Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: rnZMT1u6vWpLaIdROwv6LiAsmFuvKGmzu0Gs7QLRwxY=
Subject key identifier: E1:41:11:BF:7F:20:6D:D2:51:B5:07:BE:EF:56:64:78:96:22:20:70
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 019D28BB899C3209877E4A9D51E163EC959A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0B2C
Signing time: Thu 26 Mar 2026 06:01:12 +0000
Manifest this update: Thu 26 Mar 2026 06:01:12 +0000
Manifest next update: Fri 27 Mar 2026 06:01:12 +0000
Files and hashes: 1: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: ik41PZecVL+9HzU1oyCcjVQnclOy2c/fOf8bPFmHaoo=)
2: MaRtt04jowFFk86_uuutN8hcKss.roa (hash: fZU76DAwqdxnrxuVOqFEOQy5RWDLvAlUDG+K/0ngLTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:89:9c:32:09:87:7e:4a:9d:51:e1:63:ec:95:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Mar 26 06:01:12 2026 GMT
Not After : Mar 27 06:01:12 2026 GMT
Subject: CN=e14111bf7f206dd251b507beef56647896222070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9d:be:49:ce:54:41:4d:0b:25:aa:75:b1:4b:
85:ea:3d:9a:61:96:d4:f6:f0:f1:4e:d7:5d:25:35:
e6:c4:3c:37:58:6e:e1:4f:25:c2:3c:ec:c6:31:72:
16:09:7a:83:c0:47:9a:05:28:a4:f2:ce:d3:1a:89:
88:82:b4:07:57:b9:1d:33:a1:45:1f:20:5a:db:ab:
21:3b:20:04:9f:12:9a:56:4c:ed:ed:88:2e:ba:bd:
2e:aa:3b:6c:af:1c:95:46:4c:26:d8:d6:d6:11:cd:
ac:cd:ab:7e:dd:a1:0d:40:c1:1f:a7:6a:95:05:d4:
c3:fb:98:ce:86:35:8e:4d:d3:6e:b1:6a:99:dd:b1:
60:45:c0:f6:d5:83:62:c4:04:5e:5c:b6:48:31:6f:
34:4d:a1:9b:3e:52:ac:64:bb:50:dc:29:f8:68:fc:
58:0f:c1:56:21:26:93:6d:39:10:e5:02:54:9d:3b:
8e:48:f9:74:bb:c4:bc:df:45:67:7f:5e:6c:41:d5:
d5:46:46:ec:6b:20:fc:5f:1d:2e:c0:c4:7b:76:06:
04:76:4e:b5:a7:d3:02:f5:e9:e6:a5:7c:8d:a1:19:
32:7a:b2:6e:c5:08:c9:10:bd:d9:46:d4:0e:16:1d:
b9:a7:a5:c0:2d:56:a1:68:13:66:20:59:bf:a8:09:
f4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:41:11:BF:7F:20:6D:D2:51:B5:07:BE:EF:56:64:78:96:22:20:70
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:5d:77:3a:44:39:a0:5e:42:9a:5f:97:06:5e:eb:4b:78:ce:
33:24:5d:91:41:ca:0e:e5:95:3e:96:57:8f:ff:63:63:e2:b1:
45:4d:6e:f0:cf:46:2c:a0:62:70:16:cb:55:ec:7d:36:67:cb:
39:d8:79:93:35:f4:75:07:c2:c5:bf:09:7b:39:9d:7a:9c:62:
88:96:06:6d:7f:86:21:fd:5d:d6:f0:16:b6:02:5e:b1:3d:b0:
af:76:6a:60:52:db:d3:ee:1c:91:a8:74:51:9a:f3:ff:ba:a1:
cc:5c:d4:29:4d:34:e3:9c:70:3a:1f:fe:15:9b:d9:3f:b2:53:
a1:28:fa:0e:aa:8e:23:fa:9b:d5:b7:79:01:ac:ef:b7:e1:fc:
dc:51:e2:ef:ae:e1:58:1f:5c:8b:d4:6f:9e:74:6e:28:d8:8e:
99:13:33:72:63:be:b6:e5:7f:2a:08:0f:d9:29:00:cd:ef:a1:
15:fa:93:d4:8d:aa:86:93:2b:f3:d0:66:3b:5b:9d:4a:10:61:
fc:0f:e2:cc:90:22:43:3b:cc:f9:16:24:ea:e2:b9:d9:ac:87:
88:dd:5f:0b:27:3e:7d:49:0c:33:30:18:b4:62:f3:b5:7c:c1:
48:cf:b4:99:eb:22:8d:bb:44:c2:91:7f:21:13:85:3e:a0:1a:
61:66:e6:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou4mcMgmHfkqdUeFj7JWaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYTg1ZWNlMmM1MzlmNTg1MGZhNzAxZjJkNDVhMjEyN2Rj
ODY3NTUwHhcNMjYwMzI2MDYwMTEyWhcNMjYwMzI3MDYwMTEyWjAzMTEwLwYDVQQD
EyhlMTQxMTFiZjdmMjA2ZGQyNTFiNTA3YmVlZjU2NjQ3ODk2MjIyMDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZ2+Sc5UQU0LJap1sUuF6j2aYZbU
9vDxTtddJTXmxDw3WG7hTyXCPOzGMXIWCXqDwEeaBSik8s7TGomIgrQHV7kdM6FF
HyBa26shOyAEnxKaVkzt7Yguur0uqjtsrxyVRkwm2NbWEc2szat+3aENQMEfp2qV
BdTD+5jOhjWOTdNusWqZ3bFgRcD21YNixAReXLZIMW80TaGbPlKsZLtQ3Cn4aPxY
D8FWISaTbTkQ5QJUnTuOSPl0u8S830Vnf15sQdXVRkbsayD8Xx0uwMR7dgYEdk61
p9MC9enmpXyNoRkyerJuxQjJEL3ZRtQOFh25p6XALVahaBNmIFm/qAn00wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFBEb9/IG3SUbUHvu9WZHiWIiBwMB8GA1UdIwQY
MBaAFAGoXs4sU59YUPpwHy1FohJ9yGdVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEt
NzUyYTQ1YzMyZGZmLzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEtNzUyYTQ1YzMyZGZm
LzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxl13OkQ5
oF5Cml+XBl7rS3jOMyRdkUHKDuWVPpZXj/9jY+KxRU1u8M9GLKBicBbLVex9NmfL
Odh5kzX0dQfCxb8JezmdepxiiJYGbX+GIf1d1vAWtgJesT2wr3ZqYFLb0+4ckah0
UZrz/7qhzFzUKU0045xwOh/+FZvZP7JToSj6DqqOI/qb1bd5Aazvt+H83FHi767h
WB9ci9RvnnRuKNiOmRMzcmO+tuV/KggP2SkAze+hFfqT1I2qhpMr89BmO1udShBh
/A/izJAiQzvM+RYk6uK52ayHiN1fCyc+fUkMMzAYtGLztXzBSM+0mesijbtEwpF/
IROFPqAaYWbmFA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:10:09 2026 by rpki-client