Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
File: AsLBh9mLRgOATtEWWttFCbYwqDo.mft (raw, json)
Hash identifier: 87mdaz/fqxLitZKK0AervTVvkZhBd5RVVBl+IK8GWVQ=
Subject key identifier: AF:35:B1:41:CB:66:8B:13:68:A1:7A:9E:94:3D:89:42:34:7B:4D:0A
Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a
Certificate serial: 019DA4539362989E662019B9574A21B249D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
Manifest number: 0DBC
Signing time: Sun 19 Apr 2026 06:00:33 +0000
Manifest this update: Sun 19 Apr 2026 06:00:33 +0000
Manifest next update: Mon 20 Apr 2026 06:00:33 +0000
Files and hashes: 1: AsLBh9mLRgOATtEWWttFCbYwqDo.crl (hash: MknFu3TN7uwdbQIsFculhet+Hx1lhbkjCdm3NmDRPtE=)
2: WuVnfkB6n82FOg4W-IcUzY3Fe0M.roa (hash: DZE6yI97kbfPPegu/0turhmXzDIWBsKrThF8bRlEJlI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:93:62:98:9e:66:20:19:b9:57:4a:21:b2:49:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a
Validity
Not Before: Apr 19 06:00:33 2026 GMT
Not After : Apr 20 06:00:33 2026 GMT
Subject: CN=af35b141cb668b1368a17a9e943d8942347b4d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ba:74:77:3b:b6:1c:3a:09:9d:34:21:1e:98:
ad:71:65:a4:70:1c:2b:a9:5a:e3:60:4f:cc:8a:42:
a0:21:3c:76:4b:a6:a5:e9:c1:6f:b6:e7:f0:13:76:
7a:2b:fd:0f:50:f5:a3:c7:9d:46:0d:86:ad:18:be:
18:4b:b4:a2:35:d8:a6:25:73:ae:a2:21:89:3b:32:
30:65:82:2e:02:1e:ac:49:69:a4:4e:29:54:17:8c:
5b:38:22:a2:47:88:7a:31:04:75:11:49:18:82:a6:
95:0d:41:70:21:96:99:34:04:af:79:c0:c1:e2:fd:
48:c4:ac:6b:cd:21:34:22:5d:dd:41:42:e2:bd:ed:
d0:7f:e0:98:c9:b5:b4:9f:0b:f0:1b:9a:c7:60:59:
30:ce:1d:6b:dc:6c:2b:c7:0c:f1:e2:eb:2e:4f:e3:
af:48:1f:81:52:e4:c3:2e:78:82:14:b5:01:9a:56:
d9:07:81:47:a8:8b:5c:4d:ab:08:7d:c3:7d:b8:f9:
1b:0a:d4:dd:e7:52:89:b9:f7:d3:99:d5:d1:d4:d6:
ae:4a:b1:99:b4:f8:29:2a:ba:78:d7:ad:25:d8:a3:
fc:32:2d:3d:03:b6:75:f2:ac:11:bf:46:d9:5b:94:
db:e7:04:c6:7d:48:4d:b7:21:2a:51:44:74:f4:0a:
6b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:35:B1:41:CB:66:8B:13:68:A1:7A:9E:94:3D:89:42:34:7B:4D:0A
X509v3 Authority Key Identifier:
keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:c9:6c:36:3e:fd:77:ef:6f:7c:9a:7e:83:d0:61:75:2c:7f:
8b:b3:d9:e5:3c:28:03:99:e5:b1:24:cc:8f:0e:0a:f4:39:33:
1e:b0:f6:1a:24:b4:02:bf:83:47:63:62:12:6b:35:90:ef:7d:
86:c9:42:a3:a0:93:77:93:9e:99:7c:eb:90:0c:cc:a5:88:7f:
83:ff:99:18:f6:0f:ff:0a:87:f5:87:47:f0:de:a1:51:7d:f4:
25:f0:2a:24:58:a3:7d:01:67:ef:3b:21:43:9c:49:b8:d7:db:
23:9c:fc:fe:0f:11:22:d5:78:8a:12:de:39:df:1a:d3:9c:b8:
58:99:92:9c:fd:cc:84:6a:5a:a8:09:fe:c2:f6:6e:84:4b:47:
23:b7:22:ad:30:36:e1:2b:00:23:71:b5:b9:a5:ee:c1:d7:f1:
db:8f:2d:dd:04:ca:fa:63:00:01:23:84:86:95:8c:93:c3:4e:
1f:a3:9f:e7:d2:3f:03:49:27:a3:cd:e8:a7:48:09:e1:74:a1:
ab:b3:7a:49:15:37:20:6b:a3:76:32:34:02:60:89:50:6f:c9:
83:df:5d:3f:32:d2:c8:7f:12:8f:df:62:50:a7:19:db:83:29:
ec:1f:01:38:c5:ee:7a:af:c7:a7:50:e3:70:00:1e:9d:f0:49:
9f:ed:82:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:26:00 2026 by rpki-client