Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/ed4bac-e0e2-4e29-98a7-ef862e3e7128/1/AY9TOgxHePOMEstY3Xtq8l-MrOc.mft
File: AY9TOgxHePOMEstY3Xtq8l-MrOc.mft (raw, json)
Hash identifier: 6znop0zdDjXzsnWp8Uf09AKK6PFy+e4thnsbqE1y8Ew=
Subject key identifier: 36:7D:F3:01:03:99:63:DD:6D:98:57:4C:12:97:0D:FB:18:EF:9E:C2
Authority key identifier: 01:8F:53:3A:0C:47:78:F3:8C:12:CB:58:DD:7B:6A:F2:5F:8C:AC:E7
Certificate issuer: /CN=018f533a0c4778f38c12cb58dd7b6af25f8cace7
Certificate serial: 019D2929AF40224054F7E15F13CF71977552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AY9TOgxHePOMEstY3Xtq8l-MrOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/ed4bac-e0e2-4e29-98a7-ef862e3e7128/1/AY9TOgxHePOMEstY3Xtq8l-MrOc.mft
Manifest number: 0150
Signing time: Thu 26 Mar 2026 08:01:30 +0000
Manifest this update: Thu 26 Mar 2026 08:01:30 +0000
Manifest next update: Fri 27 Mar 2026 08:01:30 +0000
Files and hashes: 1: AY9TOgxHePOMEstY3Xtq8l-MrOc.crl (hash: 66Qb29mIEwypShPQKS7tWrRrW9F0QGGGSTkyFrbYJ+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/ed4bac-e0e2-4e29-98a7-ef862e3e7128/1/AY9TOgxHePOMEstY3Xtq8l-MrOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/ed4bac-e0e2-4e29-98a7-ef862e3e7128/1/AY9TOgxHePOMEstY3Xtq8l-MrOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AY9TOgxHePOMEstY3Xtq8l-MrOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:af:40:22:40:54:f7:e1:5f:13:cf:71:97:75:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018f533a0c4778f38c12cb58dd7b6af25f8cace7
Validity
Not Before: Mar 26 08:01:30 2026 GMT
Not After : Mar 27 08:01:30 2026 GMT
Subject: CN=367df301039963dd6d98574c12970dfb18ef9ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a8:17:a9:88:40:e4:2e:48:9b:df:2f:ff:b6:
76:bd:c8:4e:a2:d5:40:6a:e8:80:7f:8d:49:36:5c:
a8:cb:06:89:d3:a6:40:18:a3:6a:ad:8f:7e:f4:c0:
a9:79:57:57:4f:dc:e2:a6:af:43:0d:d5:20:01:d3:
5e:ef:b3:32:e0:67:3d:09:b6:50:c8:41:2c:83:97:
7a:40:2e:d6:98:1c:31:ff:bc:81:49:9e:54:2a:1b:
b9:97:12:6b:97:20:c2:0b:36:26:9d:66:42:f9:10:
4b:10:c4:d3:f0:e8:ad:42:f3:e8:aa:e8:a8:8a:8a:
c8:fd:fa:cb:fd:09:a1:3e:dd:63:f1:ae:18:ba:c3:
22:47:f1:fe:22:a1:e1:54:ca:c9:6e:bd:7c:c5:c1:
7b:11:6a:42:fd:38:fc:6e:20:59:dc:71:58:ef:4c:
22:6c:cf:6e:c1:1a:a1:50:56:af:9d:14:db:5c:b1:
cb:8b:54:93:8b:4c:31:94:fd:b9:e3:34:a8:84:b2:
cc:ed:67:8b:87:8d:b6:e4:cf:07:7e:95:fe:1b:1e:
33:5e:dc:62:54:d6:d8:b3:d0:50:96:0e:87:be:b2:
6c:ca:ff:5b:e1:02:5a:84:92:d5:5b:41:04:d7:12:
93:48:f4:b2:1b:18:86:26:66:17:7d:99:76:84:51:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7D:F3:01:03:99:63:DD:6D:98:57:4C:12:97:0D:FB:18:EF:9E:C2
X509v3 Authority Key Identifier:
keyid:01:8F:53:3A:0C:47:78:F3:8C:12:CB:58:DD:7B:6A:F2:5F:8C:AC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AY9TOgxHePOMEstY3Xtq8l-MrOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ed4bac-e0e2-4e29-98a7-ef862e3e7128/1/AY9TOgxHePOMEstY3Xtq8l-MrOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ed4bac-e0e2-4e29-98a7-ef862e3e7128/1/AY9TOgxHePOMEstY3Xtq8l-MrOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:23:fd:c8:e4:43:a5:e6:9d:1c:d1:3a:5c:44:83:73:e9:32:
67:e4:5c:a0:81:ae:87:f8:25:2d:1b:3e:8c:cd:2e:8d:71:32:
da:30:7c:44:83:b5:af:02:08:d8:d1:fd:3d:c5:a8:f8:35:0c:
77:de:65:41:0f:93:8e:ed:3e:95:cb:09:1a:e4:20:f0:55:5d:
e8:ae:27:61:b9:f3:30:79:bc:4f:02:3a:a2:e5:36:3c:a4:12:
9d:46:f9:9d:a6:10:92:f9:8e:de:ce:4e:dc:cd:42:c2:98:84:
c8:25:ac:da:44:06:9e:60:30:bf:91:71:82:85:fc:ae:29:43:
55:d9:52:04:6c:32:63:01:18:f9:f8:6a:23:49:ee:ba:fd:79:
83:a3:92:4b:9d:50:d4:d3:fe:d9:b3:f0:61:80:41:2c:de:e8:
e0:ff:5a:c8:48:31:e9:c7:e8:4a:1d:0b:04:2f:37:f6:69:7a:
81:c3:21:ec:1b:b1:25:6d:b1:df:87:d6:52:7e:47:b7:78:8a:
41:02:a9:53:f0:dd:8e:53:10:d9:59:3d:fd:00:1b:4e:e5:07:
ed:2f:a5:00:0a:83:61:11:bf:9f:0c:31:7e:d1:3a:c4:8b:2e:
2b:0f:23:05:f8:4e:f0:fc:41:ce:8c:ee:b3:ea:7a:a0:76:ee:
70:f9:e7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:17:24 2026 by rpki-client