Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: PJ07BdnWFMSmHKjDYqJmVM+gFNj/06h+pA4xlhhUJbw=
Subject key identifier: 70:E2:DF:9A:91:37:33:5E:1A:CB:AA:D0:F6:10:25:D1:1E:3F:0C:C0
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 019D2884AB47E316BF53307EEAAE8B6A11D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 08C0
Signing time: Thu 26 Mar 2026 05:01:16 +0000
Manifest this update: Thu 26 Mar 2026 05:01:16 +0000
Manifest next update: Fri 27 Mar 2026 05:01:16 +0000
Files and hashes: 1: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: +NrCwSBtMRGiLCBUMCWjSlO+gnEvrBGz6sR/qh9oAvw=)
2: mkJVv52KXzS0LGki_sJR1Wvh3lE.roa (hash: wCY7SDIJn73GbW1ubNf3mR9Y3+r8QLN2wbBS3yUgUpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:ab:47:e3:16:bf:53:30:7e:ea:ae:8b:6a:11:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Mar 26 05:01:16 2026 GMT
Not After : Mar 27 05:01:16 2026 GMT
Subject: CN=70e2df9a9137335e1acbaad0f61025d11e3f0cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3f:98:ad:2b:15:e9:bd:bc:dc:7d:08:85:fe:
38:ab:2a:da:a1:a0:c6:5d:b6:2b:71:47:8f:77:ff:
fd:f9:bc:13:1d:a5:a5:9e:57:ca:a3:e0:55:53:70:
f1:a1:ff:8a:80:19:27:0b:d0:b6:3f:17:18:dd:14:
00:cc:f0:ee:9a:1f:e9:96:81:3a:d4:9b:f1:8d:4b:
b2:c0:2c:71:17:5f:86:c4:b2:d0:f0:c7:a3:52:d9:
9d:37:46:45:b8:a8:ff:60:59:c0:66:2d:42:08:60:
ea:fc:87:e6:d5:73:8b:0c:9a:c3:ba:79:e4:7e:cb:
60:50:e9:44:b1:82:d1:2d:92:aa:5a:5c:b6:02:ac:
74:ab:f5:24:56:85:2c:13:77:0e:20:a9:c7:2b:d4:
36:95:f9:2a:68:d2:d4:96:65:5a:b7:8f:46:24:5d:
a6:be:4d:28:b2:86:97:3a:3c:59:ca:5d:50:91:a7:
a2:32:ea:7f:4f:b7:e3:28:00:23:53:77:e4:35:2c:
a9:b5:0e:11:e4:e9:06:2b:4f:5d:5a:ff:66:97:51:
ac:53:89:2b:ca:b3:3c:49:55:a5:e3:91:a8:74:6c:
3f:bf:38:f3:d9:46:b2:07:e4:c8:24:72:54:55:ae:
e2:64:8b:35:5d:00:06:60:16:d7:8b:01:fb:a7:c3:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E2:DF:9A:91:37:33:5E:1A:CB:AA:D0:F6:10:25:D1:1E:3F:0C:C0
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ce:ef:94:35:56:c0:5d:54:dc:11:36:2f:39:a6:1d:9f:0e:
6f:44:e2:ff:de:af:87:ea:94:d0:2b:ab:c7:19:56:b4:45:d6:
3a:26:16:92:7a:a7:f3:f0:26:9c:9b:95:f3:8a:cf:34:2a:c5:
79:d2:73:03:f2:92:12:77:a6:b3:da:38:ab:7f:c1:62:14:c2:
09:4c:9f:8f:4a:a1:84:7f:21:32:4f:31:6b:e3:58:0e:51:23:
55:22:09:4f:ec:7e:ba:4c:52:34:4c:9a:32:5a:94:b1:b8:e7:
3f:56:19:27:f9:b3:99:7b:a8:e7:06:ad:c4:bb:0f:f2:cf:87:
41:c1:26:dd:05:a9:58:0b:71:24:4f:07:0d:d8:4d:5a:75:29:
ee:cc:b3:98:cb:70:0e:9d:44:7c:6d:80:31:3a:e9:0d:e4:fc:
3c:a3:5c:9f:02:c3:89:cf:10:2e:7d:f6:0e:45:99:de:fc:a0:
0c:b1:44:b2:22:1e:0a:65:81:4b:f9:6f:2b:3b:83:3d:38:f8:
4f:90:0a:ec:b9:00:96:4f:69:85:61:cf:c0:0f:cd:17:ba:3c:
f1:b6:d6:8a:37:27:a4:21:10:ff:40:2b:a8:18:14:01:96:37:
d6:da:52:d0:17:1a:65:3a:a7:67:c9:6d:77:e0:a0:ce:61:e8:
2b:23:24:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohKtH4xa/UzB+6q6LahHQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODI5YjQ0OGFkOGY5NjNhMGVjZmY4YjIyMTZjYTljZTlj
ZTZmNDEwHhcNMjYwMzI2MDUwMTE2WhcNMjYwMzI3MDUwMTE2WjAzMTEwLwYDVQQD
Eyg3MGUyZGY5YTkxMzczMzVlMWFjYmFhZDBmNjEwMjVkMTFlM2YwY2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6D+YrSsV6b283H0Ihf44qyraoaDG
XbYrcUePd//9+bwTHaWlnlfKo+BVU3Dxof+KgBknC9C2PxcY3RQAzPDumh/ploE6
1JvxjUuywCxxF1+GxLLQ8MejUtmdN0ZFuKj/YFnAZi1CCGDq/Ifm1XOLDJrDunnk
fstgUOlEsYLRLZKqWly2Aqx0q/UkVoUsE3cOIKnHK9Q2lfkqaNLUlmVat49GJF2m
vk0osoaXOjxZyl1QkaeiMup/T7fjKAAjU3fkNSyptQ4R5OkGK09dWv9ml1GsU4kr
yrM8SVWl45GodGw/vzjz2UayB+TIJHJUVa7iZIs1XQAGYBbXiwH7p8OarQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHDi35qRNzNeGsuq0PYQJdEePwzAMB8GA1UdIwQY
MBaAFGmCm0SK2PljoOz/iyIWypzpzm9BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlLYlJJclktV09nN1AtTEloYktuT25PYjBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTBlMmYtZGVjYy00ODg3LThlMDMt
ZTc2YjU0NDY2NjU0LzEvYVlLYlJJclktV09nN1AtTEloYktuT25PYjBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC81OTBlMmYtZGVjYy00ODg3LThlMDMtZTc2YjU0NDY2NjU0
LzEvYVlLYlJJclktV09nN1AtTEloYktuT25PYjBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARM7vlDVW
wF1U3BE2LzmmHZ8Ob0Ti/96vh+qU0CurxxlWtEXWOiYWknqn8/AmnJuV84rPNCrF
edJzA/KSEnems9o4q3/BYhTCCUyfj0qhhH8hMk8xa+NYDlEjVSIJT+x+ukxSNEya
MlqUsbjnP1YZJ/mzmXuo5watxLsP8s+HQcEm3QWpWAtxJE8HDdhNWnUp7syzmMtw
Dp1EfG2AMTrpDeT8PKNcnwLDic8QLn32DkWZ3vygDLFEsiIeCmWBS/lvKzuDPTj4
T5AK7LkAlk9phWHPwA/NF7o88bbWijcnpCEQ/0ArqBgUAZY31tpS0BcaZTqnZ8lt
d+CgzmHoKyMkuw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:11:02 2026 by rpki-client