Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json)
Hash identifier: t6iTvsiv9jfPZAgN+GwoIBMsHDP3HTiXZ7k2nNtL7is=
Subject key identifier: 9C:CB:49:2C:E5:30:01:EF:AC:A8:1C:6F:70:C6:00:72:BA:23:E9:63
Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Certificate serial: 019D2816BD585AC7DCB93F1CD09F5380DBF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
Manifest number: 0AB2
Signing time: Thu 26 Mar 2026 03:01:11 +0000
Manifest this update: Thu 26 Mar 2026 03:01:11 +0000
Manifest next update: Fri 27 Mar 2026 03:01:11 +0000
Files and hashes: 1: 62RbiFwZ1_XOHrvMeuIO0qbkA1A.roa (hash: cnho+bLoMv/Bp0S5dtnd6UgwZIY4cZQKOz8bwCDVOf8=)
2: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: HqXOP4Y77DRTh30+AU7DvvvV/z5H7htmWqhVvA5EP+g=)
3: XICIOM-gxMiR9t8IRnCK0NrB6nE.roa (hash: 9lVFALoW/hdyZ/BrGkS5tRJiyOdo/KL8ycTG9tW7DC8=)
4: omKlfUc4Xq8jfWs-uaGIuYfHC7s.roa (hash: z+DUSMvSH9cudXY76SxA5wG9q1HNxxSzOaCZyi9qzjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:bd:58:5a:c7:dc:b9:3f:1c:d0:9f:53:80:db:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Validity
Not Before: Mar 26 03:01:11 2026 GMT
Not After : Mar 27 03:01:11 2026 GMT
Subject: CN=9ccb492ce53001efaca81c6f70c60072ba23e963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:9e:46:74:8d:cc:02:b5:6b:98:d5:f5:11:
0b:7f:39:30:1c:5f:64:5e:96:37:d6:a9:29:7e:8c:
27:e6:c5:f6:cf:a6:43:c7:a5:d5:3a:5d:2e:fa:cc:
08:f7:16:97:54:4a:6f:0d:84:ea:e1:c4:39:a2:68:
c8:90:17:b5:69:dd:d9:da:70:9d:0f:5f:0e:8c:67:
fe:6f:28:9a:56:3a:02:ee:30:ff:38:01:36:b1:cd:
f9:44:1d:f9:38:83:4b:bd:d7:2c:34:cb:96:13:6b:
16:d6:da:3a:a7:08:c3:9d:79:2f:2f:73:0c:35:25:
eb:c6:78:ea:99:cc:4a:fd:1b:01:89:e5:b0:28:d5:
99:36:e7:97:c5:00:3d:4d:1b:cc:9c:6a:79:f4:81:
ac:ef:a4:2a:55:cf:53:a9:cc:e6:80:10:d5:00:5b:
01:12:46:b4:74:37:cc:7f:ec:a9:94:a7:4b:f2:7a:
c2:ef:18:ea:a9:a0:36:de:be:c0:c5:c7:c3:95:1b:
b8:61:f2:cc:3c:1e:8c:8a:4d:d6:0f:9f:5a:9a:ed:
8e:0b:bf:23:9a:44:e2:0a:fe:a4:6e:e3:69:f7:9e:
d2:28:5a:e0:67:f4:6d:82:a2:87:4b:f8:df:bd:8b:
e5:b0:04:21:b3:3f:2f:ef:ee:86:93:64:d0:39:61:
aa:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CB:49:2C:E5:30:01:EF:AC:A8:1C:6F:70:C6:00:72:BA:23:E9:63
X509v3 Authority Key Identifier:
keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e2:22:1a:42:33:55:d8:78:6b:f0:49:f5:88:e5:80:bb:3d:
88:0f:79:1e:af:52:55:df:95:54:a6:ad:7c:6f:f0:5e:33:ea:
4a:02:7f:00:1c:af:73:92:a1:ae:1a:69:d4:3f:8c:ea:97:26:
df:fa:67:db:3b:12:a4:34:61:3a:de:5f:9e:a4:35:c6:ed:bd:
67:c3:34:dd:74:43:2c:10:68:0e:01:fb:b4:54:a4:7e:64:60:
b7:6a:45:8f:4a:50:4e:96:e4:df:6c:bc:1a:08:01:4d:98:96:
53:12:ad:20:2e:68:81:78:84:f3:de:31:0c:19:4e:90:15:fb:
60:e6:3f:44:40:79:38:34:0e:21:26:27:6e:9e:b5:ef:bc:29:
a3:98:59:a1:52:23:19:90:f9:cf:86:c7:dd:18:b5:d3:e7:1e:
7f:df:0d:89:66:06:f4:8f:44:3a:5d:e3:20:3d:3c:03:5d:80:
f9:bc:d4:df:2f:47:6a:42:e0:ab:7a:e2:7e:d0:49:a3:9f:70:
b7:8f:dd:b6:a6:d7:90:d4:62:07:06:c8:6b:45:63:3f:53:2d:
68:a1:b7:3e:73:3d:ed:10:54:f9:e1:e9:f7:79:05:3c:f6:71:
0f:39:80:4f:4e:25:be:8d:36:4a:82:97:24:2d:90:4d:4c:13:
25:8c:4e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:19:56 2026 by rpki-client