Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: a1xryeQB6TDoMqCauW9CEhoKv9ECAvGPqN+vfPM7600=
Subject key identifier: 3A:BB:8D:76:2E:F6:EB:1B:26:5F:EF:5F:43:C0:47:87:63:1A:83:F6
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 019E1C47A23CD5B742E5F7A61F40BFF51CF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 10B0
Signing time: Tue 12 May 2026 13:01:57 +0000
Manifest this update: Tue 12 May 2026 13:01:57 +0000
Manifest next update: Wed 13 May 2026 13:01:57 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: Y5OuCQ6X+jScvFP2LTTkfg7Ckeh5yA3Eq8gJBVSoLTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:a2:3c:d5:b7:42:e5:f7:a6:1f:40:bf:f5:1c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: May 12 13:01:57 2026 GMT
Not After : May 13 13:01:57 2026 GMT
Subject: CN=3abb8d762ef6eb1b265fef5f43c04787631a83f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bb:03:56:41:26:ed:e5:b6:c5:b3:15:01:1b:
ce:fc:d7:24:71:ac:21:24:74:f7:4d:bb:c3:bd:06:
11:d3:6b:aa:70:e9:87:d4:74:02:a4:cc:f6:d3:77:
bc:0d:2e:8c:bc:c1:23:87:a8:0f:f0:2a:f0:b4:ff:
a0:9d:11:8f:9e:9f:1d:d7:86:0b:17:c1:11:d2:d4:
31:ff:fb:ef:60:68:5c:fa:c0:6e:09:4c:ca:ee:3f:
de:ac:f0:4f:a2:65:aa:90:12:11:bc:50:5c:1b:ac:
7b:2c:08:04:51:cc:37:64:64:16:0b:29:36:f2:4c:
6f:ce:3c:d7:75:3e:c8:f2:cc:73:d1:9f:b5:9e:34:
2f:95:ac:7e:9c:06:e1:d5:ed:50:c3:6f:32:9c:c8:
5f:41:14:31:95:1c:2a:38:e9:4c:af:88:dc:ba:f1:
6d:49:33:b3:aa:f1:98:49:f3:96:55:c5:d2:61:01:
62:80:30:a6:b8:55:38:30:28:ec:80:cc:81:66:5f:
f0:03:69:3f:cc:12:5e:29:55:a6:e0:52:c5:32:b4:
7d:2e:fe:d3:c1:ee:2d:d9:67:ae:03:6a:f1:26:99:
7e:6a:f2:cf:a0:2a:fd:fb:a8:0c:8e:d5:9a:0e:50:
8a:86:56:1c:a9:c6:16:cf:29:c1:d2:48:a7:4e:34:
73:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BB:8D:76:2E:F6:EB:1B:26:5F:EF:5F:43:C0:47:87:63:1A:83:F6
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:c8:f2:9c:b0:04:ad:44:fa:07:80:bf:99:38:54:3f:16:d8:
1e:04:ea:14:dd:09:3b:80:8b:b0:48:e0:b9:91:80:53:2e:54:
c8:ae:23:c1:17:07:d7:16:a3:2f:eb:89:7d:6c:c9:22:db:82:
3b:21:cc:7d:49:5a:b9:01:5f:14:04:51:e2:1d:44:fd:d3:b8:
15:08:00:d2:94:8f:20:1e:d8:ee:85:5d:3e:7f:95:90:65:9c:
f7:30:93:34:6f:a7:32:39:36:84:ed:61:ae:c2:25:28:db:d5:
0e:74:49:70:8c:70:3b:69:34:7e:a2:15:91:ff:89:15:19:ea:
68:b9:0f:79:ee:46:b1:d3:23:74:3e:f2:f4:2d:fd:80:aa:b6:
d0:49:20:19:c9:e7:4b:15:22:52:73:90:1f:e1:e9:c3:df:3d:
16:e7:fd:c8:be:11:e8:6b:0e:5c:8b:32:e4:0c:1a:be:a0:c4:
a0:71:de:ad:a0:75:8f:11:c2:e1:11:6a:9c:cc:ff:ec:69:ef:
75:f6:e8:ff:c9:f7:dc:74:48:9d:f1:26:57:96:b0:f3:2b:3d:
6f:55:31:31:eb:06:ae:e1:46:89:cd:f2:97:1b:7e:14:27:ac:
84:4e:ac:75:43:6e:53:6a:3e:73:5f:ae:28:89:f0:65:1b:51:
41:d4:64:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:36:47 2026 by rpki-client