Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
File: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft (raw, json)
Hash identifier: yDEA8Ka8V7Eco7PgFkd9XqWZxHuGDak4MzZEIWsHwMw=
Subject key identifier: 06:D8:16:7D:AF:C7:A5:7E:AC:AA:E1:E6:62:75:87:76:1C:71:46:20
Authority key identifier: 02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0
Certificate issuer: /CN=02af3b635354b9757b9f2d68ea5d58c50742aab0
Certificate serial: 019D29971EC2FD8BD2FCBFC5C9BD0EB5B77D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
Manifest number: 0122
Signing time: Thu 26 Mar 2026 10:01:02 +0000
Manifest this update: Thu 26 Mar 2026 10:01:02 +0000
Manifest next update: Fri 27 Mar 2026 10:01:02 +0000
Files and hashes: 1: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl (hash: 7jenHpiKsKqVapASV6e3qvoOvik7HOhqFCy/LeOpCNQ=)
2: NGyMHcBWRIkoIoJ_ncGJDqHCOTQ.roa (hash: 7EeVGxOBQ9n5FgZRMYhe7gBwkfF77z2pQwSgFDZNEOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:1e:c2:fd:8b:d2:fc:bf:c5:c9:bd:0e:b5:b7:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02af3b635354b9757b9f2d68ea5d58c50742aab0
Validity
Not Before: Mar 26 10:01:02 2026 GMT
Not After : Mar 27 10:01:02 2026 GMT
Subject: CN=06d8167dafc7a57eacaae1e6627587761c714620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:36:37:5a:c7:fd:10:20:e2:c2:d7:d6:c7:
0a:a8:3a:77:06:da:3d:d4:b3:4e:8e:5d:ed:79:21:
af:2f:a2:d4:cf:95:6b:cc:cc:7e:fa:0d:3d:0d:b0:
9c:83:ca:53:08:bf:83:89:4e:2d:b2:5a:4f:c0:1a:
6b:4f:88:f9:ea:80:39:0b:f3:38:5b:7a:f8:ce:71:
47:d3:f4:06:e5:be:0b:98:18:39:33:13:60:20:67:
1b:32:b1:da:cf:0c:d8:d1:f8:1a:58:35:e4:53:e5:
8a:d2:3c:c7:60:58:c9:22:b9:a0:93:01:c5:32:9e:
c9:5d:65:60:f6:4b:3a:78:ab:2b:2d:19:8a:40:ae:
f3:3f:0b:1a:6e:12:63:fb:c3:b6:bd:96:57:ea:05:
73:e1:19:1f:c4:92:af:22:61:c6:7e:a5:fb:93:d0:
36:16:c5:8c:ce:62:20:0d:df:d5:26:e6:92:aa:99:
2d:8b:00:1a:4d:41:62:07:8b:1c:bc:49:70:80:92:
38:a7:df:8d:e6:a6:6f:f7:0c:7e:f6:9c:c4:b0:07:
09:9d:9e:55:7c:ff:75:65:82:16:67:c6:5f:2d:ad:
3e:47:77:be:03:d8:06:06:2e:65:9e:0a:ad:a3:cd:
27:00:34:c6:59:12:f3:83:2f:9a:3b:ea:fb:97:eb:
a8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D8:16:7D:AF:C7:A5:7E:AC:AA:E1:E6:62:75:87:76:1C:71:46:20
X509v3 Authority Key Identifier:
keyid:02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:49:5f:6e:83:10:d7:82:6c:c8:3e:9f:04:10:c5:86:6c:3d:
6a:94:aa:5f:a7:40:e3:51:bd:ff:d1:82:db:16:d1:e3:5d:90:
