Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: eQ95+39SnhPPpXNlgu8gIF/KmXny+vI2xaXWCaj7VZ0=
Subject key identifier: 8D:F1:5A:B6:C7:6D:99:A8:B3:53:3A:62:57:64:87:81:90:E7:C4:49
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 019EBE7F6F7BAB2448365C9DE6B0956151E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 1104
Signing time: Sat 13 Jun 2026 01:01:22 +0000
Manifest this update: Sat 13 Jun 2026 01:01:22 +0000
Manifest next update: Sun 14 Jun 2026 01:01:22 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: kr8DeIEd5boGfnuI0VuSkoFDX3oaQiDxrMexYiQV+20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:6f:7b:ab:24:48:36:5c:9d:e6:b0:95:61:51:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: Jun 13 01:01:22 2026 GMT
Not After : Jun 14 01:01:22 2026 GMT
Subject: CN=8df15ab6c76d99a8b3533a625764878190e7c449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e4:21:7b:4e:cb:6f:50:2c:d3:a3:86:11:76:
4c:a2:25:59:03:ce:22:9b:0c:78:21:0c:d0:5d:55:
01:12:46:ea:f7:e3:3b:39:75:f3:0c:95:55:24:c4:
12:b4:fa:87:ba:c4:f8:24:55:f7:9b:2c:ec:8b:13:
0a:c2:c4:e1:41:f5:23:0d:65:14:ed:da:4b:87:87:
55:83:0b:d0:2d:6e:db:b5:43:e3:5f:1d:4d:a1:6e:
10:af:74:96:34:30:de:4b:14:ec:e0:0f:22:25:e9:
1b:76:61:c5:f8:95:5b:88:69:67:4a:d9:30:39:a5:
c0:b2:35:eb:72:77:0d:0c:9a:fb:40:23:87:53:cb:
70:e0:d2:ad:db:63:ad:ad:1a:68:d6:b8:94:ec:48:
1f:67:29:f7:a7:f9:68:5d:1d:04:c2:08:00:42:bc:
4c:9a:fa:48:a2:86:9f:7b:17:38:0e:1e:d2:39:74:
1b:c9:02:76:3a:63:9b:9e:fa:2a:27:78:05:d3:8b:
1a:da:aa:66:00:f2:c9:24:f2:21:de:f0:7c:57:4e:
da:02:e8:e6:70:0d:ea:d5:4a:a3:83:f6:12:bd:b7:
1a:17:eb:a6:e0:3e:e8:8a:36:65:42:80:0f:8a:6f:
bb:1d:35:48:14:ae:72:8d:c2:a1:67:63:b7:c1:51:
31:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F1:5A:B6:C7:6D:99:A8:B3:53:3A:62:57:64:87:81:90:E7:C4:49
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:e3:3c:72:a1:29:0f:63:5b:2c:eb:15:b7:26:ca:61:f8:93:
12:b6:4b:b8:f6:d0:7a:95:59:8c:0d:b3:a4:ff:31:54:09:72:
7e:d4:0e:66:3a:83:50:60:b8:ca:f2:7d:3b:0c:1c:c6:ee:1e:
fc:1a:87:c5:49:ff:70:05:aa:34:60:6e:75:0c:07:0d:a9:cd:
1d:cb:2c:ff:8b:17:f4:23:a5:d3:65:e5:31:a0:af:ae:b6:50:
c1:a2:d6:15:ae:a8:f9:d9:95:73:0e:8f:5d:4d:14:68:f7:b9:
9a:cf:3f:14:74:80:90:1c:95:26:e5:ce:33:1e:3f:3e:60:36:
f9:6b:2c:18:84:01:6c:7e:6d:9e:3b:5b:b7:7c:30:ca:b6:a2:
e3:65:7a:2c:9e:d5:10:27:92:6d:0e:60:92:a3:ce:d9:6f:fe:
ba:bb:c4:42:1d:34:0a:ff:3b:b9:0f:72:d1:a4:ad:a8:77:1a:
e3:70:6c:b7:e4:24:a1:fd:d2:77:a7:49:a2:a6:79:ec:4c:e9:
8c:e7:5c:32:c8:85:7a:23:af:55:f9:c1:0b:6c:20:85:a4:07:
7f:89:e8:07:82:09:94:ad:64:df:17:f1:c5:fc:17:89:c0:04:
f6:22:13:d5:8c:77:d7:29:24:4d:61:36:3f:97:64:ba:9e:61:
94:d0:e9:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:52:15 2026 by rpki-client