Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
File: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft (raw, json)
Hash identifier: 4TLQh0wU7hYyns90IF1riF/0NffjvBJb+4it0ftgbHg=
Subject key identifier: 8D:1B:B2:23:C6:28:65:9B:FC:50:60:3E:A6:E5:29:E3:7D:29:18:54
Authority key identifier: 01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
Certificate issuer: /CN=01538851167b4e3d6f64d53797b08cb41371870f
Certificate serial: 019D2816ACAE8656EB1E68FF4CCD50DEEEB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 03:01:07 +0000
Manifest this update: Thu 26 Mar 2026 03:01:07 +0000
Manifest next update: Fri 27 Mar 2026 03:01:07 +0000
Files and hashes: 1: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl (hash: gNO6n0KZmXTL/p6EyBFRNJnOfoO7s4ncxrMGY1AVz2g=)
2: mWE6kT69cqu-PW8JgJR1gCAZ64s.roa (hash: FJjpE6dQyURSUrQm7mC2IcezcL6cJcvz4TAfaMMJ8lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:ac:ae:86:56:eb:1e:68:ff:4c:cd:50:de:ee:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01538851167b4e3d6f64d53797b08cb41371870f
Validity
Not Before: Mar 26 03:01:07 2026 GMT
Not After : Mar 27 03:01:07 2026 GMT
Subject: CN=8d1bb223c628659bfc50603ea6e529e37d291854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c2:14:5b:f5:48:ac:71:17:01:13:82:7a:95:
bb:4b:ab:05:6b:ab:09:04:22:42:35:f1:ab:8d:9c:
a2:99:fb:57:6e:93:aa:73:36:cc:44:a3:c9:83:6b:
3f:fe:d6:ab:9c:43:40:e6:1c:0a:b1:8c:33:aa:95:
bf:da:ce:40:94:f0:3c:62:e1:db:bb:2e:3a:66:54:
f2:c7:b7:e1:08:a3:9c:e3:21:4e:1e:fb:56:22:96:
b3:ef:c4:38:bd:6c:b5:57:d2:6c:b3:0b:56:c2:01:
bb:42:8f:12:dc:31:ff:56:5f:35:8a:e1:32:9d:4f:
3c:fe:33:a7:90:1d:27:46:9a:b4:ad:13:98:85:69:
22:4c:14:19:4e:a7:51:73:90:c3:2f:f3:79:fe:15:
6a:3b:73:01:b8:a0:50:f7:54:92:49:1b:99:cb:68:
d1:fd:7a:79:6e:bf:18:3f:35:c1:b7:d0:f8:5e:0e:
f7:72:17:ad:01:67:59:3a:b6:8d:1a:e5:cb:3c:5e:
56:d1:97:cd:ef:28:40:f3:97:db:aa:d7:18:8b:ab:
f5:97:c0:9f:9c:d7:93:7c:c9:71:f2:23:6e:96:9e:
14:5b:44:e9:2b:9f:d2:06:ae:20:24:b6:06:82:b7:
a1:94:66:be:75:f7:d4:ce:71:68:1e:e2:46:57:c9:
3d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1B:B2:23:C6:28:65:9B:FC:50:60:3E:A6:E5:29:E3:7D:29:18:54
X509v3 Authority Key Identifier:
keyid:01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:45:d0:da:0e:2c:41:c4:7d:be:be:ef:1e:73:25:89:1e:30:
f0:46:82:e5:7e:13:95:7b:e2:25:7f:11:c5:a6:25:fc:48:b4:
60:9e:e7:ba:5b:fb:24:00:55:5d:a0:83:5f:58:0f:44:98:8d:
24:d5:9e:62:6c:e8:ef:71:bc:7c:0c:83:d7:d5:d8:6c:bf:99:
ac:59:22:88:9b:95:59:d6:7c:b1:e8:01:ff:ff:78:54:3b:df:
ab:1e:7e:39:5f:84:da:24:3d:de:16:ef:30:ff:71:8b:69:88:
ce:e1:ca:7c:17:21:e1:cb:79:b9:90:ac:9d:e3:8b:75:2c:71:
08:b4:5b:51:e1:ff:21:48:05:c2:58:3f:fa:55:a5:c6:be:a7:
90:74:b2:9e:b0:e9:5a:d0:79:17:3d:22:08:3e:eb:67:48:d7:
5e:ed:1b:aa:61:de:ca:41:4f:84:f1:c4:93:9a:9f:92:61:44:
ac:cd:4e:3f:58:7a:7e:3b:8d:d4:e9:90:a4:4f:be:92:9d:8d:
29:04:ca:e2:fa:ab:92:47:57:a0:4b:81:ea:a6:b6:7b:8d:33:
9d:85:29:a6:21:25:23:b0:0a:df:f0:62:d9:cd:1b:86:23:a2:
17:5d:ac:7e:1c:eb:6f:23:f8:0d:10:50:32:e5:07:6a:26:0b:
e3:0b:d8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:05:38 2026 by rpki-client