Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json)
Hash identifier: fabnVGpoZ12rv2zJ+VWMYVx0QrmlIYVta6BPUJ0fA80=
Subject key identifier: 30:2A:23:93:98:EB:07:A6:9D:21:1B:EB:BC:D5:0F:76:0B:12:E8:6F
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 019E1F1175AA4573A3F3F3FB258E814566A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
Manifest number: 0B3B
Signing time: Wed 13 May 2026 02:01:38 +0000
Manifest this update: Wed 13 May 2026 02:01:38 +0000
Manifest next update: Thu 14 May 2026 02:01:38 +0000
Files and hashes: 1: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: B/Pc3VOCFcjPwmPzZYEeOXpJQn38XqwJW4pAtH2UkAU=)
2: dkw8BE0MteDejxs-2qVpeffd5cE.roa (hash: OLIzwrtSctTD4rRGWSFchziybsw/DjSgiuUvhAPMb0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:75:aa:45:73:a3:f3:f3:fb:25:8e:81:45:66:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: May 13 02:01:38 2026 GMT
Not After : May 14 02:01:38 2026 GMT
Subject: CN=302a239398eb07a69d211bebbcd50f760b12e86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:37:10:01:bd:fd:23:14:9f:30:22:e1:7c:37:
6e:0a:52:97:d3:ef:2f:3a:fc:35:db:f6:a6:ae:32:
28:73:42:e2:ee:4e:6f:96:82:e2:fc:9a:ae:c9:7a:
da:e3:97:26:27:03:30:dd:36:be:db:01:d4:7b:e0:
ed:52:1a:8a:fe:18:c6:dd:f8:30:ff:6c:42:27:57:
e4:37:6b:5e:0a:7a:e3:7d:f1:67:f4:ab:3d:41:7f:
6a:3e:e6:67:d0:1a:61:6d:5f:49:1b:e4:4e:53:0a:
5d:8c:b4:b9:ce:c8:2b:07:ae:94:6e:ec:89:aa:cf:
d5:ac:b1:39:b2:61:37:0f:f9:a8:60:82:13:e1:ff:
77:44:52:f3:4c:d3:3c:30:a4:bd:f7:a6:8a:33:88:
f2:4a:5c:05:af:82:3d:78:d0:42:08:3d:a8:6b:c1:
c7:39:af:c9:32:b3:c2:8f:c9:be:56:b8:91:23:4f:
40:d9:c8:b2:b8:ba:cb:d9:14:03:5e:87:be:c1:d7:
8c:2b:85:b4:ef:d8:c7:3a:6e:88:7a:50:62:76:c8:
58:1e:fb:56:3b:ac:64:b4:1d:5f:35:11:4d:21:a7:
0f:10:8a:04:73:d6:76:63:a6:43:27:26:5e:eb:d3:
10:a7:6e:ac:35:69:bc:93:4b:15:0f:e4:17:4d:f5:
f1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2A:23:93:98:EB:07:A6:9D:21:1B:EB:BC:D5:0F:76:0B:12:E8:6F
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d8:60:c8:eb:cc:86:9a:80:5f:ea:49:fa:35:c5:3a:3f:a7:
25:da:71:af:96:9d:d2:3e:52:83:84:01:b6:97:53:9e:0e:48:
1f:41:78:78:36:d3:99:aa:ca:6a:0e:79:12:bb:e2:59:cd:4d:
25:88:a2:f0:93:f7:0c:c8:b0:ce:17:15:d9:70:9c:9f:24:5d:
b1:13:92:0f:38:eb:8c:14:df:ea:98:87:6c:5e:39:33:84:45:
bb:be:62:1a:22:77:f0:bb:5d:60:d3:66:a7:d4:82:ec:74:4f:
02:30:85:b5:c4:75:e2:2e:2e:66:05:3d:90:f8:4f:e4:9c:e2:
42:d4:07:4a:4d:6c:49:7c:e4:ca:7e:bb:07:f0:b3:1b:5e:13:
2e:50:97:0a:89:f9:81:6f:e9:f9:6a:1d:99:16:49:9a:a1:c2:
48:2e:b6:9f:b3:34:d2:91:7b:51:57:e0:c0:7e:91:c0:b9:3c:
ac:6a:b7:59:20:44:d7:15:b7:6e:ba:c7:70:4b:52:74:3e:be:
22:41:9c:53:05:98:6d:c9:73:2a:0c:35:43:ba:ad:ce:ee:cf:
d3:a3:e1:ab:59:2f:61:a6:94:52:1b:c7:19:5d:01:da:1c:02:
9c:42:35:c2:4d:7e:4d:4b:bc:21:d4:69:b0:4c:92:dd:da:3a:
a3:16:ee:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:32:16 2026 by rpki-client