Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json)
Hash identifier: LIgD8UV8bnjP5RkV7L2lSROOZEdrJw3AAeLejnZPfs8=
Subject key identifier: 03:9E:97:D7:3D:F3:5C:76:E4:B3:82:10:3C:1E:DC:63:F9:90:37:A1
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 019E1DC73B8B270177B88A4A1F389E62EFFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
Manifest number: 190A
Signing time: Tue 12 May 2026 20:00:56 +0000
Manifest this update: Tue 12 May 2026 20:00:56 +0000
Manifest next update: Wed 13 May 2026 20:00:56 +0000
Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: XkxsW1yxixtRGLOBI3L1Efk6LHosFYgeaTGBBUtDPaQ=)
2: TM56q_Km90IofYyolcjUGG4s9_E.roa (hash: +vMdN883JqiJ4BCwwMasiDlvt3eGgHHdJPYkXZCMObo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:3b:8b:27:01:77:b8:8a:4a:1f:38:9e:62:ef:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: May 12 20:00:56 2026 GMT
Not After : May 13 20:00:56 2026 GMT
Subject: CN=039e97d73df35c76e4b382103c1edc63f99037a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cc:ad:0d:e3:37:27:78:fb:c0:a4:b9:f4:1f:
50:d8:f9:b5:4e:5b:92:e5:c9:75:52:7e:20:d4:91:
f4:4c:8e:01:47:66:f4:21:b5:ce:da:ee:0b:5b:ee:
b6:94:99:64:47:de:11:b7:cd:28:6f:58:6f:5a:7f:
44:da:2a:0a:74:30:46:ae:ae:9a:91:53:ce:1e:b4:
6c:e6:6c:8c:67:9f:ad:7b:71:12:b0:b7:40:39:91:
9a:b4:12:08:f6:ff:61:b9:b0:ce:be:14:8c:c4:53:
92:92:77:59:4d:9c:9f:fa:6e:9d:fe:c2:75:9d:cb:
fa:20:63:f4:f5:1d:8f:18:9b:f1:88:e1:a3:9b:1c:
36:87:33:7c:bd:3d:81:99:54:d5:9b:6d:12:26:d3:
69:64:84:44:93:5e:a9:eb:b8:b0:9b:da:73:96:4e:
63:fc:5a:b1:72:bb:ab:21:be:c9:e7:90:03:1a:7f:
18:6b:25:15:6a:20:7c:bc:07:7d:bf:7a:25:c6:ae:
57:1c:a4:b5:3f:61:b6:b7:47:e6:3a:65:fc:95:b1:
34:60:40:e5:2e:29:eb:b8:42:ca:90:98:c9:6d:22:
0d:ff:27:57:32:84:5a:2e:c8:fc:f4:c6:ef:9a:4c:
70:82:ff:af:4e:cd:6f:64:84:17:fd:7c:25:40:b6:
a6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9E:97:D7:3D:F3:5C:76:E4:B3:82:10:3C:1E:DC:63:F9:90:37:A1
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:de:48:54:a8:47:c6:55:4c:60:ab:ed:95:00:f6:a5:57:1b:
64:c5:13:88:fe:7f:eb:e6:e2:af:ff:dc:da:1b:68:79:e0:ca:
7a:b7:ef:97:bc:41:e4:22:1c:7f:dc:d2:c6:da:7f:22:90:70:
f2:62:a4:18:ed:c4:ea:dc:65:d0:a8:eb:37:17:1e:60:7d:05:
d7:99:73:b0:15:6d:58:1f:b0:3c:ff:c9:08:d0:23:72:01:aa:
99:05:85:e6:03:28:ef:23:99:30:be:b1:b0:41:71:a7:89:38:
1b:1e:54:f0:b1:67:b0:62:30:2c:be:21:9b:4b:f0:72:1f:af:
0b:65:a1:7e:b1:e1:d0:61:07:3e:3f:58:d5:b1:d5:86:7f:15:
61:ec:8d:c8:fa:a5:92:dd:6e:c9:d0:2e:8b:91:68:5c:44:e1:
36:73:4f:e8:5e:23:ac:bf:73:67:96:c3:46:da:a8:69:cf:e8:
97:f2:c3:b6:bb:da:f0:42:da:98:96:ab:e0:b3:29:29:5c:bc:
4a:10:a1:4b:d9:c9:a1:a5:eb:4b:73:9c:67:8d:57:8b:44:b2:
8d:78:fb:9a:3c:25:70:d9:67:ab:79:37:ef:9d:f7:3a:70:71:
14:45:26:7f:ec:cf:1b:c6:01:04:20:30:03:e7:4e:c4:49:fb:
3e:7e:9c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:16:54 2026 by rpki-client