25:8e:97:3f:66:5a:6b:3b:23:72:14:07:c1:25:87:02:2d:05:
0e:5e:0a:4a:91:20:4b:2d:9c:b3:9b:1d:65:60:92:56:f6:29:
f6:b8:12:98:65:cf:8b:33:d8:fc:99:4b:1d:8c:6a:f5:7e:c8:
2c:17:ee:e0:44:84:9d:11:f5:35:25:0b:9d:7e:d1:c2:38:c0:
60:1c:fb:fb:08:4b:aa:bf:6e:a5:ed:c6:cb:4e:95:18:17:0e:
b4:03:05:0b:98:cd:71:9c:f0:5d:87:14:ee:eb:b8:9b:44:f9:
f1:1b:7a:38:46:d1:9a:fb:5d:ba:26:32:48:cb:aa:43:6d:04:
06:9f:53:fa:41:05:a3:df:07:43:c4:4c:12:74:ec:e5:05:82:
9d:c2:87:e5:1a:a8:70:b5:b3:46:1c:a9:0f:4e:e6:fd:9a:66:
2f:f5:b9:19:20:ed:2a:bb:14:82:0e:8a:cb:2c:a4:21:20:cd:
1c:3c:8e:5e:7a:1c:81:1f:68:32:f6:5a:3f:32:c1:67:bb:e9:
be:55:d9:f0:e9:5c:02:7c:f6:56:56:15:46:ee:0b:ee:d1:3e:
91:a3:69:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0plx7C/YvS/L/Fyb0Otbd9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYWYzYjYzNTM1NGI5NzU3YjlmMmQ2OGVhNWQ1OGM1MDc0
MmFhYjAwHhcNMjYwMzI2MTAwMTAyWhcNMjYwMzI3MTAwMTAyWjAzMTEwLwYDVQQD
EygwNmQ4MTY3ZGFmYzdhNTdlYWNhYWUxZTY2Mjc1ODc3NjFjNzE0NjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJo2N1rH/RAg4sLX1scKqDp3Bto9
1LNOjl3teSGvL6LUz5VrzMx++g09DbCcg8pTCL+DiU4tslpPwBprT4j56oA5C/M4
W3r4znFH0/QG5b4LmBg5MxNgIGcbMrHazwzY0fgaWDXkU+WK0jzHYFjJIrmgkwHF
Mp7JXWVg9ks6eKsrLRmKQK7zPwsabhJj+8O2vZZX6gVz4RkfxJKvImHGfqX7k9A2
FsWMzmIgDd/VJuaSqpktiwAaTUFiB4scvElwgJI4p9+N5qZv9wx+9pzEsAcJnZ5V
fP91ZYIWZ8ZfLa0+R3e+A9gGBi5lngqto80nADTGWRLzgy+aO+r7l+uoWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAbYFn2vx6V+rKrh5mJ1h3YccUYgMB8GA1UdIwQY
MBaAFAKvO2NTVLl1e58taOpdWMUHQqqwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXE4N1kxTlV1WFY3bnkxbzZsMVl4UWRDcXJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80M2Q0Y2EtODJjYi00MTRhLWIzOWUt
ODZmODhjZTQ0NzkzLzEvQXE4N1kxTlV1WFY3bnkxbzZsMVl4UWRDcXJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC80M2Q0Y2EtODJjYi00MTRhLWIzOWUtODZmODhjZTQ0Nzkz
LzEvQXE4N1kxTlV1WFY3bnkxbzZsMVl4UWRDcXJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXElfboMQ
14JsyD6fBBDFhmw9apSqX6dA41G9/9GC2xbR412QJY6XP2ZaazsjchQHwSWHAi0F
Dl4KSpEgSy2cs5sdZWCSVvYp9rgSmGXPizPY/JlLHYxq9X7ILBfu4ESEnRH1NSUL
nX7RwjjAYBz7+whLqr9upe3Gy06VGBcOtAMFC5jNcZzwXYcU7uu4m0T58Rt6OEbR
mvtduiYySMuqQ20EBp9T+kEFo98HQ8RMEnTs5QWCncKH5RqocLWzRhypD07m/Zpm
L/W5GSDtKrsUgg6KyyykISDNHDyOXnocgR9oMvZaPzLBZ7vpvlXZ8OlcAnz2VlYV
Ru4L7tE+kaNp4w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:09:15 2026 by rpki-client