Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
File: A1KD5iNe2yXotUdJtihfXj74U3E.mft (raw, json)
Hash identifier: KZ8uN7ewaTwUMUgsh6NiQzS9ob0T2/Fra/8uJ0ZKSVw=
Subject key identifier: 9C:B9:53:62:9B:75:2D:CA:F6:D6:98:DB:E7:21:36:1D:DF:3D:58:52
Authority key identifier: 03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
Certificate issuer: /CN=035283e6235edb25e8b54749b6285f5e3ef85371
Certificate serial: 019CAE6BD5ECF7B91B5A6DB765F5E472F905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
Manifest number: 0396
Signing time: Mon 02 Mar 2026 12:00:28 +0000
Manifest this update: Mon 02 Mar 2026 12:00:28 +0000
Manifest next update: Tue 03 Mar 2026 12:00:28 +0000
Files and hashes: 1: A1KD5iNe2yXotUdJtihfXj74U3E.crl (hash: IDr7qoYkPcfGAHtYXjGVPrrhhdu4cJG0KLHLpWCZXWI=)
2: yX9ydvOKgI9DtKgtlG1m9Fn2ZI8.roa (hash: qPtAu4bwy3Juh5so6bwqIDZWhOQpRsegMYoucr8NrwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6b:d5:ec:f7:b9:1b:5a:6d:b7:65:f5:e4:72:f9:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035283e6235edb25e8b54749b6285f5e3ef85371
Validity
Not Before: Mar 2 12:00:28 2026 GMT
Not After : Mar 3 12:00:28 2026 GMT
Subject: CN=9cb953629b752dcaf6d698dbe721361ddf3d5852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:07:5c:c0:8a:52:53:56:77:df:51:bf:17:11:
6d:21:7b:81:0d:10:17:72:57:67:4f:4b:87:14:51:
3c:b8:e8:81:6e:f2:41:73:50:dc:c2:37:40:f8:2e:
8a:cf:45:0b:ef:9a:4b:0c:d4:c7:9b:a6:3f:1a:07:
c5:b1:c5:ab:96:b0:0f:eb:34:0a:ed:79:28:2e:b2:
33:82:90:74:18:be:2a:07:cf:80:54:26:34:40:eb:
91:3e:d4:56:e8:83:a0:66:2b:98:08:c9:9e:75:9c:
d1:39:c2:a3:59:e2:a1:f1:fa:57:94:28:85:3b:58:
62:b9:23:60:32:04:d1:e5:3e:eb:4b:4b:f1:f9:4b:
b2:f9:11:32:9f:1c:3c:90:81:70:85:94:c5:22:1f:
ae:84:df:bf:e3:26:38:72:21:27:1f:7a:92:12:10:
42:62:4a:2d:3d:25:06:f6:8d:09:49:d9:cb:cc:47:
ed:94:f8:d4:29:01:e0:bd:32:0b:76:c2:09:d4:28:
7c:4b:00:bb:6a:83:86:80:0f:33:7d:d0:be:2d:28:
f7:fb:c9:12:d0:73:1c:7a:40:be:b1:a3:d8:1d:a4:
b6:d2:9d:85:c3:17:6b:23:4b:a9:d8:18:72:20:c5:
a1:84:c5:29:3e:58:92:51:91:8b:9b:4a:7f:01:25:
e9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B9:53:62:9B:75:2D:CA:F6:D6:98:DB:E7:21:36:1D:DF:3D:58:52
X509v3 Authority Key Identifier:
keyid:03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:97:e7:c6:60:11:65:61:c6:46:94:1b:ab:b3:45:9d:15:2b:
58:a4:c8:47:9a:d1:cf:4c:96:66:57:ff:86:65:b5:64:b2:75:
33:82:d4:46:7e:d6:62:55:d9:b1:0d:d1:1f:23:af:0d:b3:7c:
b4:1e:de:8c:27:b6:32:9e:64:09:a9:0e:f6:99:7f:a2:f1:14:
dd:3b:4f:d3:64:89:24:a6:ab:06:58:98:8b:25:a2:63:07:de:
82:16:d0:ad:57:fa:f6:cd:53:3e:41:de:2f:d2:9e:fb:13:20:
10:16:fe:b4:cc:5b:96:29:d6:13:03:d5:4e:f6:68:5b:d1:d4:
29:a2:f0:53:88:95:e4:6f:7e:25:3b:71:b4:9b:e0:9c:1b:15:
54:94:a6:4e:20:83:11:ad:83:de:bf:39:99:bd:9b:88:27:8a:
63:f9:0f:53:78:c8:b9:95:3f:bf:d4:74:74:23:e2:af:51:89:
58:2d:da:39:c8:7a:e3:10:9c:bf:77:c9:15:29:37:19:27:b1:
fd:15:97:7f:22:a7:b9:92:bf:20:d4:9a:87:62:de:97:99:69:
50:aa:a1:b2:f5:65:78:67:f3:4a:50:63:88:1b:12:16:42:29:
14:13:69:9e:4a:40:bf:ef:36:1e:f2:d7:c4:23:6a:ec:ae:15:
16:af:02:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:13:09 2026 by rpki-client