Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: JusjXQlBruaMSOE3hkdW4lMUSzTFkNhD9XK4eLoB6w8=
Subject key identifier: ED:C6:3C:B6:62:AE:A6:31:98:66:DD:98:58:C3:51:6A:E7:13:69:CA
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 019EC06D2E8A4DA55DB756D17C6326E986DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 1105
Signing time: Sat 13 Jun 2026 10:00:41 +0000
Manifest this update: Sat 13 Jun 2026 10:00:41 +0000
Manifest next update: Sun 14 Jun 2026 10:00:41 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: xkyodjasl4UPjtn9Rxpu/8wI6ew4Uh6pbRnqx+PZYV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:2e:8a:4d:a5:5d:b7:56:d1:7c:63:26:e9:86:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: Jun 13 10:00:41 2026 GMT
Not After : Jun 14 10:00:41 2026 GMT
Subject: CN=edc63cb662aea6319866dd9858c3516ae71369ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b7:ef:79:a7:88:62:49:04:31:24:51:88:9d:
62:c0:16:9f:4f:6a:df:80:e5:81:90:24:c3:ab:82:
75:36:32:8d:c1:4e:d1:d7:3b:6d:37:a0:bd:b0:57:
e2:9b:d6:83:ca:67:ba:e5:ec:f0:f8:c2:dc:a0:31:
3a:6a:f5:25:b0:2d:07:8f:02:8a:bd:76:e2:55:64:
c6:47:da:13:b2:da:d5:a0:ae:0c:b9:e6:8b:8f:ca:
0f:e5:ab:d1:a1:21:41:53:42:ea:57:1b:85:a4:d1:
d5:71:10:e5:17:78:fc:eb:10:f5:43:23:e9:24:51:
27:10:30:2c:91:1a:93:3a:4e:ef:79:65:44:57:f2:
8f:74:c7:ce:91:59:78:d0:6c:9e:3c:9c:32:52:64:
db:f5:df:85:56:7e:ac:a4:4f:c3:08:fc:a4:88:3d:
97:9f:b4:13:1b:d8:5c:27:db:9c:fb:61:18:8c:d8:
92:62:68:aa:35:6d:09:88:54:d8:2e:f7:30:27:a0:
00:4e:7a:2d:6a:66:9c:b2:9b:76:0a:d7:66:53:68:
be:31:d6:1e:c2:43:9a:1e:0f:68:5d:a1:6e:0c:f5:
26:ad:82:e5:9b:fc:64:40:f8:97:48:7c:6d:e7:16:
75:68:69:c6:de:d8:40:06:d2:e3:ec:6f:3f:ff:b3:
ff:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C6:3C:B6:62:AE:A6:31:98:66:DD:98:58:C3:51:6A:E7:13:69:CA
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:91:1a:43:ee:0c:26:f1:aa:25:bf:24:7e:8b:55:8a:4e:4d:
ed:e9:f5:2e:0b:bd:f0:02:a9:4b:6a:01:9f:c9:36:48:26:d9:
42:46:dd:42:d2:2f:97:b9:ce:6d:b5:11:2c:bb:52:65:29:4e:
57:38:37:28:d1:87:cc:16:ee:33:c5:6f:94:86:b6:d9:85:4c:
bf:03:be:a2:f9:c0:b0:c2:24:54:4b:58:d6:7b:cf:b3:92:ca:
e5:ce:3c:fa:c4:fd:27:3e:7a:df:d9:2c:bc:01:44:ac:a5:bc:
c7:07:5a:af:a1:45:90:16:7c:fb:db:44:98:0f:7f:33:b3:c5:
33:91:5b:8b:3c:18:1b:ae:6a:67:0f:27:fe:6d:49:1f:d3:02:
4f:94:c5:88:22:ff:9d:99:cd:82:a5:bc:6b:42:98:30:f5:ec:
6d:11:f2:91:a0:b0:d9:58:03:88:4c:fa:2d:66:68:46:13:57:
95:7f:75:d2:64:7a:cc:71:5a:22:9a:bc:f6:1f:13:21:a7:1e:
63:4d:cc:e7:a4:55:24:81:c7:24:38:6f:ef:1b:a5:48:e5:54:
88:17:ee:3c:ee:19:cc:c0:84:cc:ea:e4:df:09:3c:00:8c:9b:
b8:90:70:0a:5c:0a:2f:66:ce:44:45:1f:91:ec:02:7d:16:e9:
57:07:3c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:43:28 2026 by rpki-client