Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: 6W2q7xg99PfvX2F14fYk9JAB0TVGPlgoA0NbbADyOzI=
Subject key identifier: 06:09:19:B1:F3:BF:05:1A:4D:42:9E:85:0D:D9:ED:FB:A8:F8:7B:B7
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019D9886BD41A7625A1034B8A62EFA53ECB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 05A7
Signing time: Thu 16 Apr 2026 23:01:00 +0000
Manifest this update: Thu 16 Apr 2026 23:01:00 +0000
Manifest next update: Fri 17 Apr 2026 23:01:00 +0000
Files and hashes: 1: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: f5NZHiVrtkkCMXjX8NMYz3u8jAjP+F5nxn/h7nlz8Yw=)
2: Ezve964v81lYlWQeavbK7g7CJGk.roa (hash: iRAr6mZP/rQywgyAaTeChLJgFIykzhfGwc22gfj7mcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:bd:41:a7:62:5a:10:34:b8:a6:2e:fa:53:ec:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Apr 16 23:01:00 2026 GMT
Not After : Apr 17 23:01:00 2026 GMT
Subject: CN=060919b1f3bf051a4d429e850dd9edfba8f87bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c8:49:88:0d:07:fa:6c:2f:96:18:61:0f:43:
4a:36:b2:e5:9f:90:e0:da:ab:d6:36:38:a1:20:f6:
aa:98:5c:a8:9a:d9:62:77:b3:b4:40:f1:17:3b:3e:
15:47:fc:a9:84:17:06:76:74:0e:84:56:be:dd:d6:
d1:ac:db:75:5c:b2:59:d7:85:60:b9:fd:b3:5d:ca:
3a:15:a2:77:4a:38:d2:52:c3:2a:44:eb:42:ff:c0:
bf:2b:50:15:3d:5d:ff:5a:54:3c:e8:18:4e:b4:ae:
39:b2:53:92:bd:ff:79:65:cb:6a:0e:34:f2:b9:ce:
62:38:f0:b3:d9:27:05:c5:c8:10:a1:08:cf:f1:00:
45:e4:61:b6:a0:25:c0:ae:90:b0:98:4c:31:ab:d5:
20:fc:e1:a3:ee:eb:c9:7f:6b:dc:38:a3:20:a5:23:
01:fc:fe:e9:3e:4d:df:8f:59:e1:08:b4:27:91:57:
39:cb:ff:6f:c2:4e:e8:ff:ff:21:3a:8d:b3:5c:15:
67:d2:4f:4c:28:c2:9c:99:dc:9e:64:e7:23:ba:7f:
31:60:2f:7b:bd:06:e1:44:09:e3:8f:00:ad:e1:fb:
e8:10:a5:f7:ab:a1:0d:33:28:61:44:3d:91:aa:d7:
fe:cd:a2:ac:3f:fb:f8:eb:59:90:89:0d:38:d8:86:
ed:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:09:19:B1:F3:BF:05:1A:4D:42:9E:85:0D:D9:ED:FB:A8:F8:7B:B7
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:86:83:7e:9d:91:29:80:d2:2d:d6:2b:f9:f4:99:85:8f:80:
55:75:17:a5:aa:64:70:bd:7f:15:d4:b1:e6:49:02:b0:ac:41:
71:aa:5c:16:5f:20:1f:ca:57:7b:61:6f:87:2d:38:d7:3b:4c:
cd:da:72:3d:c1:1d:c3:7a:bc:b5:86:e5:c7:fc:01:0f:34:28:
25:1f:05:fa:84:85:10:99:c4:28:46:15:70:a0:a9:e6:35:ac:
65:67:d4:7f:c9:f2:6e:a3:b6:5f:f0:cf:c0:84:ce:b1:dd:86:
b2:b7:0d:62:b0:1d:4a:6a:75:26:83:3d:3f:b1:0f:39:7e:7a:
70:a1:ac:ca:84:c3:a5:cf:e2:dc:9d:71:35:18:d1:a9:5f:52:
83:f2:c9:17:53:10:29:e1:56:fb:fd:9c:a3:65:2d:65:52:df:
fe:45:81:11:55:f9:66:55:29:87:ca:de:5f:46:f7:18:f3:e8:
dc:8f:41:ae:a8:7b:bb:8c:ea:9a:d0:10:29:85:ee:0b:92:80:
85:05:b9:54:4d:43:c2:80:e2:f3:7e:dc:a9:6c:2e:e2:0c:ac:
a8:b4:9c:8f:78:1d:93:e3:d4:45:40:c0:03:20:24:61:56:83:
40:5f:e4:22:04:c3:82:ad:f8:ae:c6:d3:03:c7:65:52:cb:fa:
dd:7a:e8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:19:57 2026 by rpki-client