Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: /2i9zV6lc9AkkYmcsex+Q6f4L3Ajo0WIyDr/l9VGfyg=
Subject key identifier: D6:D7:D1:62:32:E7:70:47:05:4F:B2:5A:16:25:73:58:7E:41:DE:2D
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 019D25F17FA8C201B1D2DE694CB5A654A0E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 08C3
Signing time: Wed 25 Mar 2026 17:01:16 +0000
Manifest this update: Wed 25 Mar 2026 17:01:16 +0000
Manifest next update: Thu 26 Mar 2026 17:01:16 +0000
Files and hashes: 1: 4oDq4WaHtzxq4X2XmYKxOilfXjc.roa (hash: 0o/IvKk3dqBypwXiDheqBd2S3T9GWA2BbRQUpKWXnt8=)
2: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: AByyDmjjqxmonYS72wjeK+mi076HHGExHSqZTZkyees=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:7f:a8:c2:01:b1:d2:de:69:4c:b5:a6:54:a0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Mar 25 17:01:16 2026 GMT
Not After : Mar 26 17:01:16 2026 GMT
Subject: CN=d6d7d16232e77047054fb25a162573587e41de2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:69:28:96:02:85:55:c6:70:06:29:16:7e:90:
60:3d:59:b3:70:b5:d4:e4:fd:70:ba:43:12:b2:30:
78:94:62:c7:eb:25:26:bc:9d:8f:0d:83:3c:b5:e6:
89:69:21:c0:a7:8b:14:cf:cf:b1:c8:b8:92:b9:16:
8b:34:1a:05:2a:ce:7e:31:a7:65:bd:ec:9c:18:7e:
5f:6c:78:e2:80:9e:6d:e0:3c:e1:6e:41:dd:a7:9f:
9d:a9:ef:51:40:f1:73:7c:07:27:54:f4:27:ce:59:
ad:2a:04:35:0e:5c:3a:c7:48:52:eb:03:f1:66:15:
b6:9e:6b:07:f8:3b:ea:a3:c5:13:31:ea:34:9a:9a:
07:81:99:58:a3:1c:3c:16:af:fc:75:60:37:32:9b:
80:39:18:4c:12:b7:81:79:74:9a:7b:bb:a6:30:be:
84:40:09:20:1c:cf:d4:c5:c2:0e:8d:3e:22:9c:35:
be:4b:53:91:97:a6:45:c8:89:02:82:a2:b7:c9:d7:
71:90:d5:94:77:f8:24:f7:f2:d7:87:4b:89:f1:ea:
af:68:a4:b1:19:c4:83:30:95:51:77:8a:00:92:de:
60:06:51:f3:bc:bc:6a:a9:23:58:14:9a:0d:e4:85:
40:46:6c:47:36:5b:1d:1c:ad:ed:a2:92:03:bb:bf:
ac:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D7:D1:62:32:E7:70:47:05:4F:B2:5A:16:25:73:58:7E:41:DE:2D
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:90:91:c1:f8:67:9e:94:4b:5f:b5:b5:69:f9:f1:72:73:8c:
e1:94:82:8f:5b:05:9b:26:56:df:ef:e1:a9:03:5b:60:39:cf:
d3:84:80:fb:3d:51:a8:cb:68:2b:e5:8d:88:f8:bb:fa:c0:b0:
5b:02:2f:4e:c2:03:d3:05:18:c9:df:fd:59:b8:29:09:ba:cf:
48:ee:9d:53:52:ee:ba:81:13:d4:b1:34:15:2c:ab:f6:45:b9:
18:ad:3b:29:8b:20:bc:74:0a:80:a3:2b:9c:a7:ee:4e:e6:88:
f1:96:1e:8c:46:e4:22:0a:3b:4b:ca:a6:96:ac:40:1c:d4:77:
31:7d:21:a6:d1:f5:2b:ed:07:51:a4:05:03:30:1a:bb:3d:cc:
7e:8e:35:7b:07:b9:22:04:19:29:05:5b:0b:80:04:c4:13:b2:
b4:c3:58:50:9e:b0:27:8b:c7:16:1b:9b:16:4b:c1:2d:1e:12:
b2:59:0c:ba:e1:7f:47:c1:63:18:86:e9:c4:89:85:67:01:4b:
7f:7e:e4:ad:9f:3a:6c:d1:3a:2e:2c:72:1f:f4:9e:27:4d:e3:
6d:d3:19:b3:51:0e:dd:12:a7:04:10:37:d9:dd:fb:09:1e:e6:
f6:f5:e8:a6:d8:44:fa:f7:7a:dc:95:d0:a6:16:2c:aa:cf:d7:
a1:f0:19:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:31:40 2026 by rpki-client