Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
File: aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft (raw, json)
Hash identifier: 9DRFaJagpahH6qOuG6OG1dcUkJ1j8SmWezud8yeyc8U=
Subject key identifier: DD:0B:01:99:C5:42:49:2F:EE:3C:06:82:5C:30:27:02:81:BB:14:BB
Authority key identifier: 69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
Certificate issuer: /CN=699710a1693710ac835f0b6745f90d2d680a1200
Certificate serial: 019D99D0900121856647177A3F2130DAD8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
Manifest number: 1854
Signing time: Fri 17 Apr 2026 05:01:15 +0000
Manifest this update: Fri 17 Apr 2026 05:01:15 +0000
Manifest next update: Sat 18 Apr 2026 05:01:15 +0000
Files and hashes: 1: VmSEi88h8EdX70CoZBoX1PGWIw4.roa (hash: cwT1GcadLbcYd+EhAmWFsga6gtnL8WtN6n2eRtcoP6o=)
2: aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl (hash: R1Ey11ToKejM54VMFhVy3DjiVESfgxP8vlvuEUZpraM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:90:01:21:85:66:47:17:7a:3f:21:30:da:d8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699710a1693710ac835f0b6745f90d2d680a1200
Validity
Not Before: Apr 17 05:01:15 2026 GMT
Not After : Apr 18 05:01:15 2026 GMT
Subject: CN=dd0b0199c542492fee3c06825c30270281bb14bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6b:81:2d:6a:d5:c1:e3:5a:ac:ab:54:d5:35:
78:a8:8f:59:2f:4d:92:39:2a:23:dc:47:f0:74:6c:
1b:fb:04:58:c1:af:4d:45:93:22:38:35:78:b3:c6:
e7:e4:73:d4:77:ac:bb:8b:e8:d2:38:38:2e:a7:81:
df:c3:04:54:fd:1d:a2:13:20:51:35:7a:48:ed:45:
3e:97:b5:75:56:cc:c5:00:8e:81:80:35:cb:60:ec:
c0:20:39:0f:81:fa:a9:b3:78:47:53:26:00:1d:2e:
7c:6f:f6:88:63:dd:c0:09:2e:4d:4e:5a:e8:a2:a4:
e8:34:ec:13:d8:ad:cb:5a:49:9b:d6:1f:52:bc:f5:
fc:53:4f:b1:06:ca:32:86:2a:5a:ca:9a:40:ed:c7:
3e:6a:a4:03:83:22:06:b9:0f:73:6d:73:92:28:13:
6c:28:b5:09:aa:2c:c5:8a:86:13:29:98:23:6e:42:
8f:b1:fa:39:e5:b4:db:2d:22:7d:da:4b:59:a8:6c:
0d:6e:5d:a4:8b:bb:4d:c7:3c:2e:28:44:a4:7c:36:
dd:29:6a:61:0c:41:aa:e8:35:39:2d:ba:af:24:97:
cc:7e:b3:cc:aa:0c:56:a0:28:54:6e:88:57:ff:9d:
55:ae:12:6a:0f:9f:8b:b4:70:83:00:9f:1c:5f:77:
3f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0B:01:99:C5:42:49:2F:EE:3C:06:82:5C:30:27:02:81:BB:14:BB
X509v3 Authority Key Identifier:
keyid:69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:5e:fb:d9:90:62:72:3d:05:98:87:f6:c8:43:1f:de:87:91:
3b:01:b1:fd:3a:20:71:7b:f3:aa:40:92:81:f5:9c:ee:56:1f:
6a:f2:67:fb:e7:19:64:75:8e:f1:4a:65:0a:42:3d:57:40:3b:
97:7f:20:75:fa:63:96:cc:b7:2c:c3:e3:21:1e:74:07:0c:9f:
05:e0:e2:4d:4b:e4:a6:a0:01:70:6a:b1:6b:2e:cd:3e:40:5a:
be:71:dd:05:88:61:8b:52:89:ac:31:4e:5b:f7:a2:d8:18:09:
9a:6e:b3:0a:01:81:da:68:c8:63:64:eb:0d:a4:7a:30:0e:11:
c6:a6:30:95:64:fc:d9:de:c9:49:cf:a5:bb:bc:6e:77:51:de:
af:d0:7e:f9:46:d9:06:e3:cd:7b:99:d5:66:c0:e6:05:7d:4f:
32:e9:55:89:91:aa:7c:4c:38:e9:b2:6b:71:35:91:42:5b:be:
9f:06:00:92:bb:8c:d3:23:ab:b9:99:20:32:6d:76:f6:03:85:
ea:3c:2c:a3:df:f5:e1:6d:47:61:30:9e:ae:1e:9e:e2:a2:e5:
70:5b:7b:92:7e:d4:6e:b8:e0:03:40:6b:73:11:57:38:1c:cb:
32:3d:93:4f:18:f2:37:83:3e:2f:42:1b:9a:b7:ce:1b:0c:f4:
0b:97:a6:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:42:46 2026 by rpki-client