Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
File: AguJY5thIAOqgSvktlIbVnhFao4.mft (raw, json)
Hash identifier: PULk2yI6gBHaZZbLWtu+fTnpQz1+9HtdHgZRkNFYL0g=
Subject key identifier: D2:7F:DA:8C:40:9A:53:2E:F9:CB:39:5A:8F:D8:2D:37:B5:73:EC:22
Authority key identifier: 02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E
Certificate issuer: /CN=020b89639b612003aa812be4b6521b5678456a8e
Certificate serial: 019E1BD940E1C95B0E10AFA9788F4BAE67C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
Manifest number: 0666
Signing time: Tue 12 May 2026 11:01:23 +0000
Manifest this update: Tue 12 May 2026 11:01:23 +0000
Manifest next update: Wed 13 May 2026 11:01:23 +0000
Files and hashes: 1: AguJY5thIAOqgSvktlIbVnhFao4.crl (hash: uZXgI9dSNsk/OC2DaLyjgGuS69WgY1qC7qDlf1BgYDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:d9:40:e1:c9:5b:0e:10:af:a9:78:8f:4b:ae:67:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=020b89639b612003aa812be4b6521b5678456a8e
Validity
Not Before: May 12 11:01:23 2026 GMT
Not After : May 13 11:01:23 2026 GMT
Subject: CN=d27fda8c409a532ef9cb395a8fd82d37b573ec22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5f:f3:46:46:33:3c:fd:ba:5a:9a:16:7f:5e:
67:f6:db:32:79:ea:32:9f:c8:b3:87:b8:2b:53:ae:
81:77:59:af:22:be:2c:ae:9d:b7:47:aa:13:f3:37:
b8:d7:9e:97:30:0f:a1:e9:3a:10:7a:01:92:98:f8:
6d:b0:fd:0f:10:81:a9:21:d2:f2:ca:f3:a5:ee:36:
01:30:9b:10:7f:e2:e1:3e:9e:c5:70:c8:c5:11:89:
6c:eb:4d:ae:fe:d4:18:d4:c7:71:c4:11:b6:13:3d:
dd:28:76:31:4f:7e:71:d9:c3:98:dc:8d:2c:b4:c0:
40:30:4a:86:08:fc:d3:45:31:fc:54:1e:53:70:2d:
84:97:ef:50:fb:25:e4:db:d5:4c:89:87:2a:a6:7e:
b9:c2:51:7b:52:5d:c6:6e:9d:ae:0f:61:d6:b8:e1:
20:03:35:6f:70:65:45:8b:58:c9:73:53:99:b8:ba:
5c:9f:ac:f8:19:92:e3:1e:38:eb:57:82:f9:38:64:
13:93:b9:14:ec:4f:56:53:00:ea:b5:ea:4a:7f:14:
52:4f:64:ef:73:8e:2a:f3:e7:c7:25:ae:31:6d:11:
4f:33:37:34:eb:47:89:72:bc:0b:94:79:79:5d:5f:
69:6a:ab:38:c8:0a:36:f9:77:b9:67:cc:47:a5:4e:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7F:DA:8C:40:9A:53:2E:F9:CB:39:5A:8F:D8:2D:37:B5:73:EC:22
X509v3 Authority Key Identifier:
keyid:02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:18:5c:3e:2d:a5:a6:6d:59:51:7f:1a:19:9f:5b:8e:4e:68:
78:e6:8d:13:76:0b:aa:0e:f6:64:e4:43:1d:67:03:56:69:eb:
3c:67:df:5a:fd:69:0f:3a:ac:8d:91:38:a6:89:ca:74:cf:89:
4b:c1:17:4d:36:0e:32:16:03:4f:9e:64:96:2c:d1:94:d7:61:
79:99:72:e8:43:35:30:ae:ab:79:a2:ba:8c:5d:22:5e:e6:68:
40:b5:65:c2:fa:ba:97:71:37:0d:a8:35:84:c5:49:38:c2:80:
1c:f6:04:03:fd:64:db:57:bd:c4:36:aa:64:05:b7:a8:4c:5e:
a6:1a:f8:43:6e:80:cb:82:c1:95:7a:3b:0f:53:cf:fd:f6:f8:
5b:12:ae:58:75:c6:d7:59:4a:cc:01:04:89:2b:35:60:46:7d:
40:82:36:2f:31:9e:51:34:cb:f0:95:31:c7:59:7c:27:53:fa:
ee:3a:4f:3f:35:66:46:49:8d:28:c0:50:dd:12:63:17:fa:a7:
b3:8e:7a:4d:c3:8a:45:36:23:99:5d:61:cc:02:65:ed:fc:c1:
b7:ce:02:52:16:b0:81:4e:55:c4:c0:4a:e2:98:ca:46:e7:8d:
a2:bc:d1:ac:d6:cc:b7:71:16:33:17:78:fa:39:2d:bb:0e:43:
27:72:d9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:24 2026 by rpki-client