:8e:01:ac:f2:47:02:72:89:e1:47:22:
38:87:19:10:19:e4:f6:f0:a3:89:f5:d4:2d:72:68:84:6a:dd:
4e:c7:89:d1:c0:f9:4f:95:e1:8c:68:68:7c:89:98:0a:44:89:
f0:2a:25:cb:8f:2e:5b:f8:83:eb:dc:75:04:00:ca:94:bf:4c:
63:00:e4:c4:69:d6:e0:8e:b3:65:d0:b3:bf:e1:2e:d6:11:82:
95:9c:dc:ed:14:15:6d:5f:8f:ff:d1:50:23:05:d9:6c:20:a4:
19:4f:4f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:10:27 2026 by rpki-client