Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
File: ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft (raw, json)
Hash identifier: +NLFnT2NcLuMTpDAMV6ovx6UPaKftzIoPp5NQve3iaE=
Subject key identifier: E8:DA:28:19:24:E4:57:2A:6D:6A:B3:1B:D6:9D:24:27:EE:60:F8:BC
Authority key identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
Certificate issuer: /CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Certificate serial: 019D27DFACA406C3EDE1BACCCF6A05A66D21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 02:01:03 +0000
Manifest this update: Thu 26 Mar 2026 02:01:03 +0000
Manifest next update: Fri 27 Mar 2026 02:01:03 +0000
Files and hashes: 1: ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl (hash: zcGO6KJ6Qn1iTR9o4AMp5C2iF9hPgxNc+g0oZUOwS3U=)
2: goauVICOFKFE1porgUT28qkrY40.roa (hash: FzUBYAt3u7B+H1TQuJndqSy/KOs9unqwMiMZuvpu6gk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:ac:a4:06:c3:ed:e1:ba:cc:cf:6a:05:a6:6d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Validity
Not Before: Mar 26 02:01:03 2026 GMT
Not After : Mar 27 02:01:03 2026 GMT
Subject: CN=e8da281924e4572a6d6ab31bd69d2427ee60f8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bc:ba:66:dc:75:30:c4:55:32:eb:b2:71:ca:
52:40:40:8a:db:07:48:bc:05:3f:45:39:d2:c1:f5:
85:5e:25:02:b0:d5:27:1c:db:d4:ca:8a:be:cc:e0:
ef:8b:e4:87:82:c0:28:b0:98:55:0c:f0:91:78:63:
ac:e9:73:2d:46:67:c5:d1:61:c7:a3:3f:11:ea:55:
c5:87:f7:16:e9:66:81:2f:04:3e:ff:3d:08:84:8a:
f4:7e:2a:05:ff:3b:97:3a:47:b0:14:60:3a:05:50:
0f:a1:45:38:19:32:6e:e3:4c:96:55:cb:c4:05:1a:
63:06:fa:f0:36:1f:7d:d3:3e:7c:d4:bc:65:d2:66:
be:41:a0:91:6e:0c:7e:bd:64:7b:ae:1b:9b:ec:64:
d2:05:b7:30:b3:fa:72:b6:59:09:7e:0c:14:a0:4c:
48:50:48:81:6c:8f:d4:43:a4:e7:82:00:c3:c2:ef:
c6:d5:4a:8b:b6:9d:67:84:e2:7c:ec:4e:1e:83:ac:
50:0f:c3:03:35:29:f5:e6:6c:80:4a:8c:07:d8:a7:
f4:df:da:94:f2:5b:6d:e1:17:5d:63:ab:34:3e:01:
00:77:20:81:44:62:de:dd:8e:61:f2:89:4e:77:14:
2b:56:d4:44:b1:f8:0a:c9:03:10:27:53:e2:56:34:
7b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:DA:28:19:24:E4:57:2A:6D:6A:B3:1B:D6:9D:24:27:EE:60:F8:BC
X509v3 Authority Key Identifier:
keyid:6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e9:99:f2:07:87:8a:d6:e0:4d:86:77:3d:78:eb:59:6f:1c:
0b:81:17:7c:9e:2b:2c:ab:17:7e:94:46:9f:8a:a4:b9:95:c9:
2a:ab:27:3e:c1:e8:fb:36:e7:39:3c:d8:16:ed:f2:e4:a9:01:
09:c7:ad:0b:f8:84:a4:c2:b5:f7:da:e0:80:f3:fb:2a:c2:75:
e0:57:ce:87:98:9c:9a:07:6b:6d:ad:4a:98:a6:e6:d4:a5:64:
9c:b2:41:90:96:22:7c:fc:5d:3d:1a:43:6c:df:67:53:24:a0:
f1:37:2d:c7:e0:be:f6:69:1c:2a:4a:fb:3b:fa:14:12:36:01:
c9:c5:df:6a:37:20:e0:cb:2e:13:71:55:51:91:0c:24:b3:6e:
ef:93:24:0e:18:81:0d:e3:73:27:02:96:69:97:28:1a:4f:39:
c6:c2:48:fc:ef:73:8f:33:c2:a4:74:f6:3d:5c:59:36:c7:b3:
15:86:c3:5d:df:57:07:fc:e9:ae:35:12:cc:20:e1:fa:e5:1c:
2e:a6:79:2e:9f:97:60:af:d0:9e:c7:73:fc:2d:23:f0:35:c2:
8a:23:a2:09:d5:24:be:72:dc:6a:52:62:fb:2d:c3:a6:bd:53:
f2:cb:a3:5c:d8:0a:8c:13:82:0b:f4:f1:3d:d7:66:11:3b:e6:
51:2d:24:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:43:32 2026 by rpki-client