Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
File: AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft (raw, json)
Hash identifier: 86S0DF343jaxIWWbtUt/X5s33uADOqJMd/+csF/A+Tc=
Subject key identifier: 11:91:C4:7C:C2:E0:91:C0:F5:43:92:FC:A6:C3:7F:D1:A2:23:15:1E
Authority key identifier: 03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86
Certificate issuer: /CN=0321bfea0305c48e949e6c249f4810b46905c886
Certificate serial: 019D27721E16965C976B2FA03BC11E0DAC5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 00:01:23 +0000
Manifest this update: Thu 26 Mar 2026 00:01:23 +0000
Manifest next update: Fri 27 Mar 2026 00:01:23 +0000
Files and hashes: 1: AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl (hash: sYUyfpqTP5hRzrlnRJPj7ARZGYVQLNzRwOZh5onOqgU=)
2: WAWNpiY2vwMuD_j8ek6kZ6L9jDw.roa (hash: Aqg/w+ScPNsoJT+d0QU5LliDLOZxPSYw1XwmYdmE6pI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:1e:16:96:5c:97:6b:2f:a0:3b:c1:1e:0d:ac:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321bfea0305c48e949e6c249f4810b46905c886
Validity
Not Before: Mar 26 00:01:23 2026 GMT
Not After : Mar 27 00:01:23 2026 GMT
Subject: CN=1191c47cc2e091c0f54392fca6c37fd1a223151e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:ff:20:e2:58:fe:5a:de:c0:5c:cd:ae:44:
d8:e1:2d:46:35:2f:4e:d3:08:a7:2c:0c:75:59:1a:
5c:84:55:dc:aa:d9:62:24:0a:e9:7d:3d:d4:bb:16:
b9:38:00:da:a7:cc:84:78:62:d1:a6:53:ed:a2:4e:
8c:e1:30:0f:98:e2:ae:39:d7:d5:41:c7:48:e7:5b:
c3:5d:cd:ab:57:38:22:eb:d4:cb:48:a8:56:df:b9:
5b:ed:3a:47:1b:22:5d:68:95:20:e9:47:7b:05:76:
38:f9:3c:76:05:bb:8e:91:a4:06:f0:66:a0:81:38:
16:2e:3d:c2:a9:53:1c:05:76:e6:38:0d:79:24:84:
32:af:12:35:1e:90:10:ab:c5:ee:60:1f:af:a3:cd:
00:33:16:7a:c3:bd:8e:48:74:7d:17:ca:30:43:c9:
77:c3:ed:12:bc:4e:05:42:f3:2c:41:4a:60:dc:95:
6f:5b:21:ad:78:46:ad:b5:64:62:c1:43:9b:f0:a5:
e3:fd:2c:41:33:d9:75:22:5a:b3:46:9e:d9:2d:96:
6b:6e:8e:34:ed:b1:73:00:fd:f1:51:34:72:69:09:
a9:53:f5:85:17:ee:94:ad:78:a9:8a:02:61:ed:a5:
99:dd:a9:63:f2:a3:8c:36:3d:f1:f4:80:a9:26:66:
32:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:91:C4:7C:C2:E0:91:C0:F5:43:92:FC:A6:C3:7F:D1:A2:23:15:1E
X509v3 Authority Key Identifier:
keyid:03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:4a:e1:8f:04:75:aa:f6:29:5b:ab:e3:bd:43:4d:63:d5:c0:
d8:88:5b:f3:fd:cd:ae:e0:d1:6a:21:56:75:d6:23:7e:e2:02:
e4:1c:a4:d4:d7:7a:88:ef:02:54:10:7e:aa:7c:52:97:a7:a9:
d7:60:97:43:d9:d5:23:ac:95:0b:34:bb:9e:3e:68:cd:39:5b:
a1:c2:32:01:af:d3:3d:b7:59:aa:42:7b:d2:2b:52:79:d4:4e:
4e:bf:3a:d0:d9:3b:de:ea:f2:8d:01:67:79:2a:53:6f:e1:21:
f0:f2:35:f4:fe:7b:e8:e3:d7:f7:35:64:08:67:24:3f:bb:a0:
d4:82:de:44:60:d3:9d:77:7b:a3:4e:c3:b8:43:04:7a:51:b1:
28:5a:c4:1f:57:47:88:c0:39:7b:26:40:69:f4:86:bd:4d:dd:
7c:e1:1d:07:f0:a3:00:7d:69:fa:35:99:ea:9a:31:54:da:4e:
68:37:24:1c:f1:12:bd:93:7a:cd:9f:63:25:f6:ba:cd:b1:d3:
b0:23:e6:28:7d:0e:ce:ae:fd:bc:94:8a:ae:b1:1a:01:10:99:
db:15:3d:25:6d:92:3f:40:b4:3f:21:60:de:22:d2:9e:be:98:
ca:1a:2f:81:6e:be:d0:72:69:7e:af:28:04:32:61:46:1f:e8:
85:f9:5c:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nch4WllyXay+gO8EeDaxeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMjFiZmVhMDMwNWM0OGU5NDllNmMyNDlmNDgxMGI0Njkw
NWM4ODYwHhcNMjYwMzI2MDAwMTIzWhcNMjYwMzI3MDAwMTIzWjAzMTEwLwYDVQQD
EygxMTkxYzQ3Y2MyZTA5MWMwZjU0MzkyZmNhNmMzN2ZkMWEyMjMxNTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsx3/IOJY/lrewFzNrkTY4S1GNS9O
0winLAx1WRpchFXcqtliJArpfT3Uuxa5OADap8yEeGLRplPtok6M4TAPmOKuOdfV
QcdI51vDXc2rVzgi69TLSKhW37lb7TpHGyJdaJUg6Ud7BXY4+Tx2BbuOkaQG8Gag
gTgWLj3CqVMcBXbmOA15JIQyrxI1HpAQq8XuYB+vo80AMxZ6w72OSHR9F8owQ8l3
w+0SvE4FQvMsQUpg3JVvWyGteEattWRiwUOb8KXj/SxBM9l1IlqzRp7ZLZZrbo40
7bFzAP3xUTRyaQmpU/WFF+6UrXipigJh7aWZ3alj8qOMNj3x9ICpJmYyAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBGRxHzC4JHA9UOS/KbDf9GiIxUeMB8GA1UdIwQY
MBaAFAMhv+oDBcSOlJ5sJJ9IELRpBciGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMt
NTYwYzllN2MwNzQ3LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMtNTYwYzllN2MwNzQ3
LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATUrhjwR1
qvYpW6vjvUNNY9XA2Ihb8/3NruDRaiFWddYjfuIC5Byk1Nd6iO8CVBB+qnxSl6ep
12CXQ9nVI6yVCzS7nj5ozTlbocIyAa/TPbdZqkJ70itSedROTr860Nk73uryjQFn
eSpTb+Eh8PI19P576OPX9zVkCGckP7ug1ILeRGDTnXd7o07DuEMEelGxKFrEH1dH
iMA5eyZAafSGvU3dfOEdB/CjAH1p+jWZ6poxVNpOaDckHPESvZN6zZ9jJfa6zbHT
sCPmKH0Ozq79vJSKrrEaARCZ2xU9JW2SP0C0PyFg3iLSnr6YyhovgW6+0HJpfq8o
BDJhRh/ohflcfg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:36:53 2026 by rpki-client