Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: 8XH+bxerzjJ6d8+unotjukQPUKYkDCnFvCl5l5VSR08=
Subject key identifier: 29:37:6E:1B:66:BA:A9:85:92:77:61:1F:3D:FB:9B:E4:37:02:EA:72
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 019CADFEB227878F731CE3E9A35649410ADD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 16E6
Signing time: Mon 02 Mar 2026 10:01:15 +0000
Manifest this update: Mon 02 Mar 2026 10:01:15 +0000
Manifest next update: Tue 03 Mar 2026 10:01:15 +0000
Files and hashes: 1: 8UGI1s0WR4wlzQNu5QcJqIgdD6o.roa (hash: 0o0yTMQX8eIMkMe3RKQudDE1yMjJHai1D53A4eswsuo=)
2: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: WyDmxcdx6hb2dtBdgztUrFLJvEU/4HD4PLtvfK0Y3l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:b2:27:87:8f:73:1c:e3:e9:a3:56:49:41:0a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Mar 2 10:01:15 2026 GMT
Not After : Mar 3 10:01:15 2026 GMT
Subject: CN=29376e1b66baa9859277611f3dfb9be43702ea72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d8:1d:c3:4a:3c:35:b3:06:aa:97:f5:a7:c3:
6c:0f:09:1d:91:b0:31:81:eb:c4:68:a4:5a:a2:e6:
ba:9c:55:09:2b:76:aa:30:7c:03:0f:cb:81:22:d5:
fb:ff:dd:fb:76:66:e8:08:bc:6a:fa:48:79:62:74:
ec:e3:81:0e:d7:c4:2d:0a:4b:ef:d2:6f:0d:cd:b5:
8b:b0:93:32:08:7d:ca:97:5e:ea:fb:ed:1e:d5:5e:
19:73:bb:a9:45:4f:97:2a:7c:5a:61:e4:53:5f:46:
be:7e:1e:92:87:4f:8c:51:6d:60:5f:93:41:cd:99:
6e:1d:f6:25:5f:8c:c8:86:fe:e1:6c:bc:43:4e:90:
7c:ee:86:02:61:2a:25:9b:2d:aa:6e:8f:5e:e7:ad:
f8:68:1a:c4:80:d0:ec:69:2b:24:e4:78:b3:12:a8:
8e:d1:13:76:43:f1:8c:0a:e1:28:8b:53:c5:31:c5:
fc:7f:a3:88:4b:7c:37:1f:16:96:0c:8b:a7:6c:81:
36:0b:be:57:30:91:ca:0a:06:80:1e:4e:3e:ae:39:
ef:5f:d2:35:ed:f0:58:70:a0:77:25:36:bb:3d:8d:
7b:42:20:3f:c2:e3:00:da:31:04:39:c4:b0:6f:0b:
3c:25:38:73:2c:0c:93:77:fe:ab:b0:0f:b9:c0:19:
c0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:37:6E:1B:66:BA:A9:85:92:77:61:1F:3D:FB:9B:E4:37:02:EA:72
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:6d:d2:3f:2a:65:51:30:8b:c7:92:65:0f:75:5f:27:14:89:
a7:ba:aa:66:fa:42:90:31:76:ff:1d:35:4f:43:b4:7e:c2:39:
32:f5:19:57:25:4c:a5:f1:37:05:1c:83:e2:7e:e6:f5:78:08:
0d:46:6e:35:57:5d:b6:ba:5c:07:79:ea:bf:41:5b:54:99:71:
b3:40:11:17:c5:44:85:69:64:b5:a0:a7:dc:aa:56:71:62:e9:
91:2a:8b:6a:32:d5:96:b1:d6:d8:5e:11:bf:49:c5:5c:46:7e:
83:df:79:e8:b9:62:58:26:0f:52:fb:85:a6:fc:2a:11:f9:0f:
1b:34:37:4b:79:1c:b8:22:24:91:2c:b4:11:a3:f3:c2:cf:f2:
09:c6:82:da:cf:ff:19:a1:3b:bd:be:4a:58:d3:72:9a:a7:6f:
7d:93:28:5f:c2:60:28:12:af:b6:98:3d:3f:56:b5:93:8a:87:
88:0a:0a:0f:72:99:bb:14:99:c1:02:4e:e2:fb:1b:6d:f2:3b:
41:bd:85:f6:2f:13:fa:ac:bb:ee:6e:9a:67:9f:f6:65:0a:a2:
48:02:b3:b8:f9:5b:9b:65:34:66:6b:6b:36:ec:97:cd:69:11:
1f:f5:5d:a9:04:a4:4a:60:0a:3b:19:3c:6d:b8:17:82:30:b8:
b9:84:6f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:31:23 2026 by rpki-client