Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
File: AozMjYF4yenS_8Uy_LXNaL6qd20.mft (raw, json)
Hash identifier: hfHF6jfEOKkNB/wAPCFFea6bfGERY3TWYd58RtpNZ8w=
Subject key identifier: 9E:EC:1B:8D:ED:97:CF:AB:BC:51:8A:E3:08:7E:E9:F3:F5:B0:30:F0
Authority key identifier: 02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
Certificate issuer: /CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Certificate serial: 019D9AE2D87F5F281D70AE0DABA3C073ACD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
Manifest number: 030B
Signing time: Fri 17 Apr 2026 10:00:50 +0000
Manifest this update: Fri 17 Apr 2026 10:00:50 +0000
Manifest next update: Sat 18 Apr 2026 10:00:50 +0000
Files and hashes: 1: AozMjYF4yenS_8Uy_LXNaL6qd20.crl (hash: VSgNyjr+67NX3omoHV04z3qDFOAB/4vOgN2iBQ42WXM=)
2: nmpgPMBFt9dLqNX0M81_MpAwEgA.roa (hash: 4RQmSgy56Vqmok8SF0GYYTjto7wxmhh7LR4/RfXSDMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:d8:7f:5f:28:1d:70:ae:0d:ab:a3:c0:73:ac:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d
Validity
Not Before: Apr 17 10:00:50 2026 GMT
Not After : Apr 18 10:00:50 2026 GMT
Subject: CN=9eec1b8ded97cfabbc518ae3087ee9f3f5b030f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:85:e3:c3:33:1b:2c:d2:36:0c:1f:2f:fe:5e:
7c:75:5d:3c:6e:48:6e:6a:50:58:20:2b:fb:95:ba:
49:9d:39:2e:f9:27:21:b0:03:6a:b7:79:05:97:be:
45:29:3f:97:af:93:05:93:a5:2f:67:d1:47:39:8f:
eb:cc:25:6d:56:d5:58:c2:fc:30:9d:cb:82:7a:fc:
be:ad:41:9a:47:43:5a:8f:6a:82:da:8a:ab:5a:7a:
83:ed:3d:4f:d0:49:6d:54:e0:30:7a:b4:fe:69:17:
cd:6c:83:35:49:43:bc:d5:f1:8e:4b:21:01:25:fe:
e0:23:3f:c6:4e:19:2f:64:70:70:f6:87:45:c8:02:
82:e5:07:c1:08:85:03:d6:af:c8:51:47:33:0e:0a:
7a:c1:b3:b3:28:3b:f1:f6:c5:47:ad:e8:ae:48:21:
d3:a6:66:88:53:71:ec:b3:f5:06:00:7f:e7:b3:dd:
22:ff:4a:e5:bc:92:72:98:d9:e0:0b:6e:ea:8f:36:
45:80:db:3e:f5:3b:ee:03:1a:f2:12:53:ba:9b:8f:
e6:de:72:7c:f4:6c:bf:14:8f:61:62:a5:73:77:a6:
88:15:dc:94:78:c6:bb:75:b1:ae:2b:f6:e5:d1:f7:
9e:8c:a9:91:a0:b0:b1:9b:ba:b0:c8:a2:27:b1:2c:
45:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EC:1B:8D:ED:97:CF:AB:BC:51:8A:E3:08:7E:E9:F3:F5:B0:30:F0
X509v3 Authority Key Identifier:
keyid:02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:19:30:a6:a4:6d:8e:24:04:87:0d:da:cf:68:af:c0:43:d1:
da:5d:08:9c:30:d8:c0:7f:b9:8b:79:30:83:9a:0e:0a:0c:56:
