Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
File: AvxcBk9RWcih-kBmyMuP9wFnHdI.mft (raw, json)
Hash identifier: 0GAJfEgJBJfAlEF75PnZxqlYL5psd7ZU566STPeG5f4=
Subject key identifier: 10:18:83:4F:46:5C:39:EB:F8:15:F0:89:48:5C:DD:34:EA:DF:99:BF
Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Certificate serial: 019D25BA0EF301F11850CFED14F42B8C2C28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
Manifest number: 0DA7
Signing time: Wed 25 Mar 2026 16:00:43 +0000
Manifest this update: Wed 25 Mar 2026 16:00:43 +0000
Manifest next update: Thu 26 Mar 2026 16:00:43 +0000
Files and hashes: 1: AvxcBk9RWcih-kBmyMuP9wFnHdI.crl (hash: hJpd/mrYiKkFN+9a+VA5UqafaZZRZw065/qVuDXJpKo=)
2: aieeYAXcHf6iZv5A5jAAy7zNKfU.roa (hash: +Mh/5aHvThjQydJerYwnqxyvk8cU5lJddJlC7wDae6g=)
3: pV8pE_cOHYJYSxBxGWWyjX19c8g.asa (hash: eS3GUrvb75q/7iupe8O+vpHF97RDhum8PqoVzv8QV5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:0e:f3:01:f1:18:50:cf:ed:14:f4:2b:8c:2c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Validity
Not Before: Mar 25 16:00:43 2026 GMT
Not After : Mar 26 16:00:43 2026 GMT
Subject: CN=1018834f465c39ebf815f089485cdd34eadf99bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a3:71:bf:dc:09:0f:49:c1:60:f9:d9:3c:b6:
49:b0:18:6a:27:42:e3:25:6b:bb:0a:ef:53:5e:cf:
9e:89:f5:fa:2d:5c:d4:15:82:93:96:fa:31:15:ed:
11:c5:6d:e2:d2:20:23:6a:08:e2:2c:db:c3:49:71:
d0:17:d4:0e:cc:2b:28:67:30:fb:ec:c5:85:c7:d3:
cc:d3:4c:79:e9:d7:ea:37:57:38:2b:cb:5c:45:cc:
b1:c2:52:d3:e5:0f:02:4f:bd:e4:5c:2b:25:bd:6e:
21:2d:4c:02:12:0a:f6:ce:e6:27:fc:78:36:14:27:
94:1f:0f:9a:9c:0f:f1:43:a8:2f:cf:a5:59:45:b9:
cf:59:c3:30:0b:63:b4:a2:45:e6:9f:15:b3:21:5e:
ff:ff:0e:1e:bb:5b:71:e4:86:6f:32:5b:aa:28:32:
1b:87:aa:b6:b7:fb:89:9a:a2:8b:c2:f6:ea:88:a2:
43:9d:52:ce:73:e8:16:42:d5:c3:ee:f8:96:87:13:
f4:62:e0:e0:3a:7f:3b:8e:15:c3:51:61:08:45:d8:
a8:49:de:95:7b:b4:27:b1:be:5f:8d:5e:df:66:74:
3a:3c:40:26:2f:3d:19:ee:ef:a8:8f:6b:4a:32:50:
18:90:e1:fa:3c:bd:14:77:de:02:bf:42:13:ba:c7:
ec:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:18:83:4F:46:5C:39:EB:F8:15:F0:89:48:5C:DD:34:EA:DF:99:BF
X509v3 Authority Key Identifier:
keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:e7:ad:93:59:19:d9:13:f1:8d:c7:e2:cb:53:7e:77:7c:67:
d1:6c:88:54:22:f5:97:a2:39:fc:e1:79:e9:bb:1b:0b:83:d6:
c3:d6:e9:6d:75:5a:36:75:0b:ae:07:39:ee:a7:d3:b5:af:0f:
06:1c:78:d2:62:40:44:6e:15:a8:91:5b:fc:f7:80:82:1c:4d:
b6:63:54:2a:e6:6f:1f:44:98:9a:a0:d6:e3:f3:d4:71:45:4d:
e1:2d:b4:99:20:05:60:79:5d:a7:49:05:03:ea:7b:2a:1d:d2:
09:23:81:4f:64:56:df:b1:11:d5:38:11:4c:d9:2b:cf:74:ac:
5c:db:40:71:da:24:9e:ae:15:41:e5:93:a2:15:09:47:ac:d6:
16:b6:f5:00:f8:67:d4:b3:94:75:8e:1e:52:c8:6a:02:aa:35:
8a:33:44:5c:b2:af:04:c7:8e:8e:19:14:c5:cd:15:35:36:54:
d3:ad:00:fc:46:d8:2f:23:c8:94:c3:78:b4:b6:de:4f:7f:2b:
be:2f:90:86:54:07:0b:88:44:bd:a3:63:00:25:7f:5a:de:f2:
83:76:a8:77:63:86:3f:b1:82:ff:2d:42:71:01:04:03:ef:b1:
90:b1:5b:cd:59:76:77:f8:54:8a:e9:f4:9a:79:5a:03:9e:a7:
49:c4:c5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:20:30 2026 by rpki-client