Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: eE9ePwhbaXjNItaETDdM5LXRzMtKWf4t6axJkNC2n7o=
Subject key identifier: C0:5E:B0:13:C1:25:DE:C0:7F:A5:91:02:F0:1F:5E:A1:CE:ED:05:0E
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019CAAFD9EBCE5DD2C90C5D5880BF673C235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 052C
Signing time: Sun 01 Mar 2026 20:01:13 +0000
Manifest this update: Sun 01 Mar 2026 20:01:13 +0000
Manifest next update: Mon 02 Mar 2026 20:01:13 +0000
Files and hashes: 1: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: cRp+IuAerZdEeTAXX1/lIAbKAs6OWB33ys8AAgiYq4k=)
2: Ezve964v81lYlWQeavbK7g7CJGk.roa (hash: iRAr6mZP/rQywgyAaTeChLJgFIykzhfGwc22gfj7mcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:9e:bc:e5:dd:2c:90:c5:d5:88:0b:f6:73:c2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Mar 1 20:01:13 2026 GMT
Not After : Mar 2 20:01:13 2026 GMT
Subject: CN=c05eb013c125dec07fa59102f01f5ea1ceed050e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:c3:96:70:4c:5f:53:2f:10:b2:c1:d9:af:
5a:0f:51:a7:64:78:f4:fb:5b:1f:a3:87:07:c0:c0:
f6:94:38:c4:65:93:1f:5b:e2:4c:78:28:98:ee:4a:
77:de:e6:d9:b1:65:4b:85:c9:c9:53:e1:a4:17:b7:
65:35:4c:ae:45:15:f6:ab:b2:b8:ef:6d:bf:c5:e6:
11:5d:2a:13:c3:1e:a4:07:6e:91:48:ad:ec:b7:8b:
39:70:db:76:74:f3:c8:45:d5:50:38:07:41:ae:4b:
d0:fa:3b:75:9c:19:54:38:90:cd:f6:a9:fd:4b:a3:
54:54:1f:32:7f:eb:a4:a8:32:1d:ed:52:d3:e6:41:
6d:7f:d7:47:fa:b0:7d:7d:4b:a8:c1:f7:89:a7:0b:
ea:e3:1a:ae:f6:a0:a5:6e:a0:e0:b7:7b:33:fe:29:
8e:da:e8:60:1e:7c:f2:0d:06:d1:55:ca:28:67:9e:
f3:07:7b:06:db:ef:40:21:46:9e:ad:1b:2b:87:7e:
3e:a3:f3:fb:3a:db:2a:24:f5:ec:41:08:81:22:a2:
1d:f3:fa:9e:44:17:d3:6c:6c:52:b3:88:c3:77:28:
d8:a3:8e:fc:26:f7:5b:f8:64:14:34:6b:f9:98:23:
65:99:7f:2a:0a:87:f5:66:99:47:b9:6a:42:ab:2e:
75:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5E:B0:13:C1:25:DE:C0:7F:A5:91:02:F0:1F:5E:A1:CE:ED:05:0E
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:72:70:92:1b:23:35:28:1f:4a:cd:a4:d8:88:f6:57:ae:07:
d4:09:2b:c0:58:7c:68:12:a0:fb:75:07:4d:2e:1c:ee:3e:58:
69:32:70:97:12:dc:7a:c2:58:fd:8a:9c:ff:7b:31:f2:8c:34:
f1:3a:5c:91:31:7d:60:bf:2b:ab:f2:2c:46:2f:3c:b9:d6:2d:
29:f8:6f:90:6e:7b:e4:ee:c8:02:8c:75:1a:b6:28:ed:1b:c9:
09:4b:45:6a:5a:06:b1:68:e1:0c:b8:86:5f:28:1c:6d:e7:13:
7c:76:8b:00:66:18:63:4e:d2:46:fc:4b:43:3b:4c:33:20:1b:
3d:63:02:51:ca:79:c2:80:7a:03:85:c7:42:44:e9:6e:41:96:
c8:a2:d7:3f:66:6a:0a:72:ae:7b:80:e9:bf:46:36:fb:19:44:
dd:e8:e0:24:a2:d6:68:05:31:6f:cc:62:45:ad:ca:7e:fe:a6:
9f:d5:3f:19:de:e6:ff:fe:1f:28:d7:f7:6d:20:b9:50:04:fa:
3f:8b:bf:5a:12:7a:5d:20:f0:2f:99:9b:53:91:3c:7b:b3:5f:
35:29:91:28:a5:03:8c:c1:3a:c4:4b:2e:fd:e3:a3:f7:a1:20:
c4:8f:9f:d4:cc:de:65:ac:bf:b3:95:02:81:37:74:38:63:b4:
76:24:5b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:47:34 2026 by rpki-client