Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
File: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft (raw, json)
Hash identifier: ncDPg030CJ3juMchplL9S/wiBMR2IgUknPOY8a7/u7o=
Subject key identifier: 10:25:61:11:5C:4E:34:E7:D3:0B:C7:48:24:A7:6D:AB:B7:F4:80:61
Authority key identifier: 03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
Certificate issuer: /CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Certificate serial: 019D28F242894398B2560A314175517E072C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 07:00:58 +0000
Manifest this update: Thu 26 Mar 2026 07:00:58 +0000
Manifest next update: Fri 27 Mar 2026 07:00:58 +0000
Files and hashes: 1: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl (hash: xKSmO+0EEcpZhZUCmjTEvToLUTs9xKS03TXZo55SXDI=)
2: eCyziES9pqG-mQfeLtr0n6C5-NA.roa (hash: l6vsyJV9WvrG97VV98IwTWvWh3E/Ue4n2AyaMsNRcxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:42:89:43:98:b2:56:0a:31:41:75:51:7e:07:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Validity
Not Before: Mar 26 07:00:58 2026 GMT
Not After : Mar 27 07:00:58 2026 GMT
Subject: CN=102561115c4e34e7d30bc74824a76dabb7f48061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:76:92:2b:ed:b1:41:80:60:45:bb:4d:1f:16:
71:e7:5f:05:ad:9f:c4:b7:cf:7a:c8:23:f7:7c:08:
0e:bd:86:fb:63:45:51:3d:e7:4f:39:3b:3f:c1:ee:
7a:ed:af:3c:13:a4:cf:d9:1a:e5:ca:f3:f1:66:0d:
95:46:94:7c:0a:b4:5d:e9:6c:6c:8c:d3:4f:c4:f8:
64:56:c9:77:0d:21:d7:f7:0f:95:7f:4f:bf:0a:fc:
36:0d:51:73:32:10:1a:54:16:cf:2a:4b:e8:5c:47:
0d:6a:8d:0c:2d:65:0d:73:57:00:6f:f9:48:74:51:
2d:15:b5:cc:5b:8b:51:a1:1b:4b:77:da:79:e9:3d:
14:5c:99:88:c5:4a:08:37:5b:ce:e0:d3:a7:b2:2e:
b8:e4:29:63:15:54:ef:5e:64:6d:af:96:23:f6:ca:
ff:5c:37:88:1a:83:1c:90:31:3c:df:25:d3:3e:88:
07:91:34:4c:5e:a9:9b:72:d4:67:67:f2:18:4b:27:
14:2a:3f:38:e8:af:06:9e:a5:f6:ef:52:4f:16:30:
ee:ec:12:5f:d3:70:93:6a:6d:cc:53:ec:b4:58:9d:
47:5b:db:e1:c9:f4:98:ff:c5:54:d7:e4:35:0b:18:
39:59:1f:e5:02:4f:ce:0d:b1:85:a5:1b:ac:ed:b9:
42:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:25:61:11:5C:4E:34:E7:D3:0B:C7:48:24:A7:6D:AB:B7:F4:80:61
X509v3 Authority Key Identifier:
keyid:03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:00:5f:a5:8c:ca:cf:2d:4d:2a:ab:0f:91:32:d8:04:ca:2e:
d8:c9:7b:55:f5:f5:4f:07:b2:d3:f1:5f:4e:63:dc:f4:23:32:
04:47:aa:79:88:93:f2:f7:80:56:36:42:57:11:e5:5a:04:97:
ac:d5:6a:5a:54:0d:73:4d:ab:cf:c0:a7:dc:af:c2:d1:65:be:
56:af:ef:8d:98:66:27:69:62:49:ee:55:15:ff:b3:85:1d:b8:
99:92:ea:6d:e8:9f:f1:62:69:b3:04:03:6a:4d:8b:74:c5:0f:
76:66:33:85:a2:c5:c8:14:12:3d:8d:97:11:47:6e:97:5f:c7:
c9:ba:d9:0d:4b:a9:40:d5:95:98:2b:da:90:3a:45:72:62:de:
97:57:33:1a:c4:26:22:fd:da:9a:8b:20:52:fe:6d:9b:d9:5c:
4f:b0:9f:6f:99:8c:dd:78:88:11:00:d5:ff:1b:0a:0d:bc:31:
b0:47:e7:63:07:7e:84:99:a1:79:34:56:a7:24:b8:86:7c:a7:
2a:48:c3:e2:62:b1:42:79:8f:8b:56:d6:69:ec:0f:ae:80:7e:
12:39:77:54:aa:f6:17:89:c0:cf:29:1b:da:f8:4b:bf:ab:c2:
21:eb:aa:2e:61:6b:27:26:a9:ad:cc:4d:ff:cc:7a:25:3b:1a:
3d:7a:1c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:15:26 2026 by rpki-client