Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
File: aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft (raw, json)
Hash identifier: vBNOOKSv8PW4Cf1tLPcfaV3wP+GH5/viMLGFB5spzcA=
Subject key identifier: 5C:7E:0B:DF:75:FE:6D:BA:4C:F4:27:72:1D:AD:CB:16:A2:FD:0A:0B
Authority key identifier: 69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
Certificate issuer: /CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Certificate serial: 019D2996CAAC1102C9315D29DCDB691CE337
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
Manifest number: 1816
Signing time: Thu 26 Mar 2026 10:00:41 +0000
Manifest this update: Thu 26 Mar 2026 10:00:41 +0000
Manifest next update: Fri 27 Mar 2026 10:00:41 +0000
Files and hashes: 1: aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl (hash: ouy7HBbZCguP7N59mDkEJ43ioRxaUbpGqx+atlKGUKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:ca:ac:11:02:c9:31:5d:29:dc:db:69:1c:e3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Validity
Not Before: Mar 26 10:00:41 2026 GMT
Not After : Mar 27 10:00:41 2026 GMT
Subject: CN=5c7e0bdf75fe6dba4cf427721dadcb16a2fd0a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0b:f7:98:c9:b6:62:39:0c:26:7b:18:4a:f5:
46:9c:6e:fb:6d:39:cc:d2:97:5f:0d:1f:c8:89:53:
54:2b:15:af:d1:68:67:4e:9a:89:e9:7e:e7:e9:30:
83:e0:98:87:66:12:5e:45:b5:00:64:78:1e:6c:ef:
37:ed:65:6f:b0:07:99:97:16:d1:2b:f1:f3:f5:a8:
7b:56:69:a6:82:33:37:98:9b:fb:da:6e:37:da:6f:
4d:b5:a1:03:37:66:cf:04:0f:bd:b7:82:b6:a1:37:
56:f1:2e:ea:3d:d0:8c:5e:ed:82:5b:0c:0b:3c:57:
bb:cd:71:2e:d5:26:d2:6c:4f:a6:ee:47:e8:50:51:
95:9c:73:7f:a0:5f:15:f5:c2:d3:81:5c:72:21:da:
9f:1d:95:d0:25:c5:c5:59:29:7e:e7:36:9a:e0:f5:
1e:26:13:8c:1c:fd:21:48:04:33:5d:2a:9b:0a:b5:
83:d4:f0:1a:28:3d:68:1f:6a:5d:4b:d4:59:8c:53:
b6:e2:09:ef:de:7b:13:55:19:dd:28:3b:85:15:6f:
67:33:ac:bd:a2:ea:dc:2c:05:a5:c7:32:03:5c:c3:
0b:96:b8:a3:11:07:72:d7:d3:93:d7:2f:b5:fe:f1:
2b:87:06:ac:66:11:05:6d:97:46:51:9a:ef:a3:40:
85:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7E:0B:DF:75:FE:6D:BA:4C:F4:27:72:1D:AD:CB:16:A2:FD:0A:0B
X509v3 Authority Key Identifier:
keyid:69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:db:37:f4:e8:0c:b6:3c:f7:3d:43:5d:85:97:7e:ee:a1:6c:
e8:75:57:33:cd:ba:54:76:38:7c:fe:cc:e0:e1:ca:df:44:57:
70:86:2c:d0:ea:02:b9:1e:38:fe:3a:c2:ce:7a:c9:02:62:c5:
31:37:83:eb:42:d4:cb:25:19:06:ab:80:4c:01:85:ee:ab:af:
37:8f:95:7d:c7:49:94:c5:80:4a:d1:77:f7:7b:f2:96:ac:7b:
64:1d:48:7e:f1:cd:07:1a:19:46:ca:82:74:9c:f4:c5:46:e5:
15:85:06:60:0f:62:5b:1d:c5:34:c3:16:56:6b:36:76:01:2d:
1a:2b:bb:51:0b:53:c7:6b:03:87:54:e8:e8:c4:57:9e:e5:8d:
34:8a:bf:a1:d6:2a:d2:8e:06:03:62:a8:a4:9d:93:16:b1:88:
77:fd:5f:46:c1:22:fa:a3:8f:f6:2d:50:42:26:ef:72:60:c9:
84:59:bc:a9:20:d3:e9:30:bf:2f:a7:e4:22:92:25:20:18:8c:
82:7d:62:cc:89:d6:d6:56:82:3b:9a:c4:52:a1:23:19:2e:ae:
72:8e:14:2d:f1:94:07:0e:74:0b:da:97:9e:d0:2b:9f:f3:8c:
23:ab:e2:c0:71:4c:eb:73:34:11:90:46:b2:f8:62:40:ce:5a:
21:d4:ab:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:03:10 2026 by rpki-client