Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: FVH+9Qvhw42Hj3wC8a+tf84H4LitBEYtpwRvBQQDw8g=
Subject key identifier: AF:DE:F2:6E:4F:15:B6:FC:B6:48:A8:E6:05:6B:49:62:81:C9:9B:68
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019D9999610DB3C64C80046B330C03F91482
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 1760
Signing time: Fri 17 Apr 2026 04:00:59 +0000
Manifest this update: Fri 17 Apr 2026 04:00:59 +0000
Manifest next update: Sat 18 Apr 2026 04:00:59 +0000
Files and hashes: 1: 8UGI1s0WR4wlzQNu5QcJqIgdD6o.roa (hash: 0o0yTMQX8eIMkMe3RKQudDE1yMjJHai1D53A4eswsuo=)
2: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: aKpuwBNvR6MLRlc+1qX0PNhnpXVpkc/AQXWx/wsPSLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:61:0d:b3:c6:4c:80:04:6b:33:0c:03:f9:14:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Apr 17 04:00:59 2026 GMT
Not After : Apr 18 04:00:59 2026 GMT
Subject: CN=afdef26e4f15b6fcb648a8e6056b496281c99b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:ff:55:e9:1b:8f:4c:2c:da:91:50:73:f5:
c5:49:7f:70:ed:e1:5a:26:bd:30:dd:97:04:04:59:
75:4a:7e:34:7a:f5:ae:57:1c:f2:79:4a:7a:84:47:
2e:d1:ab:18:ac:f4:94:e9:6c:66:65:41:33:0f:f6:
38:62:99:e3:8e:3b:92:b5:5c:bc:c6:2a:2f:8f:c0:
4d:e9:40:62:18:92:d2:4f:07:98:2f:f6:88:42:e7:
be:0f:0d:0c:30:94:62:98:1e:c7:cc:cd:32:b7:2e:
61:61:de:fb:aa:8e:e2:56:f4:e8:4d:e3:cd:2b:3c:
bd:c9:5a:09:9d:e6:87:18:bf:eb:23:c8:62:8e:1b:
e1:e4:b7:7f:12:0b:58:ce:d8:79:bc:f2:a6:15:c8:
78:78:2e:04:cd:eb:98:1e:27:c6:83:5a:6b:a5:22:
55:9e:e3:e4:31:3e:99:9c:49:39:21:e1:b1:53:e7:
0e:e0:e5:67:36:d5:d7:4e:24:73:25:a2:ed:4c:80:
2b:3d:04:95:38:b9:39:6e:f9:9a:f7:5e:e0:7f:53:
b3:6c:12:94:ee:0f:f0:8c:a4:42:f2:45:83:49:d6:
27:54:1b:f6:01:7c:34:5b:c7:9b:ac:87:eb:31:ad:
eb:c7:b7:9d:20:62:41:3b:c2:55:92:81:e7:10:0a:
40:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DE:F2:6E:4F:15:B6:FC:B6:48:A8:E6:05:6B:49:62:81:C9:9B:68
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:f4:e7:91:76:d1:8f:4f:03:dd:66:a3:60:24:b8:09:0c:52:
31:c5:0d:4a:d6:8a:47:1e:88:2f:4d:05:00:1d:64:ee:4c:22:
3d:4b:f7:e0:71:96:84:bd:71:8c:09:b6:07:4f:4d:c2:69:e7:
b1:8f:15:31:ec:fd:70:90:fb:d3:33:01:a3:0d:8d:f1:4d:24:
9e:b7:66:b7:a3:4b:86:5d:2d:93:7c:25:cb:81:15:60:05:fd:
67:5b:15:ce:f8:00:44:ad:ef:ab:1e:eb:80:c5:e8:bb:60:a5:
da:38:cd:74:73:6c:40:e6:c4:0a:0b:4b:6e:cf:50:bf:fa:7b:
f2:8a:61:80:e3:88:b9:1c:b9:9d:b3:1c:be:67:90:f0:b8:46:
60:7c:84:34:70:0c:ea:88:2e:ec:2f:0b:f7:bb:b7:2e:89:72:
43:a7:23:dd:e1:c6:48:e0:af:ff:5b:24:72:fe:9c:9e:05:cc:
d8:06:86:48:b3:19:79:54:3d:78:dd:96:ad:48:67:d2:45:92:
29:8b:4c:4e:e6:40:16:1a:2f:40:29:2e:e2:a8:8f:fc:62:96:
fa:36:04:47:2d:52:9e:88:84:d0:e3:0d:03:2e:e3:97:fb:cc:
86:35:b4:62:c6:c5:1a:1e:e7:38:97:68:52:dd:84:78:ec:56:
4c:81:e6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:14:50 2026 by rpki-client