Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: vRlLv6piZ92QKGLJSCws6Ep2WmddItsHCg2wQm0kTcw=
Subject key identifier: 1C:4C:65:D0:3A:04:79:03:CB:B2:CD:0F:83:21:4E:CB:67:92:E7:5A
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 019EBE7EED1B9AAC3BF9871BA957C544531E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 0A0A
Signing time: Sat 13 Jun 2026 01:00:49 +0000
Manifest this update: Sat 13 Jun 2026 01:00:49 +0000
Manifest next update: Sun 14 Jun 2026 01:00:49 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: ebS2JF2TxAyeXcYDellzgUTo3PzVvCqf1LGK/KDzBRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7e:ed:1b:9a:ac:3b:f9:87:1b:a9:57:c5:44:53:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: Jun 13 01:00:49 2026 GMT
Not After : Jun 14 01:00:49 2026 GMT
Subject: CN=1c4c65d03a047903cbb2cd0f83214ecb6792e75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:13:10:b6:fa:a1:95:ac:11:7a:fb:e0:69:52:
cc:95:da:f1:8c:cf:ba:aa:ef:35:a2:19:bf:c4:24:
67:ad:1d:d5:a3:c9:3d:aa:b4:d2:f8:41:c5:07:dc:
72:4c:f2:a4:a3:82:e6:25:64:43:3a:a7:4b:05:36:
7a:ea:dc:12:50:6e:91:27:9b:1a:bd:55:c0:f7:f2:
79:26:48:20:f5:67:28:68:e5:94:d8:8c:91:27:00:
60:60:81:03:85:64:fa:b9:60:74:28:15:cc:87:f1:
e9:b6:69:cc:7b:33:81:40:f4:07:26:7c:82:f3:9c:
e2:59:6e:34:17:92:7b:64:ec:f2:1b:fa:35:7e:d0:
9a:f7:f9:d0:1b:55:75:17:b4:18:74:64:77:cf:74:
f1:57:ed:e7:c8:7f:a4:77:7f:96:22:2e:5f:81:6f:
25:49:ae:24:aa:0a:52:4f:ae:f2:27:f5:47:05:da:
7b:6c:b7:ec:09:5a:75:45:9d:16:9f:d8:38:49:6c:
62:8f:0c:3c:01:75:e9:39:35:89:5b:63:4c:6e:65:
e8:d7:20:9d:ff:cf:6e:70:ef:26:17:18:be:a3:36:
a9:48:65:d0:53:2a:2c:5c:17:8a:39:a3:8f:24:33:
de:17:f5:60:02:d5:d9:7c:00:49:1e:0e:84:52:98:
cf:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4C:65:D0:3A:04:79:03:CB:B2:CD:0F:83:21:4E:CB:67:92:E7:5A
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:77:8d:b9:aa:2a:40:32:c2:d1:49:a0:60:f0:67:80:b9:6b:
1b:b0:70:2d:79:63:e8:62:e8:a9:41:b4:39:4a:42:23:c1:11:
9b:26:22:65:81:cf:1e:da:16:26:d9:7b:d2:d3:94:ee:7a:3d:
13:4f:81:d2:54:71:62:70:dd:6f:1c:42:3d:4d:7c:12:73:30:
e1:63:11:04:e0:02:d3:c1:31:a0:fd:f8:d4:f2:87:c6:29:0a:
87:62:85:bf:85:1b:cb:ac:94:23:72:73:42:60:de:57:77:f6:
de:b3:34:be:e7:3c:46:05:b7:b4:f4:3d:4f:d1:fd:ba:68:ab:
02:aa:aa:09:7a:a2:79:09:49:18:47:54:06:80:a2:69:e1:ed:
87:73:06:bc:f6:f0:3d:c5:f8:79:e9:73:0e:2b:f4:e2:db:ab:
71:2f:c2:1a:8a:0b:38:b5:cb:ad:10:e0:fb:05:13:02:9e:16:
49:62:c6:c3:c9:f7:31:f4:36:05:45:9e:24:94:0f:64:b4:e3:
4c:89:dc:02:a4:3d:0d:bb:29:f7:7c:03:38:e9:22:ce:71:4a:
9e:ad:c5:46:f5:79:af:69:82:69:ad:3f:08:a8:72:02:2b:d9:
81:ab:e4:83:64:0a:fb:fd:d0:8e:1c:21:74:88:49:e1:8e:42:
d5:ed:78:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:19:39 2026 by rpki-client