Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
File: AEp1iisKfpOKnw3uZCzsXkECdrU.mft (raw, json)
Hash identifier: b4wpCZ+9oWk9aFyREqLN1r/DRSG4MgAIoF0oxTFWFfU=
Subject key identifier: 26:AF:E2:E0:5D:BC:B9:EC:FC:91:EC:D6:58:98:3D:1B:19:1F:E8:22
Authority key identifier: 00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
Certificate issuer: /CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Certificate serial: 019D284DA4CAF7072EB201B9FB9F54334D21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
Manifest number: 0DF3
Signing time: Thu 26 Mar 2026 04:01:10 +0000
Manifest this update: Thu 26 Mar 2026 04:01:10 +0000
Manifest next update: Fri 27 Mar 2026 04:01:10 +0000
Files and hashes: 1: AEp1iisKfpOKnw3uZCzsXkECdrU.crl (hash: ULq+zit9izYugR5fBNbP5t9b2sPOsiLfkesKfsEQjrE=)
2: KQvSjqYh8xEH5jGSoTapmYBK1v8.roa (hash: oIhjbUQtq0h2T8RoAxHLxlxqfimGaBYyqjdqBzIaXjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:a4:ca:f7:07:2e:b2:01:b9:fb:9f:54:33:4d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=004a758a2b0a7e938a9f0dee642cec5e410276b5
Validity
Not Before: Mar 26 04:01:10 2026 GMT
Not After : Mar 27 04:01:10 2026 GMT
Subject: CN=26afe2e05dbcb9ecfc91ecd658983d1b191fe822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8c:1c:55:dc:8c:02:5f:ff:c4:ce:d5:e3:09:
06:cd:be:45:29:d4:72:ed:a6:e0:7c:4a:9b:4b:c0:
e3:f8:3c:77:f0:8c:6d:46:f3:bc:fd:12:c2:d8:df:
ea:eb:49:63:15:e8:86:79:97:a4:97:3f:62:8c:c2:
46:87:a2:61:21:ff:13:34:0a:71:d3:18:bd:2c:00:
bf:9e:29:e9:13:cf:d7:a9:e4:29:f3:93:2f:78:85:
16:ee:94:41:e7:ad:4e:ce:07:74:0c:e1:0a:57:40:
78:57:11:ee:91:12:c3:09:0c:3d:d4:b0:6d:49:b1:
e8:19:a7:11:b6:60:3d:f3:b4:2a:01:04:0a:ab:77:
3a:b7:29:62:07:24:c5:40:09:ca:7a:de:9c:3a:b6:
3a:05:da:9a:98:09:16:cc:8a:ec:54:46:b1:54:f8:
51:56:6c:da:68:05:da:9d:f7:be:67:22:c0:cb:79:
c1:23:c3:5b:94:b7:17:15:8b:ea:63:3a:55:25:d6:
50:6f:c6:be:54:2d:70:6f:33:e0:2d:f1:ef:0c:27:
76:ad:bd:eb:22:59:3b:d7:2a:24:8d:53:ef:76:0b:
bd:62:b3:c6:29:4a:12:0b:99:48:60:2d:b4:33:b0:
84:c1:c4:fd:14:74:96:ea:09:2e:3a:98:d6:af:fa:
32:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AF:E2:E0:5D:BC:B9:EC:FC:91:EC:D6:58:98:3D:1B:19:1F:E8:22
X509v3 Authority Key Identifier:
keyid:00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:dd:8b:64:8b:e7:c2:83:22:1e:c8:14:d8:06:3c:cb:d1:b8:
5d:27:13:c1:46:c7:54:50:9e:96:29:ba:36:27:2b:05:a9:be:
f8:eb:ae:74:70:94:dd:1c:1a:f9:8f:b8:dc:36:ec:07:2a:a8:
71:31:cb:87:da:70:c4:a1:c0:23:c9:17:0c:ef:6c:e9:93:53:
56:a4:f0:e1:6e:8e:4d:5a:ac:ba:dc:86:c1:a8:65:34:5b:e6:
56:c3:b4:2b:fe:e6:5e:70:10:bb:92:98:67:5e:95:0c:bf:ae:
46:18:a2:88:ab:49:05:a4:38:e0:9f:db:2f:c0:75:11:67:5b:
2f:8a:72:65:a1:82:ab:6e:5d:b0:72:82:97:19:13:0d:0e:43:
5b:f2:d8:6e:dd:e4:54:8e:7c:5e:90:52:4a:4a:fb:10:dd:d4:
f3:10:d7:57:c6:29:34:ad:48:6f:7f:8d:b2:47:2a:2b:6f:1d:
8b:d3:fe:c4:aa:ca:c4:fb:f8:5f:a4:c4:99:60:77:3f:1f:7a:
67:ba:d7:1a:49:5d:9a:88:7f:71:4c:c5:59:fa:65:2b:47:e7:
1c:48:87:2e:2b:21:b6:ad:8d:41:d2:04:3a:cc:91:5a:0e:a6:
6c:47:de:ef:6a:cb:f9:f6:95:6a:76:e4:b7:67:9e:04:5d:17:
38:62:2c:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTaTK9wcusgG5+59UM00hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNGE3NThhMmIwYTdlOTM4YTlmMGRlZTY0MmNlYzVlNDEw
Mjc2YjUwHhcNMjYwMzI2MDQwMTEwWhcNMjYwMzI3MDQwMTEwWjAzMTEwLwYDVQQD
EygyNmFmZTJlMDVkYmNiOWVjZmM5MWVjZDY1ODk4M2QxYjE5MWZlODIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4wcVdyMAl//xM7V4wkGzb5FKdRy
7abgfEqbS8Dj+Dx38IxtRvO8/RLC2N/q60ljFeiGeZeklz9ijMJGh6JhIf8TNApx
0xi9LAC/ninpE8/XqeQp85MveIUW7pRB561Ozgd0DOEKV0B4VxHukRLDCQw91LBt
SbHoGacRtmA987QqAQQKq3c6tyliByTFQAnKet6cOrY6BdqamAkWzIrsVEaxVPhR
VmzaaAXanfe+ZyLAy3nBI8NblLcXFYvqYzpVJdZQb8a+VC1wbzPgLfHvDCd2rb3r
Ilk71yokjVPvdgu9YrPGKUoSC5lIYC20M7CEwcT9FHSW6gkuOpjWr/oyCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCav4uBdvLns/JHs1liYPRsZH+giMB8GA1UdIwQY
MBaAFABKdYorCn6Tip8N7mQs7F5BAna1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEt
MDExMDI3MmRlYzE3LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEtMDExMDI3MmRlYzE3
LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACd2LZIvn
woMiHsgU2AY8y9G4XScTwUbHVFCelim6NicrBam++OuudHCU3Rwa+Y+43DbsByqo
cTHLh9pwxKHAI8kXDO9s6ZNTVqTw4W6OTVqsutyGwahlNFvmVsO0K/7mXnAQu5KY
Z16VDL+uRhiiiKtJBaQ44J/bL8B1EWdbL4pyZaGCq25dsHKClxkTDQ5DW/LYbt3k
VI58XpBSSkr7EN3U8xDXV8YpNK1Ib3+NskcqK28di9P+xKrKxPv4X6TEmWB3Px96
Z7rXGkldmoh/cUzFWfplK0fnHEiHLishtq2NQdIEOsyRWg6mbEfe72rL+faVanbk
t2eeBF0XOGIsqA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:59 2026 by rpki-client