Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
File: AvxcBk9RWcih-kBmyMuP9wFnHdI.mft (raw, json)
Hash identifier: jhK1/C5uEO9okizFrTviv7jVpcclgPglToMu/LYsVq8=
Subject key identifier: 77:8A:C4:DA:6D:AD:77:A7:F5:46:EC:69:85:83:B6:77:DB:BF:19:72
Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Certificate serial: 019E1CEC09536CEFF1901328477EC81CFCD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
Manifest number: 0E27
Signing time: Tue 12 May 2026 16:01:31 +0000
Manifest this update: Tue 12 May 2026 16:01:31 +0000
Manifest next update: Wed 13 May 2026 16:01:31 +0000
Files and hashes: 1: AvxcBk9RWcih-kBmyMuP9wFnHdI.crl (hash: sCb2/EdMg6GjnoxgMDEkT+X0w6b4S9tvVvVE/dQX9M8=)
2: aieeYAXcHf6iZv5A5jAAy7zNKfU.roa (hash: +Mh/5aHvThjQydJerYwnqxyvk8cU5lJddJlC7wDae6g=)
3: pV8pE_cOHYJYSxBxGWWyjX19c8g.asa (hash: eS3GUrvb75q/7iupe8O+vpHF97RDhum8PqoVzv8QV5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:ec:09:53:6c:ef:f1:90:13:28:47:7e:c8:1c:fc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Validity
Not Before: May 12 16:01:31 2026 GMT
Not After : May 13 16:01:31 2026 GMT
Subject: CN=778ac4da6dad77a7f546ec698583b677dbbf1972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8f:f0:cd:cd:36:b7:3c:3f:81:c3:05:91:c3:
9b:ce:11:a7:08:04:dc:13:34:3d:97:97:5b:84:a7:
b9:37:65:f0:ed:18:79:94:5c:8b:eb:87:c0:81:9d:
dd:4d:c2:a8:62:7f:c4:8c:21:5c:1a:e6:ab:b1:1d:
65:66:68:a6:57:c0:a0:3b:80:02:9c:28:28:76:d0:
b1:91:72:2f:8e:5d:06:0a:7b:58:e5:41:70:6c:13:
34:5f:c7:6d:94:ba:7b:ef:0f:68:67:61:26:ee:a7:
0c:d1:89:fa:ce:7f:91:aa:c4:82:c2:f0:60:64:d7:
77:27:dc:9a:48:e1:74:78:f6:39:1f:38:5c:2e:9c:
0b:82:c5:f0:42:41:f9:13:f6:8f:cc:04:10:67:89:
c7:de:c3:71:71:6d:f5:b8:cb:f4:49:38:7f:6c:df:
a9:d7:3c:b2:c0:13:30:15:92:fa:a7:d7:53:4c:b5:
05:9b:ee:29:35:3c:af:e4:97:c7:2f:c5:ee:a4:c4:
e9:71:c9:60:3a:0b:5c:59:c3:50:33:3d:15:d4:05:
93:16:dc:af:8a:9e:51:ac:43:ce:a4:83:00:95:9d:
03:61:86:99:06:90:ac:dc:ea:29:8f:e5:3a:9f:84:
ac:f2:16:24:f0:d8:1e:04:5e:42:47:a8:a9:a0:3c:
0a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:8A:C4:DA:6D:AD:77:A7:F5:46:EC:69:85:83:B6:77:DB:BF:19:72
X509v3 Authority Key Identifier:
keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:b6:ac:5b:46:8c:ce:bd:f4:be:04:1f:e7:ad:03:c2:23:02:
b8:f0:24:5c:fc:48:e7:3b:fb:48:53:90:31:1f:35:38:6c:31:
68:2c:b7:aa:0b:56:2c:30:50:6f:a5:57:bb:e4:58:27:d0:b0:
79:3f:90:fa:9a:d5:af:ea:3a:96:a3:77:b9:7f:5f:c1:05:f7:
30:af:ec:98:41:65:11:62:79:04:f2:af:0f:8a:fd:49:05:1d:
66:ce:9a:cc:30:f1:6a:9f:bd:40:96:5d:33:98:06:8c:6e:72:
71:2d:3b:1b:ef:d6:9d:79:ce:ee:db:f6:32:cf:37:f4:ad:89:
c0:53:6b:e1:d5:48:67:50:8c:f8:68:d3:50:51:7f:60:54:55:
09:4c:15:53:4a:cb:f9:7f:9d:2a:33:4d:12:da:cd:85:4f:4d:
97:7c:62:a7:af:db:7b:f9:f7:56:9d:c4:27:98:df:bb:44:1a:
df:14:43:06:ab:8a:06:ea:ff:cc:c0:2f:0c:92:98:66:a6:8e:
c9:0b:4e:3f:bb:8f:9a:75:87:9d:95:47:2f:2a:f9:6c:70:ad:
af:27:eb:d3:eb:c5:65:66:59:63:5d:93:9a:7e:f9:e8:d4:20:
6f:fd:d3:01:b3:fd:28:9e:73:42:9b:bb:3d:ec:94:a4:cb:5c:
bc:27:e7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:12:14 2026 by rpki-client