Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
File: AUI61NYpsvgot58ArEA4jje44lI.mft (raw, json)
Hash identifier: cF5oX2+tIKekw2axZT04W1fBE3IfQo37El0niBBfeSU=
Subject key identifier: 22:91:59:1A:32:34:E6:51:6C:DA:F0:70:91:81:B6:BD:0C:D7:67:D3
Authority key identifier: 01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
Certificate issuer: /CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Certificate serial: 019D2704C15D1DF99F4CC032B61D257D4EB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
Manifest number: 14BB
Signing time: Wed 25 Mar 2026 22:01:56 +0000
Manifest this update: Wed 25 Mar 2026 22:01:56 +0000
Manifest next update: Thu 26 Mar 2026 22:01:56 +0000
Files and hashes: 1: AUI61NYpsvgot58ArEA4jje44lI.crl (hash: PqKdwtlxiJBxwNa0EVQi64s6inXzxy6jouxyelj6fQY=)
2: oko0jjQVhM1g4SJmXa1zHjF9DLY.roa (hash: OdA2/Wk2XJh4HpZKtiKeyh0J3e1XxtYP056tIDnTkI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:c1:5d:1d:f9:9f:4c:c0:32:b6:1d:25:7d:4e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Validity
Not Before: Mar 25 22:01:56 2026 GMT
Not After : Mar 26 22:01:56 2026 GMT
Subject: CN=2291591a3234e6516cdaf0709181b6bd0cd767d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:32:4f:c9:0a:ca:bc:5f:be:cd:b0:04:04:
03:a2:8b:26:96:c4:d0:c4:17:26:5d:f2:c0:04:8f:
3c:4d:f8:49:21:d8:06:f0:b6:4b:a0:32:28:7c:60:
54:44:00:e3:b7:89:ed:95:d3:eb:e2:97:35:e5:31:
96:1a:93:48:d7:f0:02:b8:b9:d1:c2:4d:b9:df:48:
0e:6f:c7:31:5d:23:a8:f5:d2:94:d8:47:b5:37:86:
85:a5:cd:97:26:8e:52:e1:31:4b:ca:bd:b1:78:05:
11:04:c9:4e:ab:c3:da:38:79:6a:10:d2:4c:34:aa:
2e:02:cc:56:8a:74:99:5d:0f:84:a5:45:98:49:ce:
a9:95:38:69:2c:eb:17:aa:ac:04:b2:fc:8d:b3:69:
23:53:bd:59:37:b0:b3:86:73:e9:46:9e:93:a6:b4:
15:7c:c5:b3:49:f9:68:c0:64:17:74:96:ab:53:bb:
42:00:44:79:c5:b6:75:ce:10:fb:3e:60:58:34:31:
74:e9:1a:23:2a:85:54:38:a0:e4:2b:55:8c:1f:df:
ba:89:e2:47:9a:7d:17:2a:bb:94:af:12:a2:46:7e:
27:96:89:92:b7:ff:63:53:ed:b4:f3:cf:c1:d7:66:
72:c2:e6:8c:7a:84:28:cd:82:33:51:27:63:16:88:
4d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:91:59:1A:32:34:E6:51:6C:DA:F0:70:91:81:B6:BD:0C:D7:67:D3
X509v3 Authority Key Identifier:
keyid:01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:46:51:59:d3:92:ce:3e:e1:a0:f2:cc:81:7c:b5:d4:f9:83:
60:90:72:f6:a3:43:8c:89:47:d9:37:24:14:ff:4d:ca:68:d1:
d6:f8:8c:68:54:a6:7e:d7:c5:4c:3e:af:56:b2:47:6c:e1:12:
35:08:1a:d9:7c:86:16:0a:7c:8f:21:3b:ad:c5:25:c9:f8:14:
bf:ff:dc:71:14:a4:eb:3f:32:05:ef:5a:e2:c6:2b:55:4e:11:
2b:45:58:e9:4b:23:0f:13:1b:0c:7b:e6:e1:05:77:32:23:8f:
50:85:a3:aa:92:e8:ae:80:1d:7f:94:cf:3d:4a:b5:46:f8:17:
8c:30:17:df:de:96:c6:24:ae:c7:61:d3:2c:08:e7:4c:ea:40:
13:b2:21:74:d7:c1:6d:5d:1c:2f:ed:16:ad:3d:25:16:7e:bc:
1c:d0:72:b1:83:20:95:5e:da:52:c2:46:78:c6:41:ee:fe:a0:
31:c0:d5:7c:96:f7:8c:a3:22:f7:09:7c:ac:32:50:68:b6:b8:
c5:e0:fa:74:8f:f4:0a:6c:bb:92:61:28:c7:1d:26:d0:ad:45:
bf:c2:d3:a5:bf:07:79:ed:b9:3e:c6:73:b0:5e:49:ae:de:6e:
0d:1a:8d:99:be:e7:e3:55:f7:05:4d:22:a0:1a:d2:37:3a:99:
d3:88:b0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:52 2026 by rpki-client