Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
File: afURWpSbKIPEzDxJX_uJk97Z2F0.mft (raw, json)
Hash identifier: ttG1h/kvcx6uZhhUIr3rJrJB1OBjSk1OSeM1prUGRnc=
Subject key identifier: 99:74:C9:6E:29:89:79:39:F2:BF:E3:AE:AE:B1:00:F7:5F:2C:40:E9
Authority key identifier: 69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D
Certificate issuer: /CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d
Certificate serial: 019D2B17B0C76AE214D43BA94BA06A35DC60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
Manifest number: 02A6
Signing time: Thu 26 Mar 2026 17:01:05 +0000
Manifest this update: Thu 26 Mar 2026 17:01:05 +0000
Manifest next update: Fri 27 Mar 2026 17:01:05 +0000
Files and hashes: 1: F0NU8SzenQKyHyDow73tXbiGwdo.roa (hash: iOBS39tMhlNuj1wPQ/s8NHjEci7w9ozCqefNCKugJMg=)
2: afURWpSbKIPEzDxJX_uJk97Z2F0.crl (hash: t9dRnFNMy8j7qUbGvdUNRfaGNMzl/vblcqZFhnTlgi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:b0:c7:6a:e2:14:d4:3b:a9:4b:a0:6a:35:dc:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d
Validity
Not Before: Mar 26 17:01:05 2026 GMT
Not After : Mar 27 17:01:05 2026 GMT
Subject: CN=9974c96e29897939f2bfe3aeaeb100f75f2c40e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6b:5b:5a:30:19:cb:fc:7d:55:2d:58:c6:85:
19:ce:bc:11:e0:5d:11:ea:c3:c2:fd:aa:69:e0:ab:
2b:13:ef:a2:02:c8:fc:b1:ae:9b:3a:77:b7:f6:90:
97:29:2b:68:3a:76:26:71:eb:38:4c:14:45:c4:47:
b1:a1:82:c3:d4:22:4c:62:79:b6:fe:a8:f0:0e:af:
50:28:86:69:44:82:8b:a2:fb:28:36:97:87:90:37:
cf:b6:eb:d8:c9:e9:b6:11:38:ce:1b:df:fc:6a:25:
7a:74:30:69:be:bb:90:1d:a5:13:cb:fa:59:8f:6f:
2b:eb:70:e7:4e:73:09:f3:90:9b:b6:54:88:78:1d:
b6:d1:83:f1:d3:0a:d5:e1:77:fe:fb:6d:dc:c4:10:
e1:71:14:af:b8:e9:f4:c9:7a:db:b2:1c:6e:ef:66:
04:69:e5:08:4f:14:1c:d6:1c:d8:6a:8f:f8:a4:8c:
67:f5:1b:37:d3:9f:11:7c:c0:31:ec:63:5e:f4:4c:
17:99:9e:72:61:9e:f8:df:a0:a1:13:7c:71:f7:aa:
8d:bb:a9:4f:aa:2e:87:24:18:d0:a5:11:23:9d:92:
28:5a:df:a6:1a:bb:eb:2e:9b:d8:54:3d:55:b8:16:
ff:cc:9d:6c:fc:53:62:03:9d:0c:ed:f5:74:64:f3:
4f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:74:C9:6E:29:89:79:39:F2:BF:E3:AE:AE:B1:00:F7:5F:2C:40:E9
X509v3 Authority Key Identifier:
keyid:69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:f1:d2:f0:2f:ca:e6:64:34:18:0d:9d:99:69:80:ad:97:5b:
4f:93:48:cf:8a:ad:73:a4:37:41:2c:8c:59:0a:44:b2:6c:52:
f4:14:eb:d4:5a:c0:a1:23:be:15:55:ac:ce:d3:ea:cf:ef:ac:
8d:73:5d:28:35:b8:42:b7:e1:f2:1e:0a:0b:8a:11:69:22:e3:
a0:17:27:dc:bb:5b:4d:1d:b4:1a:ca:b7:98:f7:d0:d5:33:36:
ef:e2:5f:84:26:0c:d7:d5:6c:18:7e:7f:f2:f4:63:e6:ed:c4:
38:d8:d5:19:2f:14:36:40:5b:39:39:d2:05:31:b6:78:f6:bc:
df:47:8f:ab:55:0d:c8:e3:e9:d8:b1:63:ee:57:6d:a4:1b:40:
8b:3a:5d:d7:0e:21:49:8a:b6:26:61:b0:19:89:9f:0f:02:d9:
87:55:9a:c0:f7:6b:6f:51:6a:ed:08:26:45:6d:16:ae:4a:76:
b6:20:e2:05:f8:3b:de:17:0c:2e:8a:0c:b7:a3:69:95:7f:ce:
df:7e:7f:03:53:d6:e0:4b:b8:bd:91:fd:a3:74:88:3c:c1:ac:
c6:f3:24:62:1e:0c:ea:cb:a2:53:20:02:1f:5b:f4:d3:39:1c:
eb:9b:8b:b5:67:bc:1d:f6:b5:37:d1:b6:01:7b:7b:f0:97:78:
33:67:35:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:24:10 2026 by rpki-client