Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json)
Hash identifier: Mg9namwA6lCG9HnNoHsp6wj3CtuWZa1EICoe/Hw/SYc=
Subject key identifier: 29:98:DF:B0:F9:CF:94:C3:64:45:CE:B7:9B:D8:82:B3:15:36:33:17
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 019D269632E6DFA59E2B31A0FCED056751B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
Manifest number: 188A
Signing time: Wed 25 Mar 2026 20:01:10 +0000
Manifest this update: Wed 25 Mar 2026 20:01:10 +0000
Manifest next update: Thu 26 Mar 2026 20:01:10 +0000
Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: aP5OJr/uK4iEA7G0cg57nl05axXlS2UwkGtUEUlhM5Q=)
2: TM56q_Km90IofYyolcjUGG4s9_E.roa (hash: +vMdN883JqiJ4BCwwMasiDlvt3eGgHHdJPYkXZCMObo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:32:e6:df:a5:9e:2b:31:a0:fc:ed:05:67:51:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: Mar 25 20:01:10 2026 GMT
Not After : Mar 26 20:01:10 2026 GMT
Subject: CN=2998dfb0f9cf94c36445ceb79bd882b315363317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:33:2d:d3:05:92:28:aa:ba:10:00:f2:d3:df:
a7:f3:82:8a:c6:53:f0:1d:f9:ca:bd:0b:47:63:ca:
e0:fe:23:74:ae:6b:48:7b:9e:3c:15:ce:70:6b:f7:
ad:20:58:6c:7b:7d:ef:ec:6c:50:48:0d:7b:95:5d:
e6:a9:1c:01:da:b0:a8:49:22:cc:b5:57:6a:5e:2c:
25:e6:4c:5d:6c:42:1c:e2:0a:16:59:a7:fb:ea:69:
9a:c3:92:18:89:b2:e9:5c:31:3a:00:fe:46:5e:46:
8e:68:b7:87:c7:5a:21:8d:bb:fd:9e:82:24:fe:51:
0a:c3:43:bd:c2:dc:f0:20:95:1d:76:c3:ce:1d:66:
ec:15:05:73:74:4d:87:dd:a3:01:d3:48:21:7c:0d:
eb:2e:29:93:fb:56:fb:f3:29:d2:a1:ba:d5:5e:09:
a7:92:9d:ea:b0:65:4c:db:76:d8:5b:92:8d:10:77:
a7:fc:3c:fc:9d:a0:14:33:ab:15:0a:55:f6:58:89:
35:74:42:9e:dd:ba:52:bd:17:0b:c1:50:38:e9:ac:
31:4b:0d:8c:cb:e9:14:05:4e:ab:d1:c8:99:cd:30:
06:09:81:88:b6:a3:10:d7:df:0e:8c:53:6f:82:3a:
7c:47:cf:04:29:da:2d:2f:9a:10:da:ef:cc:fd:99:
a5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:98:DF:B0:F9:CF:94:C3:64:45:CE:B7:9B:D8:82:B3:15:36:33:17
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:ce:3e:b1:b5:46:34:8a:ca:a4:1c:b8:17:7a:4e:0f:c2:80:
47:37:e4:c8:90:5d:c5:36:8f:a7:a1:35:d7:81:72:f4:12:56:
9a:21:67:45:21:6e:ff:c4:14:02:b0:00:9f:1e:53:b6:4f:b7:
d4:b9:bf:f8:df:65:85:33:13:30:a7:83:52:04:12:84:1a:41:
11:97:02:9b:3c:0c:94:42:dc:a3:71:6b:aa:88:92:7f:7c:2d:
9b:93:fa:01:dd:ac:56:32:50:70:3e:a1:41:e7:31:eb:4b:96:
14:20:fa:f3:e1:00:6b:63:ac:2b:ff:d6:9f:0e:34:bc:70:84:
aa:1b:0c:97:e7:75:94:d5:60:84:25:d9:8c:b6:1a:63:1b:34:
48:53:56:6e:d8:d8:23:99:0c:85:ad:a0:5e:06:0c:51:79:bb:
1a:83:8a:5a:46:4c:19:cc:92:c1:95:f5:1d:56:13:75:14:41:
95:f9:0e:cf:4f:c2:7d:7f:7e:49:fe:50:ce:95:6f:59:46:77:
bc:03:98:17:ce:e7:53:8d:4c:ff:6b:61:5f:dd:8f:9e:72:07:
c4:68:f4:51:97:ba:c2:91:bb:e2:17:cb:99:7a:f7:bf:24:92:
23:14:3a:64:ce:86:96:aa:20:64:1b:5b:e5:16:a0:68:7a:fc:
30:ff:45:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:51:11 2026 by rpki-client