Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: 6hU8ySHai9dJgLW65g6Os7VbsjZtY78zTx9xwpxCibI=
Subject key identifier: 75:1F:F1:A7:26:5F:35:51:3A:BA:85:D4:50:19:DA:D7:46:44:F4:85
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 019D9AE26BF2544B257CFF17782AFC57B82E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 0973
Signing time: Fri 17 Apr 2026 10:00:22 +0000
Manifest this update: Fri 17 Apr 2026 10:00:22 +0000
Manifest next update: Sat 18 Apr 2026 10:00:22 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: x+q8rCKZYsQFGOmCAedmT/aNEK0fbaLg7DMHJsJL24s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:6b:f2:54:4b:25:7c:ff:17:78:2a:fc:57:b8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: Apr 17 10:00:22 2026 GMT
Not After : Apr 18 10:00:22 2026 GMT
Subject: CN=751ff1a7265f35513aba85d45019dad74644f485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d9:09:2b:5b:cd:0a:e8:f8:07:f1:72:a9:bd:
7b:aa:46:65:a1:e6:b3:39:68:a4:99:42:8f:c3:42:
33:43:21:ff:86:b3:28:2c:58:d4:6a:07:5a:1b:7d:
8b:27:e9:68:89:f7:5a:75:d1:b6:41:7f:c7:12:af:
2e:17:44:71:ac:4f:22:5b:0a:18:fa:5b:57:ce:b0:
cc:3b:26:6b:97:62:d4:a3:65:d7:46:f5:3d:d4:f7:
7d:9e:29:69:d6:2b:35:a5:7e:d3:2e:fa:ee:12:a9:
a9:c7:e8:4f:e5:2b:1e:e3:71:43:43:c8:ee:20:1d:
04:e1:c9:99:1a:77:2c:af:d2:9c:1a:bb:93:fa:90:
6b:7e:80:68:b2:ea:2a:68:af:71:59:f4:ef:c0:02:
32:33:52:89:25:5e:8d:45:7f:6e:0b:fe:17:34:07:
b5:09:a9:a8:dd:6c:1e:09:07:3d:b5:8f:39:7a:87:
ad:d4:4f:63:89:ff:fa:d7:82:b0:c6:ba:0a:10:0f:
ef:07:fd:34:7c:e0:7f:17:c2:bd:0a:d5:ac:15:24:
20:62:ec:8c:7c:7e:e0:ff:ce:23:da:c1:f7:44:62:
2f:5a:ce:99:be:24:70:22:66:b0:5e:b6:cc:df:5b:
fd:5c:0e:ab:28:f6:ed:72:d6:e5:4d:d9:a8:39:c7:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1F:F1:A7:26:5F:35:51:3A:BA:85:D4:50:19:DA:D7:46:44:F4:85
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:81:37:7d:b1:69:7b:d2:a1:04:43:a5:69:3f:98:eb:35:1b:
0b:0e:24:57:43:a0:1d:21:80:ee:bf:43:99:3c:be:ac:dd:d0:
72:0f:07:73:b8:db:b0:c8:af:40:b4:a0:16:4c:9e:78:72:98:
9b:7b:5c:51:a4:f7:92:5f:8c:35:84:a9:ab:fe:60:e3:91:2f:
75:bb:42:0d:3d:11:46:c0:14:3b:d8:71:f4:a4:e2:1e:25:7e:
7b:f6:8c:f5:c3:b0:14:aa:bd:c1:46:28:14:fe:22:be:75:fa:
6d:08:cc:00:7f:c5:80:24:b5:2b:42:98:1c:e0:ce:79:ac:11:
96:f2:b0:f5:68:aa:90:73:5e:cb:1a:4c:d6:b7:c7:6f:cc:57:
17:1b:cb:98:84:a4:4c:b9:e7:9e:5f:39:e0:e0:4b:99:3a:54:
cd:ae:13:a4:1a:a1:db:4e:4f:4b:e3:8e:82:1a:44:91:d6:7b:
ab:fd:97:68:4d:06:0b:c1:a1:ad:5b:01:c6:07:bd:00:c7:f6:
94:46:78:30:ca:b2:fe:e8:53:26:6b:cc:b8:8b:fc:58:18:f6:
36:1f:ca:ec:b2:3d:2a:37:e5:ab:e4:f2:3f:32:71:3e:44:8c:
13:e7:e6:d9:02:dd:62:b2:ff:a6:32:fc:0b:ef:48:4a:7f:40:
ce:a6:5e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:50:11 2026 by rpki-client