Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json)
Hash identifier: 0S7oFT8ETuIrigIHU0kApbffirDac7VIRDH/fsuIB7w=
Subject key identifier: 3E:88:31:20:1F:53:1A:73:B2:9A:BB:56:2C:E2:DA:B4:12:DC:9E:10
Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Certificate serial: 019D27E0258C7B303ECE400049350F22D6BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
Manifest number: 08B0
Signing time: Thu 26 Mar 2026 02:01:34 +0000
Manifest this update: Thu 26 Mar 2026 02:01:34 +0000
Manifest next update: Fri 27 Mar 2026 02:01:34 +0000
Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: vp0TUKgbR8SyyG4xy+Rwi0KAJHt/rVtPd5YKwVBaufE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:25:8c:7b:30:3e:ce:40:00:49:35:0f:22:d6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Validity
Not Before: Mar 26 02:01:34 2026 GMT
Not After : Mar 27 02:01:34 2026 GMT
Subject: CN=3e8831201f531a73b29abb562ce2dab412dc9e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e3:bd:86:b7:10:f9:d4:8b:b6:12:7e:86:58:
d3:43:e3:9f:73:1b:29:19:d2:27:39:16:6b:be:fd:
10:82:05:37:a8:80:99:b5:b2:5e:6b:3c:35:81:34:
e1:66:2f:96:b8:b5:e3:35:2f:ae:9f:ea:e8:64:46:
48:92:2b:39:96:a5:2a:73:e1:77:4c:97:e0:b9:39:
74:0f:20:30:ad:17:4f:32:f4:4f:e5:32:70:c1:ce:
f7:5e:a8:34:06:9e:40:80:c3:f1:35:ae:53:28:18:
5b:fe:4a:67:d0:21:1b:40:e1:c4:37:54:ad:a0:3d:
df:fb:7f:42:09:c7:0e:74:39:ea:b2:98:df:e0:0f:
02:f6:6f:c3:5d:c9:c3:ca:cd:a6:db:46:65:30:0d:
ea:af:11:db:62:05:c0:47:67:2f:0f:6c:74:29:f9:
8d:42:7c:6e:18:1a:71:fe:ed:5d:aa:30:31:2b:b7:
a6:2b:24:c2:4e:cb:b2:e5:4c:de:40:7d:b1:47:4a:
bf:2b:e4:a7:ae:88:c6:ef:12:15:f0:2c:d8:f8:24:
81:1e:91:55:d1:3f:87:df:60:d4:d1:3c:1c:69:df:
cd:b0:8c:3c:5a:83:b8:77:10:de:d8:ad:e9:28:aa:
60:af:11:8c:68:e5:00:15:15:12:cc:dc:19:dc:6a:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:88:31:20:1F:53:1A:73:B2:9A:BB:56:2C:E2:DA:B4:12:DC:9E:10
X509v3 Authority Key Identifier:
keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:46:c2:0a:ac:0d:98:cb:2d:01:6c:a9:c4:fb:58:ef:49:86:
68:f9:20:df:af:de:0d:bd:cb:67:bb:3a:13:cb:77:be:c9:d3:
18:57:7a:ee:47:15:34:09:11:e2:11:a2:da:52:79:49:aa:92:
49:a5:a8:36:d0:44:2a:4d:e2:4d:57:27:21:f6:bf:14:d6:cb:
82:a2:70:b0:ae:50:52:c9:2e:33:8b:4c:e5:15:3c:f4:ed:61:
e8:ed:0c:36:c1:d8:49:22:a1:ec:23:6e:fc:11:b0:e2:e7:0d:
75:3c:1a:d1:94:e4:e0:46:bb:1f:e7:c7:ed:8d:fe:c7:26:75:
df:9f:4c:61:39:dd:5a:26:a5:0a:d1:a3:dd:7a:82:90:69:3f:
e1:df:b6:39:9a:a7:cb:60:59:d1:39:8f:66:0a:0a:63:f3:db:
76:a7:0f:78:39:7c:92:27:d3:de:bb:62:42:70:d0:67:90:19:
40:94:21:f6:e3:57:ba:60:c5:79:ba:f9:16:a8:e4:62:1c:09:
c0:10:a5:33:a5:e0:3b:7e:46:f7:11:b4:4b:4c:2e:0c:54:d5:
1c:f6:a7:a8:11:dc:a6:be:f2:c7:76:7b:f7:2b:52:e4:1f:47:
e9:73:b6:5b:ab:4a:13:49:ac:ca:a9:55:f5:29:e5:41:9b:0d:
be:d1:4e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:12:20 2026 by rpki-client