Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: tqemDMKmiHIbFac96+gh0AmpEykIc4k+ocuTrig/AuU=
Subject key identifier: D5:00:CB:7D:9E:9D:DF:B2:67:9D:8F:A1:64:F0:A0:62:F5:76:A3:93
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 019E1DFE1ACF68BE87D616A539AB5FD7E057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 11D2
Signing time: Tue 12 May 2026 21:00:52 +0000
Manifest this update: Tue 12 May 2026 21:00:52 +0000
Manifest next update: Wed 13 May 2026 21:00:52 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: QJPvi4r8uP5+OxxaLA2hvPfBkdc3dWCxb1Z4buqFT+8=)
2: NSYoMgdv_GgQV27_GIPye5U9jPQ.roa (hash: 4AlK45WxtVu086BCXSG5HnwL06CQHoIesX5EAX9HMxU=)
3: RQ8JIGxsT6j17dfeEPWw2-YRi2c.roa (hash: qbacCBbHQjk4PtD2GWcsUuyb/kcc9ZQ6pfK2TjjwNeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:1a:cf:68:be:87:d6:16:a5:39:ab:5f:d7:e0:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: May 12 21:00:52 2026 GMT
Not After : May 13 21:00:52 2026 GMT
Subject: CN=d500cb7d9e9ddfb2679d8fa164f0a062f576a393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f7:db:72:b5:c3:5b:cd:60:e8:7f:87:8f:17:
94:4e:2e:2b:bc:f9:39:f1:6d:c4:42:45:d6:8d:7c:
1e:4c:66:31:05:1e:9a:77:89:9f:df:8a:96:18:52:
6c:ca:d2:b0:26:ef:cd:3f:b4:d2:4b:61:b2:5a:ee:
96:29:fd:52:30:44:c5:36:64:00:f5:ff:b0:0b:62:
e6:e2:79:1d:92:0b:e2:7a:da:0a:56:c0:5e:b1:ff:
e7:f2:33:2f:8a:e4:90:77:e8:c7:e9:db:c0:23:d6:
8a:3f:b9:aa:af:0f:e0:69:29:83:4d:6f:89:55:e6:
49:25:58:88:05:15:7b:ca:22:e4:39:c9:65:77:37:
4a:4e:37:0d:ff:fb:bc:61:07:53:99:46:b9:5b:12:
bd:52:50:eb:01:e5:eb:96:d9:4b:97:c4:8d:51:7f:
d9:67:61:70:1b:56:72:79:79:fa:ab:36:db:1b:d0:
ee:6a:e4:fe:8d:69:70:52:f7:d6:2e:5b:21:bb:4b:
f2:07:55:cf:d2:65:93:06:96:54:17:8c:9e:8c:1f:
97:ac:5f:ca:a4:6c:08:00:91:c0:e3:83:77:fd:3b:
d6:c5:b6:1d:fa:9b:00:4f:d9:01:a3:11:bf:a2:c8:
6a:dc:7c:d2:96:62:e0:1e:b1:83:38:6d:24:10:86:
90:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:00:CB:7D:9E:9D:DF:B2:67:9D:8F:A1:64:F0:A0:62:F5:76:A3:93
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cf:39:38:35:a2:86:85:2e:5c:c1:24:37:ab:1b:e0:40:73:
bc:99:35:ad:19:04:bf:80:79:f2:1f:96:b3:8f:29:05:5c:fe:
15:21:23:84:25:79:2d:dc:98:df:1b:8f:4c:07:d0:90:27:db:
7d:75:d1:df:55:20:67:1e:d0:a1:c5:eb:c7:77:33:c8:b1:93:
ae:71:03:ad:c0:a9:20:b5:d0:0e:74:97:58:a7:dd:c8:ce:e9:
f8:cd:7a:91:ac:d2:03:f9:b6:02:c0:33:db:e5:d3:dc:24:89:
d5:4d:e4:f6:7d:1a:d5:9c:06:46:a9:b4:5e:5a:48:b7:91:5b:
89:69:80:23:3f:88:33:3a:b0:cf:00:f3:e0:23:22:fa:24:b5:
4d:86:8c:fb:c0:d8:a1:47:4d:70:65:0a:a0:e2:b6:dc:be:1b:
24:03:71:d4:bc:1c:f8:22:b5:6d:6a:fd:6a:18:d1:34:9b:c5:
71:59:ba:fb:bb:18:f7:4d:cd:fb:66:92:f4:89:d6:81:cb:5d:
d8:96:6a:d9:30:66:a0:e2:55:42:c3:de:9c:b3:32:0e:0a:53:
e9:d1:fd:a4:43:e8:16:a4:7b:b3:85:e8:0f:a5:4c:e3:f1:70:
e2:47:51:39:3c:ec:28:ed:97:e9:35:56:9c:a9:b8:11:b8:cf:
5a:0c:c2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:43:07 2026 by rpki-client