10:d3:cd:f0:7b:78:41:24:f0:fa:de:8b:d4:a3:fe:1c:5d:58:
c1:65:c5:30:e5:ee:18:82:cb:4e:f6:6f:8f:d6:72:59:76:bc:
d6:f5:80:05:06:e0:94:49:13:fe:58:be:cf:85:b8:28:be:5a:
4d:59:eb:79:19:f5:14:ea:69:54:14:4f:d9:18:b8:cf:de:b2:
50:da:23:8a:d5:05:c3:e6:6a:a4:30:ae:61:93:33:86:17:87:
a5:69:1e:9d:fa:13:50:48:da:a1:05:8e:91:62:35:12:b5:39:
6f:a1:41:15:29:c5:72:e4:f4:6f:1d:e2:58:62:b8:35:64:e7:
ee:de:11:bf:88:25:59:25:c8:34:56:ec:58:44:f7:b6:74:5d:
52:e1:67:1c:39:7d:dd:62:45:d2:9b:99:b0:0d:32:77:a8:28:
4a:1b:f9:72:31:d4:46:06:3e:c3:e1:9a:fb:5a:43:88:08:6c:
25:bf:cf:c9:fd:cb:6e:1a:af:c5:fa:ce:9c:9f:1f:28:19:d9:
58:ec:43:07:72:31:23:db:9c:65:13:29:2e:d1:3c:15:b4:bd:
ae:ec:c0:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4th/XygdcK4Nq6PAc6zXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOGNjYzhkODE3OGM5ZTlkMmZmYzUzMmZjYjVjZDY4YmVh
YTc3NmQwHhcNMjYwNDE3MTAwMDUwWhcNMjYwNDE4MTAwMDUwWjAzMTEwLwYDVQQD
Eyg5ZWVjMWI4ZGVkOTdjZmFiYmM1MThhZTMwODdlZTlmM2Y1YjAzMGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYXjwzMbLNI2DB8v/l58dV08bkhu
alBYICv7lbpJnTku+SchsANqt3kFl75FKT+Xr5MFk6UvZ9FHOY/rzCVtVtVYwvww
ncuCevy+rUGaR0Naj2qC2oqrWnqD7T1P0EltVOAwerT+aRfNbIM1SUO81fGOSyEB
Jf7gIz/GThkvZHBw9odFyAKC5QfBCIUD1q/IUUczDgp6wbOzKDvx9sVHreiuSCHT
pmaIU3Hss/UGAH/ns90i/0rlvJJymNngC27qjzZFgNs+9TvuAxryElO6m4/m3nJ8
9Gy/FI9hYqVzd6aIFdyUeMa7dbGuK/bl0feejKmRoLCxm7qwyKInsSxFIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ7sG43tl8+rvFGK4wh+6fP1sDDwMB8GA1UdIwQY
MBaAFAKMzI2BeMnp0v/FMvy1zWi+qndtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW96TWpZRjR5ZW5TXzhVeV9MWE5hTDZxZDIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9lNDY5NTEtOGZhNC00NWI2LTg3YmYt
NWE0YjdiNWU0MDA3LzEvQW96TWpZRjR5ZW5TXzhVeV9MWE5hTDZxZDIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC9lNDY5NTEtOGZhNC00NWI2LTg3YmYtNWE0YjdiNWU0MDA3
LzEvQW96TWpZRjR5ZW5TXzhVeV9MWE5hTDZxZDIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUhkwpqRt
jiQEhw3az2ivwEPR2l0InDDYwH+5i3kwg5oOCgxWENPN8Ht4QSTw+t6L1KP+HF1Y
wWXFMOXuGILLTvZvj9ZyWXa81vWABQbglEkT/li+z4W4KL5aTVnreRn1FOppVBRP
2Ri4z96yUNojitUFw+ZqpDCuYZMzhheHpWkenfoTUEjaoQWOkWI1ErU5b6FBFSnF
cuT0bx3iWGK4NWTn7t4Rv4glWSXINFbsWET3tnRdUuFnHDl93WJF0puZsA0yd6go
Shv5cjHURgY+w+Ga+1pDiAhsJb/Pyf3LbhqvxfrOnJ8fKBnZWOxDB3IxI9ucZRMp
LtE8FbS9ruzAZw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:48:31 2026 by rpki-client