Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: YK3o3iC2rxzy31ea/eDHtC4vCimFeaz7W24B0DFQSKk=
Subject key identifier: C2:C4:2C:24:A0:51:1C:78:0C:14:B1:49:D3:06:C7:C2:1A:F7:46:46
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 019D2704237A94CDE0DA3DBC2318117C086D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 0A5F
Signing time: Wed 25 Mar 2026 22:01:15 +0000
Manifest this update: Wed 25 Mar 2026 22:01:15 +0000
Manifest next update: Thu 26 Mar 2026 22:01:15 +0000
Files and hashes: 1: Exw1Qk2SWzacP5BYuop4G0zGR9w.roa (hash: LJscICsI9uW5FgqiZjcGqJLPX1UQnMp+ey99OzItE9c=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: t//4WQF6/m8/xWqwmiuAStYCv93mNPte82eg5BDk1g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:23:7a:94:cd:e0:da:3d:bc:23:18:11:7c:08:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Mar 25 22:01:15 2026 GMT
Not After : Mar 26 22:01:15 2026 GMT
Subject: CN=c2c42c24a0511c780c14b149d306c7c21af74646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ed:01:91:6b:c1:5d:ce:0d:45:0f:10:2e:55:
52:4e:28:d5:72:b5:15:96:ef:44:29:59:59:da:64:
32:ee:b4:c9:15:66:76:3f:c6:dc:4f:07:f5:63:a2:
c2:ff:16:da:40:9e:45:fe:e1:cc:bb:19:dc:65:aa:
23:dc:28:30:90:b9:af:47:ba:78:ec:6a:b1:06:bd:
9c:bb:da:e2:41:07:fe:cb:7f:c7:61:c0:49:b6:7f:
99:6b:74:86:5d:0d:f8:4d:86:63:f0:d8:5d:dd:3b:
ff:b1:3e:46:10:7b:14:55:d0:8c:a1:6b:de:eb:30:
75:70:31:a6:f7:fa:5d:e4:80:96:66:b0:5c:6d:e0:
10:f5:63:a0:82:73:2e:b1:67:45:32:12:7d:02:94:
bf:21:f4:2a:aa:eb:8d:d8:83:29:05:f9:6a:91:3e:
e2:cf:43:38:ce:db:f7:d8:61:b4:a1:b3:8f:1c:da:
aa:52:0e:4a:07:ca:56:f5:db:31:6f:ce:29:5e:40:
56:e1:d7:46:e2:d6:04:69:58:27:a4:8c:07:12:92:
37:74:d4:70:8a:3c:b0:9f:eb:84:70:e8:68:c4:b1:
95:cc:0c:85:18:a7:02:1e:a2:39:08:ed:bf:d5:b0:
4c:34:38:88:bc:04:2a:c1:7d:9a:71:4a:c7:ee:50:
96:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C4:2C:24:A0:51:1C:78:0C:14:B1:49:D3:06:C7:C2:1A:F7:46:46
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:9e:84:63:e6:6c:a4:5c:6d:1a:76:b3:5e:3d:6b:f1:a8:f8:
bf:ef:13:b8:c9:d8:11:fa:73:3a:e5:22:76:19:28:ce:2b:aa:
81:4e:75:40:ec:e6:b4:6e:93:10:7c:63:38:19:a2:d6:77:5f:
ac:02:5d:59:16:45:7c:96:f8:3f:78:f1:d3:9d:70:90:1f:d4:
6b:6b:a1:ee:2e:41:0d:7e:35:fe:73:66:8d:9d:bb:1f:53:05:
23:b8:51:08:56:bb:5b:40:4c:de:32:5a:0f:dc:0a:24:41:f7:
6e:7d:af:44:38:b6:22:96:d9:4f:19:e8:1c:ad:8d:f7:b1:8b:
f4:d2:3d:85:3b:53:78:2e:2e:b9:28:ce:70:ed:b6:0e:03:f9:
d4:81:f9:4e:15:4e:3e:e0:d0:00:a2:d9:13:73:22:ef:8b:0c:
47:42:68:79:fe:ef:df:69:41:e7:ec:76:de:7a:3a:98:83:d3:
27:75:85:b3:7f:f1:7b:cd:8c:7c:00:1f:f5:19:b1:15:a3:e6:
2b:28:8c:fe:78:68:fe:f6:f5:29:9e:07:dd:90:07:75:94:fe:
45:b2:72:e8:3d:2a:03:bd:f1:10:2e:7c:c4:d0:7e:5b:cd:e7:
67:bc:d1:05:ba:57:31:4d:9d:0b:c2:d9:99:90:d4:ab:b1:26:
0a:1c:9f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:09:31 2026 by rpki-client