Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
File: AozMjYF4yenS_8Uy_LXNaL6qd20.mft (raw, json)
Hash identifier: QH4W422ri4tGlpmD94GyQK/Vfor/36rV4HqGd106j0I=
Subject key identifier: B2:80:9A:EE:73:72:37:06:DE:88:4F:54:AC:4E:11:CA:63:27:CB:51
Authority key identifier: 02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
Certificate issuer: /CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Certificate serial: 019CAF487CF2E34440658251CB45984443B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
Manifest number: 0291
Signing time: Mon 02 Mar 2026 16:01:29 +0000
Manifest this update: Mon 02 Mar 2026 16:01:29 +0000
Manifest next update: Tue 03 Mar 2026 16:01:29 +0000
Files and hashes: 1: AozMjYF4yenS_8Uy_LXNaL6qd20.crl (hash: DDpKPmMjRD9jwdZt6+tBjyMeqzSY/k2ipmHFe+gXa90=)
2: nmpgPMBFt9dLqNX0M81_MpAwEgA.roa (hash: 4RQmSgy56Vqmok8SF0GYYTjto7wxmhh7LR4/RfXSDMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:48:7c:f2:e3:44:40:65:82:51:cb:45:98:44:43:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Validity
Not Before: Mar 2 16:01:29 2026 GMT
Not After : Mar 3 16:01:29 2026 GMT
Subject: CN=b2809aee73723706de884f54ac4e11ca6327cb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:07:a2:a5:89:c7:3a:a6:be:13:36:f8:8e:a2:
90:5f:30:4d:3b:b4:e3:8d:78:51:7c:9c:10:60:3d:
e7:f9:38:42:b7:9a:9d:85:55:05:51:a9:17:cb:9e:
67:51:b4:02:0e:9c:b8:31:7b:d0:cc:74:c3:65:23:
6b:ef:17:42:22:19:45:d1:0c:8e:83:b7:28:ef:ae:
0c:c7:96:16:cf:cd:66:1d:97:6b:9d:5b:84:5a:2c:
52:ee:b6:5d:c0:da:26:ef:af:08:07:ba:d9:a7:90:
b9:bb:9a:e1:c0:87:6c:07:30:f3:c3:61:0e:70:64:
71:83:09:54:fc:d5:4d:c5:0f:fa:50:9d:63:87:a9:
96:fa:2e:78:69:88:5c:cb:c6:b9:1a:43:aa:d4:55:
ff:89:b6:49:5e:2e:bb:16:38:db:3d:cd:63:54:df:
ef:b9:5f:d8:f5:ba:0f:37:87:ec:2b:c9:df:72:17:
4a:f6:3b:00:29:1d:87:f0:e7:26:73:2e:2d:72:8f:
6c:36:33:f0:d8:c5:ed:34:68:05:77:52:5b:da:22:
f2:bf:ba:e3:a7:b5:cd:86:ce:23:cb:23:28:f6:56:
5e:d1:d5:2c:5d:eb:67:fc:7a:9d:4e:ed:b9:e5:43:
13:d7:35:d6:36:1c:8b:a5:be:18:b6:f5:2d:ed:3e:
65:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:80:9A:EE:73:72:37:06:DE:88:4F:54:AC:4E:11:CA:63:27:CB:51
X509v3 Authority Key Identifier:
keyid:02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:7d:97:72:23:6e:3e:b3:20:b8:9f:45:91:82:a6:92:b5:ea:
6c:d9:ce:e7:37:19:a7:d0:68:46:de:ac:88:97:59:11:4a:14:
98:7d:d6:0f:7b:80:49:29:78:63:ae:78:59:0f:ad:cf:ff:54:
25:69:fc:e1:a7:da:6c:de:7e:fe:b3:e5:fa:36:7a:11:06:66:
a7:f1:c8:e1:9f:f5:c1:76:08:e0:76:3e:fa:9e:18:a3:54:a7:
bf:ec:30:a9:42:bf:19:4b:c0:b1:f1:28:30:89:a4:5a:79:13:
e2:2e:32:3c:fc:cd:e5:c9:96:38:73:1c:0e:e0:33:78:91:c1:
81:a7:be:26:d0:bb:37:cc:36:1e:74:04:7e:04:01:0f:c9:cf:
76:45:4d:fd:dd:8d:87:ae:92:c6:06:e7:f2:b7:24:15:09:08:
6d:e2:8b:87:51:74:c2:c4:04:c1:72:a4:26:d0:9e:b4:be:9f:
3e:fe:92:cf:ff:f0:4d:40:80:66:bd:e9:78:a2:56:e8:30:c2:
b3:47:fb:ba:ff:bc:bc:41:d2:32:47:d7:04:6a:93:f5:3c:09:
d5:67:c9:9d:d5:fd:de:bb:c0:d5:a2:a9:78:ff:8f:92:40:7e:
91:0f:f3:d0:05:1c:aa:b2:ef:82:d8:d9:7a:96:02:cc:f2:4f:
30:20:15:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 00:06:13 2026 by rpki-client