Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
File: AonuzqJ5QTJX2JCMJVaKvrivhnc.mft (raw, json)
Hash identifier: z72O1NUjBap36gr3WF0bpau9KRZ0nQLat5R34/pwG6k=
Subject key identifier: 08:B9:D9:AB:23:13:B6:41:C6:69:0D:20:D0:FB:D3:DB:1A:7D:18:A4
Authority key identifier: 02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
Certificate issuer: /CN=0289eecea279413257d8908c25568abeb8af8677
Certificate serial: 019E1EA35C03CF293A4795B38639675F3338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
Manifest number: 0E7D
Signing time: Wed 13 May 2026 00:01:22 +0000
Manifest this update: Wed 13 May 2026 00:01:22 +0000
Manifest next update: Thu 14 May 2026 00:01:22 +0000
Files and hashes: 1: AonuzqJ5QTJX2JCMJVaKvrivhnc.crl (hash: fKn4eYSuTDPy/kGnvj0E6fQfXI+Mh57v4jrdgu3fv10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:5c:03:cf:29:3a:47:95:b3:86:39:67:5f:33:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0289eecea279413257d8908c25568abeb8af8677
Validity
Not Before: May 13 00:01:22 2026 GMT
Not After : May 14 00:01:22 2026 GMT
Subject: CN=08b9d9ab2313b641c6690d20d0fbd3db1a7d18a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0c:fe:df:37:00:32:54:bb:90:e9:31:ea:44:
f4:ea:6b:0e:76:c5:8d:7e:db:2a:73:06:24:bf:9f:
97:27:43:8c:69:60:eb:32:c1:1c:77:18:13:c1:d9:
72:9d:76:7c:26:7b:62:62:2c:98:2e:98:68:55:35:
a6:c8:56:b4:6b:26:e3:0b:c6:80:3c:b9:95:05:66:
98:0f:10:61:41:96:0c:21:d7:4a:c4:83:7d:af:4f:
2a:89:ab:50:3d:fc:f7:d8:ad:40:05:92:79:76:2d:
03:c6:ac:63:53:51:ac:e2:29:19:13:d2:78:93:c7:
e0:9b:88:14:b5:c1:bc:1a:e3:0c:11:0d:90:77:91:
32:19:e9:9c:de:1c:06:30:d8:63:5a:f6:2a:8a:f4:
df:87:14:f9:49:2a:8d:ec:74:39:c5:a6:a5:a1:87:
c1:86:46:d8:83:41:98:5d:77:c7:58:d0:78:2d:f4:
8e:59:0c:a2:d1:31:d6:51:69:f4:b0:3a:8a:25:d7:
c9:9b:0e:a5:a2:89:00:19:b9:81:dd:dc:7c:36:7c:
2c:0b:21:79:2b:6e:5f:a7:0e:15:45:cb:09:68:18:
07:58:1c:15:d5:8f:26:cf:91:b1:2f:9c:22:93:ad:
5e:0c:16:57:28:8e:64:05:96:b8:79:93:3f:40:6b:
aa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B9:D9:AB:23:13:B6:41:C6:69:0D:20:D0:FB:D3:DB:1A:7D:18:A4
X509v3 Authority Key Identifier:
keyid:02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8d:e5:d9:30:46:01:a7:88:7f:a5:b1:fb:c1:c4:e2:f9:b2:
d5:ee:f8:3e:07:11:43:aa:9c:44:54:70:e7:b3:f5:c9:82:e7:
fa:fc:23:80:df:24:80:4a:16:b1:a4:d2:da:25:e6:5a:05:a7:
bb:28:ee:9b:f2:4f:3a:8c:5f:b9:e3:29:a8:a9:d7:0d:8a:7a:
f4:e2:43:69:fe:e9:1f:7d:17:6e:7e:ff:bc:7a:21:85:ee:ba:
3c:95:cf:e7:6c:ad:96:31:3f:1f:0a:9d:f1:88:7f:7f:fe:a0:
38:ac:a2:68:bc:e3:2f:fc:d5:2a:6b:5f:47:02:0b:78:11:b6:
9c:8d:96:c9:e9:92:c3:c4:6e:e0:4e:61:8c:d5:1a:75:ac:1c:
72:1c:1b:b2:27:e6:8d:9f:83:35:66:0b:56:78:e3:d5:f8:d3:
22:99:ef:9d:76:b9:cd:41:ce:84:a7:43:29:48:3b:8a:28:a3:
86:e0:4c:aa:4e:1c:b0:4f:a1:42:05:16:c2:ce:04:98:9a:e2:
75:77:e3:17:30:85:41:42:22:c8:1c:1a:c8:f4:20:84:88:af:
b0:66:af:4e:46:8b:50:6f:95:7e:ec:78:10:a4:df:c6:9f:fb:
f9:8b:45:cd:9b:ce:8a:5a:9b:80:34:3e:f5:b4:76:fc:71:23:
38:5c:79:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eo1wDzyk6R5WzhjlnXzM4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyODllZWNlYTI3OTQxMzI1N2Q4OTA4YzI1NTY4YWJlYjhh
Zjg2NzcwHhcNMjYwNTEzMDAwMTIyWhcNMjYwNTE0MDAwMTIyWjAzMTEwLwYDVQQD
EygwOGI5ZDlhYjIzMTNiNjQxYzY2OTBkMjBkMGZiZDNkYjFhN2QxOGE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwz+3zcAMlS7kOkx6kT06msOdsWN
ftsqcwYkv5+XJ0OMaWDrMsEcdxgTwdlynXZ8JntiYiyYLphoVTWmyFa0aybjC8aA
PLmVBWaYDxBhQZYMIddKxIN9r08qiatQPfz32K1ABZJ5di0DxqxjU1Gs4ikZE9J4
k8fgm4gUtcG8GuMMEQ2Qd5EyGemc3hwGMNhjWvYqivTfhxT5SSqN7HQ5xaaloYfB
hkbYg0GYXXfHWNB4LfSOWQyi0THWUWn0sDqKJdfJmw6lookAGbmB3dx8NnwsCyF5
K25fpw4VRcsJaBgHWBwV1Y8mz5GxL5wik61eDBZXKI5kBZa4eZM/QGuq0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAi52asjE7ZBxmkNIND709safRikMB8GA1UdIwQY
MBaAFAKJ7s6ieUEyV9iQjCVWir64r4Z3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8yMmI4OGItMWZiZi00MGY0LWFkYTUt
MjcwOTI5ZDA1MTkyLzEvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8yMmI4OGItMWZiZi00MGY0LWFkYTUtMjcwOTI5ZDA1MTky
LzEvQW9udXpxSjVRVEpYMkpDTUpWYUt2cml2aG5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP43l2TBG
AaeIf6Wx+8HE4vmy1e74PgcRQ6qcRFRw57P1yYLn+vwjgN8kgEoWsaTS2iXmWgWn
uyjum/JPOoxfueMpqKnXDYp69OJDaf7pH30Xbn7/vHohhe66PJXP52ytljE/Hwqd
8Yh/f/6gOKyiaLzjL/zVKmtfRwILeBG2nI2WyemSw8Ru4E5hjNUadawcchwbsifm
jZ+DNWYLVnjj1fjTIpnvnXa5zUHOhKdDKUg7iiijhuBMqk4csE+hQgUWws4EmJri
dXfjFzCFQUIiyBwayPQghIivsGavTkaLUG+Vfux4EKTfxp/7+YtFzZvOilqbgDQ+
9bR2/HEjOFx5lg==
-----END CERTIFICATE-----
Generated at Wed May 13 09:22:18 2026 by rpki-client