Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: fw5mqVOIIh3rV+ViiGSD/YNdpg4pMcogQVdrRCr7TQk=
Subject key identifier: A8:F1:CF:87:8D:A1:69:5B:A1:42:E1:D4:9E:A6:0F:9C:25:BB:41:1A
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 019E1E35E1CCDB79FC3D441CDCE6305BF8D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 1596
Signing time: Tue 12 May 2026 22:01:48 +0000
Manifest this update: Tue 12 May 2026 22:01:48 +0000
Manifest next update: Wed 13 May 2026 22:01:48 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: Y7lxpY5vc35mNAd0Meu7thNB0r6c9FomWfrH1KPjN5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:e1:cc:db:79:fc:3d:44:1c:dc:e6:30:5b:f8:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: May 12 22:01:48 2026 GMT
Not After : May 13 22:01:48 2026 GMT
Subject: CN=a8f1cf878da1695ba142e1d49ea60f9c25bb411a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:ae:fd:95:9b:69:76:a6:19:dc:38:83:ee:
1a:69:19:77:58:d6:e7:65:6f:e5:d8:4a:5f:c8:71:
80:7e:01:69:be:a3:8c:da:0a:b2:74:50:85:c0:40:
5a:90:71:0e:7c:85:72:8a:49:85:40:de:ac:5e:4b:
16:78:a2:da:57:90:ea:3f:89:9f:ac:d5:ad:c6:d4:
85:1e:6c:c8:8e:7c:15:a4:fb:32:62:6d:51:ec:cc:
9a:bb:ed:2f:f0:c2:b0:a5:d2:58:77:25:22:fa:ba:
41:64:6a:25:a1:2e:93:81:44:72:ac:c5:d6:24:b1:
e9:43:ef:9c:f5:a2:fb:5c:8f:ed:21:94:59:8e:19:
50:f2:db:fb:87:43:87:0d:c3:fa:a3:18:8e:81:ae:
e0:ce:93:05:25:14:d7:c4:f9:8f:ca:05:45:b0:94:
ea:f0:b1:ab:d2:14:1d:fd:bb:69:76:d2:24:09:c6:
57:a7:a6:91:94:b2:78:b0:e7:89:f9:51:10:9e:bf:
3e:9b:dc:44:4f:1c:cc:62:47:e0:af:c1:a3:f6:36:
71:a1:cf:b1:5b:72:52:99:be:d0:e6:3b:b9:48:83:
8c:b3:8b:6d:d4:e6:72:11:c7:8c:86:3b:e7:92:a0:
01:87:9d:36:35:fc:dc:08:89:4b:45:e9:54:4a:6c:
6e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F1:CF:87:8D:A1:69:5B:A1:42:E1:D4:9E:A6:0F:9C:25:BB:41:1A
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:ce:6b:68:2e:1b:82:0a:71:8c:77:59:af:dd:3e:fe:23:a2:
7f:b2:55:2c:e5:a0:b1:26:d4:06:1b:e3:7d:a7:c6:ca:4d:58:
a0:64:d8:7c:75:5c:23:fe:84:17:46:4d:18:6d:39:90:73:dc:
5a:2f:ee:b0:1f:4c:b9:4c:9d:57:c1:17:4b:81:73:59:fd:8b:
69:c8:28:fe:e2:d7:18:b7:77:f9:68:c8:95:5b:33:4b:f8:96:
d5:1e:0b:a3:c4:19:d1:a4:5b:3d:e5:34:c3:51:38:ec:50:77:
45:23:ce:3d:bd:40:d2:ff:10:83:ed:02:90:d3:02:86:f3:fe:
b5:56:5e:1c:18:e0:bc:81:76:50:5a:74:4d:08:58:9f:97:97:
99:8e:da:85:62:90:22:8c:9a:b1:0c:f4:90:8e:55:2a:a9:91:
b4:b2:d7:02:9f:eb:34:7c:7d:2a:97:65:db:da:b2:57:df:be:
6a:41:6e:de:3b:5b:76:af:4e:8c:60:b6:02:cf:c2:55:2a:80:
73:c0:5b:e7:a4:c6:1e:89:ed:2a:a4:de:6f:0a:de:8a:cc:b3:
7b:a9:eb:c6:71:de:aa:57:b7:36:77:0b:83:00:6d:06:06:ac:
bc:93:48:5d:92:8c:29:2b:a5:66:fa:07:a1:34:06:f7:65:58:
60:b5:52:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:02:23 2026 by rpki-client