Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
File: afURWpSbKIPEzDxJX_uJk97Z2F0.mft (raw, json)
Hash identifier: uX4D6PVxeFA4mpRtagDOuK0CoETnVrqSOydTysauZfw=
Subject key identifier: 34:3F:61:5D:EA:E1:67:35:88:51:E6:87:A1:56:EF:32:53:F0:F7:AE
Authority key identifier: 69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D
Certificate issuer: /CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d
Certificate serial: 019D29292E6D229686379B9479E1CB84F86C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
Manifest number: 02A5
Signing time: Thu 26 Mar 2026 08:00:57 +0000
Manifest this update: Thu 26 Mar 2026 08:00:57 +0000
Manifest next update: Fri 27 Mar 2026 08:00:57 +0000
Files and hashes: 1: F0NU8SzenQKyHyDow73tXbiGwdo.roa (hash: iOBS39tMhlNuj1wPQ/s8NHjEci7w9ozCqefNCKugJMg=)
2: afURWpSbKIPEzDxJX_uJk97Z2F0.crl (hash: CYV78y91luB1VWf+AfNmYqf60AURJdb6iHBkdu94nxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:2e:6d:22:96:86:37:9b:94:79:e1:cb:84:f8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d
Validity
Not Before: Mar 26 08:00:57 2026 GMT
Not After : Mar 27 08:00:57 2026 GMT
Subject: CN=343f615deae167358851e687a156ef3253f0f7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:37:44:41:46:f9:0c:de:7a:60:82:4a:49:85:
0d:a2:90:b7:b8:90:f2:b3:6f:5e:7f:b9:d4:0e:ad:
ce:a2:d9:ae:57:be:65:7f:8e:22:da:35:07:89:aa:
a9:08:96:67:ca:e5:7c:2d:fd:83:45:cf:5f:8e:05:
01:45:7a:f7:bc:64:ae:c4:dc:1b:94:5e:dc:9a:74:
02:3e:07:c8:7e:c8:cf:e3:c9:c4:7f:4b:b9:40:d7:
e5:ba:22:09:bb:b8:e8:55:ec:41:c9:80:d2:86:45:
e8:f2:25:82:12:11:69:d5:fe:01:ba:79:54:07:89:
e5:2e:5c:a4:49:3b:a2:73:8f:33:69:85:c8:35:6e:
23:33:c5:9b:b0:d2:08:5f:7a:46:c3:35:13:23:9e:
67:75:75:4f:88:02:f0:1e:43:8a:53:43:bd:44:a5:
58:80:de:ce:1d:5f:b2:22:83:a3:01:73:e2:8f:0f:
04:c9:e8:f5:59:48:14:26:e6:04:b6:8a:fa:42:46:
f0:82:f8:b1:ae:de:67:15:68:35:06:72:6f:f9:93:
e0:7f:f1:8f:c2:63:21:ec:98:85:75:f5:e8:99:4e:
f9:86:04:28:b6:03:b8:ae:44:78:e3:43:5e:f2:b9:
b7:67:57:53:2a:a5:f9:c2:4d:fe:f1:6b:6b:ac:9d:
1c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3F:61:5D:EA:E1:67:35:88:51:E6:87:A1:56:EF:32:53:F0:F7:AE
X509v3 Authority Key Identifier:
keyid:69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:58:6d:b2:8b:d8:ac:32:fc:6c:a3:a2:f2:33:44:55:fa:a9:
42:2d:50:c3:6f:a1:b2:ab:82:9c:29:87:19:49:97:31:99:32:
94:51:36:d4:a0:2f:86:da:fd:87:e0:c6:4c:2a:4c:92:e8:9b:
d2:05:a8:2b:31:3a:56:aa:26:45:0a:98:9e:b3:b8:5f:fe:c4:
60:9a:22:66:e9:11:c5:41:d0:18:1c:43:ff:a7:92:fa:61:d4:
5f:2e:0f:84:95:b7:e2:cf:e9:05:b4:0b:4a:78:b1:2d:c5:3f:
e0:88:8d:30:ff:b2:8b:22:d8:5f:3f:70:87:f8:fd:5a:14:5b:
9a:57:dc:97:61:1d:a4:96:36:9e:06:9f:47:09:88:fd:86:66:
e6:4b:35:ce:0f:72:9c:dd:5c:d1:fa:47:1a:04:cd:d6:08:f2:
c6:8c:2c:d5:58:09:80:05:43:1a:82:3f:5e:bf:e7:4c:fa:a3:
35:30:30:5d:f1:09:7d:39:d6:3c:ff:6e:62:91:f5:43:b9:cc:
bc:c7:f2:e3:49:33:64:82:d7:a1:62:b4:44:37:ef:91:9d:85:
4d:83:74:46:fe:4b:fb:16:df:fb:b4:d5:18:5b:83:67:e1:39:
80:97:9d:0d:2d:b0:87:d2:ad:e7:9b:4c:33:ee:55:29:d8:0f:
5e:23:8a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:10:26 2026 by rpki-client