Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: accQNj/sYh1jp2Nog/1qTFJYeEVq0x6XiuFZG1pzLAI=
Subject key identifier: C0:30:54:1D:43:B5:D2:6E:F9:AD:49:2A:75:1C:F0:BD:A4:53:F8:10
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 019D28849BBBEA2A4404000D742D46FB85C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0D39
Signing time: Thu 26 Mar 2026 05:01:12 +0000
Manifest this update: Thu 26 Mar 2026 05:01:12 +0000
Manifest next update: Fri 27 Mar 2026 05:01:12 +0000
Files and hashes: 1: SDv1pmvtKKy8j5zdxmiuQfAHvKA.roa (hash: la1FbIJeldqJDtutGbiRvWT587OJLuf+NXuNKZUoghY=)
2: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: cXFkga00cswSuTvbe1eWYHI08uvZOKUbVH7CAJ+plG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:9b:bb:ea:2a:44:04:00:0d:74:2d:46:fb:85:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Mar 26 05:01:12 2026 GMT
Not After : Mar 27 05:01:12 2026 GMT
Subject: CN=c030541d43b5d26ef9ad492a751cf0bda453f810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a5:d1:7c:ee:81:79:85:7e:e8:08:4c:bc:93:
fd:f6:7d:0b:de:ee:f2:96:39:22:b7:97:d0:62:36:
c9:ec:02:d9:04:f3:46:7c:b1:62:6e:72:fd:93:21:
b2:f2:c4:07:45:b7:da:31:07:2e:9e:2d:aa:66:94:
f6:74:68:9f:d4:12:87:bf:4b:0b:b6:e3:80:6e:85:
8f:d8:c4:b5:0b:f3:e2:70:1b:f7:dd:a7:84:7a:0d:
5e:1f:f4:82:e4:ed:25:e3:4a:0b:ca:82:e4:1e:f5:
ad:d8:2b:8b:b3:dd:49:28:b6:eb:6f:6c:0a:74:2e:
7f:c7:15:d8:6b:69:ff:c6:0c:4c:aa:47:f4:ff:af:
60:a2:74:39:a8:e5:71:51:83:08:74:c7:2e:a1:11:
71:16:98:f8:db:8b:4e:df:f1:df:7a:b1:e6:73:af:
11:24:6a:e5:e7:fa:b6:f8:8e:bc:fa:88:af:d4:0b:
3b:29:f4:28:f2:3f:32:94:82:63:ae:cb:cb:43:89:
75:8e:f3:1a:ae:3c:2d:64:bc:b0:ca:ca:3a:14:6d:
e6:bd:f3:de:0f:b7:87:67:6d:85:6f:95:fd:61:5e:
39:b2:6c:66:c2:fb:da:d2:04:c2:50:63:74:0b:22:
83:6b:49:36:f9:10:1c:bd:6e:8e:9d:20:e2:dc:47:
d6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:30:54:1D:43:B5:D2:6E:F9:AD:49:2A:75:1C:F0:BD:A4:53:F8:10
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:23:02:e6:02:c8:fc:95:17:81:41:7f:b2:a7:24:a3:9a:21:
71:41:8a:da:e1:45:bb:09:ab:93:2b:5a:90:3b:07:02:af:b7:
5c:c5:29:6b:e7:e8:6a:d8:9e:61:e2:62:89:f8:43:ed:b9:57:
97:43:61:d1:46:f7:56:01:0d:13:06:92:c9:af:40:4b:78:0f:
44:b5:94:e4:09:d9:f9:0a:a7:1b:4d:58:8e:2c:a7:cf:2e:1c:
01:31:8b:67:59:cb:ff:d4:5c:0a:10:c2:81:04:37:29:60:3d:
21:36:a9:db:63:d9:fe:9c:58:98:ba:8e:a2:a5:a8:55:9a:79:
0f:25:74:5e:64:a5:c6:36:6d:dd:ba:08:2e:5a:58:43:f9:31:
57:26:15:11:2e:32:54:b1:b8:95:7a:e0:01:4c:12:d2:93:48:
ba:6c:60:93:4f:73:24:ac:f8:6a:d9:81:e7:c3:00:3d:2d:49:
37:bd:a3:f7:46:67:3c:c9:10:f4:e9:ba:89:e4:13:87:ef:4a:
d0:a7:1b:d7:88:e4:c4:6d:86:93:8e:6c:db:cd:28:e4:ca:5c:
c0:7c:99:33:6b:c5:51:c9:6a:94:2c:13:a1:13:11:6f:49:94:
5f:5b:88:83:7c:c9:8e:57:43:b9:54:3c:e3:2b:d4:7d:bf:67:
7b:fd:c6:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:29:08 2026 by rpki-client