Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
File: AoT9lBz3spS4gudNsPyXFnQ02rw.mft (raw, json)
Hash identifier: mZjla6p3aX3nzEOHW4HyGoCUNbi56xBx+nZqQYuXDYU=
Subject key identifier: 6C:EA:A2:A6:6E:EC:6B:39:B8:92:68:C2:5F:B4:9A:BF:60:64:54:4E
Authority key identifier: 02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
Certificate issuer: /CN=0284fd941cf7b294b882e74db0fc97167434dabc
Certificate serial: 019DA52FD99ED4FB7365A5D021AE5F8C4F68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
Manifest number: A2
Signing time: Sun 19 Apr 2026 10:01:09 +0000
Manifest this update: Sun 19 Apr 2026 10:01:09 +0000
Manifest next update: Mon 20 Apr 2026 10:01:09 +0000
Files and hashes: 1: AoT9lBz3spS4gudNsPyXFnQ02rw.crl (hash: SXqL3bygqO/G+ZPJ/gYnGz/crVgMW95s/9+nvVL8zIY=)
2: KWX40V7o8A6zMkKoIGkCmwKYmr0.roa (hash: nJ0kf2dRdOxQXbxBLcQMmLtNRpU/yw5QdnU4YcpxOtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:d9:9e:d4:fb:73:65:a5:d0:21:ae:5f:8c:4f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0284fd941cf7b294b882e74db0fc97167434dabc
Validity
Not Before: Apr 19 10:01:09 2026 GMT
Not After : Apr 20 10:01:09 2026 GMT
Subject: CN=6ceaa2a66eec6b39b89268c25fb49abf6064544e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:da:1c:ea:c4:44:1a:9a:00:62:02:51:41:bb:
80:0a:26:dc:7f:28:f4:fa:bb:46:72:33:40:12:e7:
03:54:e4:77:a1:86:bd:d0:f3:ee:74:1c:24:0b:0a:
94:59:2f:98:6c:6d:09:98:54:de:12:5f:76:0a:9a:
e1:d2:cb:97:61:c4:01:18:8c:64:59:04:a4:b1:5a:
ac:c7:f7:a7:52:f1:41:78:64:f8:8c:31:ba:7a:7a:
6b:24:b0:f9:c2:40:7b:99:2e:f0:3e:37:1e:e5:42:
2d:64:e4:ac:54:7f:d3:32:1e:8e:4e:4c:4a:da:5e:
71:b3:e7:73:50:3d:b1:1f:23:82:30:bc:66:7a:99:
d1:98:7b:04:14:dd:a6:c1:a1:bc:ed:7c:ec:7e:c7:
09:44:7d:32:da:c0:1e:4c:46:c5:f6:9d:8b:e9:49:
4f:87:ac:7e:ce:fb:ac:a3:1a:d2:5b:ce:c2:0f:d3:
e3:a5:56:64:af:3f:d7:5a:d1:9e:a3:b9:04:53:13:
0b:ee:b9:da:d1:1c:16:cf:e9:75:5f:5c:d9:fd:e9:
c2:2a:47:68:f0:52:16:55:8f:29:e1:2b:20:7d:c0:
05:06:f4:4a:b9:6a:77:b7:2e:14:7f:7e:59:56:de:
37:e3:fd:3c:df:42:14:c9:b3:8d:17:d1:3d:12:0f:
16:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EA:A2:A6:6E:EC:6B:39:B8:92:68:C2:5F:B4:9A:BF:60:64:54:4E
X509v3 Authority Key Identifier:
keyid:02:84:FD:94:1C:F7:B2:94:B8:82:E7:4D:B0:FC:97:16:74:34:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoT9lBz3spS4gudNsPyXFnQ02rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9f3205-52e9-46a4-b6c2-c703522488f9/1/AoT9lBz3spS4gudNsPyXFnQ02rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:ba:42:94:8a:e1:23:df:7f:43:f7:36:bd:9b:48:ab:d3:87:
d9:56:43:d7:64:84:10:8c:7e:6b:6a:2e:88:e8:d7:7c:4a:23:
7a:14:02:29:c8:7d:22:23:8b:09:ad:22:84:d5:b0:ee:b0:89:
9a:87:3e:d9:2a:e8:36:b2:9d:9e:94:9f:91:60:2b:28:76:a4:
00:67:37:71:c7:75:e2:9a:f6:1e:e6:8e:87:c2:d7:6d:25:3e:
4d:30:8a:db:af:5c:0f:4d:87:46:d8:fa:4c:e3:02:45:62:ed:
52:be:a8:87:38:58:06:d6:4f:ca:23:54:31:50:4e:fe:9d:07:
4d:0d:64:d9:4b:0f:d1:1d:d1:ae:53:c3:b9:7d:ef:ac:26:02:
fc:e7:27:4e:cf:79:90:96:58:b6:90:86:fa:11:72:b8:04:76:
d6:e3:ae:67:fa:db:62:59:39:08:e2:98:99:4b:36:7d:ed:e8:
f9:cb:10:74:59:1b:77:df:52:05:3f:b9:53:f5:6c:23:69:e9:
71:11:e9:7b:30:36:7f:00:80:68:b3:4e:2d:66:a3:fc:ce:6a:
d5:bd:67:07:22:ae:30:97:4a:e5:78:ad:85:97:89:20:3a:b8:
ce:38:05:67:ed:00:a9:bf:4e:5e:f1:c5:e3:3f:db:2c:4d:36:
a5:46:92:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 18:08:54 2026 by rpki-client