Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: 3pHn3le6yniO6erMCXjUDXPGTXYNLrXg4gkpAU12XdA=
Subject key identifier: AA:8B:4C:70:3E:CF:A4:AC:0D:84:AA:67:16:1A:7A:56:05:A5:D5:2B
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019EBF23B6DBB542C55A1F40C7652E7A6A04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 17F8
Signing time: Sat 13 Jun 2026 04:00:49 +0000
Manifest this update: Sat 13 Jun 2026 04:00:49 +0000
Manifest next update: Sun 14 Jun 2026 04:00:49 +0000
Files and hashes: 1: 8UGI1s0WR4wlzQNu5QcJqIgdD6o.roa (hash: 0o0yTMQX8eIMkMe3RKQudDE1yMjJHai1D53A4eswsuo=)
2: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: vbq0BDUiaKm4zZRx/AbDSzXmym/c7Wr64ryYOSP0vEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:b6:db:b5:42:c5:5a:1f:40:c7:65:2e:7a:6a:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Jun 13 04:00:49 2026 GMT
Not After : Jun 14 04:00:49 2026 GMT
Subject: CN=aa8b4c703ecfa4ac0d84aa67161a7a5605a5d52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:0d:21:d2:e0:64:b6:ab:6d:14:e5:f1:ff:
77:ac:72:e4:08:26:e4:15:18:d7:a1:75:35:0d:b1:
9a:31:3f:41:0e:fc:58:27:94:02:c4:de:38:a6:44:
3d:e0:7e:6a:1d:85:d3:f3:45:92:0f:9e:51:47:84:
78:e8:2e:d3:31:3f:bf:17:68:81:91:94:b6:84:76:
22:bf:2c:6e:44:cf:46:19:63:99:f5:2e:73:1a:a1:
7d:31:b5:a3:46:95:cd:b5:17:fa:4f:04:ca:ba:08:
b7:77:9c:1d:7c:70:37:07:29:d0:0d:5c:a4:38:95:
25:20:00:c2:06:47:c9:ac:84:05:fb:f7:ac:f0:35:
91:96:6a:8b:b0:ef:2b:36:7a:44:e4:40:17:63:d5:
a4:9a:68:25:6f:89:29:73:79:20:69:53:c3:cc:35:
8e:dd:9e:81:c4:de:3c:e4:9b:de:ab:e7:ea:47:66:
b3:52:ff:6f:fc:fe:96:a8:dd:b9:7f:b0:dd:80:fd:
2d:38:0f:96:cd:2e:27:b9:49:16:1e:80:07:fd:52:
6c:ae:26:13:ad:40:02:13:f2:bc:16:0e:5d:8b:17:
78:0f:0c:85:1e:6b:9c:60:da:02:11:35:3c:7b:5f:
6f:aa:60:fc:5c:9b:2f:52:84:f9:31:f4:69:4a:c8:
2e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:8B:4C:70:3E:CF:A4:AC:0D:84:AA:67:16:1A:7A:56:05:A5:D5:2B
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:cd:f3:40:b8:09:8e:8b:ca:00:c2:cc:ce:e4:a8:23:36:02:
3a:35:8d:87:a8:fa:d2:fd:37:98:86:b8:63:b1:1b:0f:57:0d:
9b:81:be:07:a1:19:1b:f0:e2:c8:0a:af:41:7e:f8:89:58:92:
06:cd:de:1f:d7:27:f7:f3:ef:76:fa:50:be:1b:71:d7:09:27:
75:e3:87:a1:bf:4b:5c:77:7a:bf:2c:c0:28:77:65:97:0a:34:
1e:53:c3:71:93:9c:6c:39:fb:26:13:c9:e8:f7:30:4d:66:3a:
7a:a4:a4:c4:1e:2d:0f:8e:71:c2:29:20:ed:bf:58:b4:d0:d1:
20:85:7f:1a:57:12:a5:6d:a9:ee:44:76:e4:81:de:af:31:fe:
8e:09:35:0a:ba:38:e4:bf:35:6b:ad:f0:80:ae:28:f2:ac:cb:
06:5e:f7:6c:12:7d:69:87:8a:a0:8e:f7:91:89:77:24:94:f1:
25:98:08:8a:5c:18:23:a1:aa:95:17:75:a3:87:a0:8d:31:f0:
f8:58:b0:ea:bf:0a:c6:e2:af:47:01:84:7d:96:91:43:a2:22:
b4:b4:a1:23:44:4d:6b:00:3c:50:2b:ca:7c:57:46:7e:51:ec:
5d:d8:57:dc:d8:fc:21:b9:ce:96:cd:3f:5b:a9:5b:0b:10:73:
d1:e4:cf:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:23:30 2026 by rpki-client