Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json)
Hash identifier: ilX+GnvLQwSjHHRSPBh3KDwmti6/vzIazzQtdkwBPq8=
Subject key identifier: E3:84:62:61:53:6A:EE:32:59:F3:98:88:79:72:B0:51:D6:9A:18:42
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 019EFA93EF7EA39378FC1A97595A217A1E40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
Manifest number: 0F02
Signing time: Wed 24 Jun 2026 17:00:59 +0000
Manifest this update: Wed 24 Jun 2026 17:00:59 +0000
Manifest next update: Thu 25 Jun 2026 17:00:59 +0000
Files and hashes: 1: GBkpxMzxrmyVPOC0jew5XJ8aWhY.roa (hash: 0vABW6RkwXsVeCWaOEjF8mfFrqV+hg0CI9slDlZi5Hs=)
2: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: RE8csj8QW6Scqo6TrItxk62NEyZPla3HTdzYFQp5DnU=)
3: xKJGESGTjFwwHaYD9v272aHamsA.roa (hash: fgbTfswP5/p+4NfMt/CDHRQt2/uUSdoKPJJSPF2ke2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 14:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fa:93:ef:7e:a3:93:78:fc:1a:97:59:5a:21:7a:1e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Jun 24 17:00:59 2026 GMT
Not After : Jun 25 17:00:59 2026 GMT
Subject: CN=e3846261536aee3259f398887972b051d69a1842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b4:5f:3b:66:07:07:56:45:8e:fa:5b:b2:f1:
68:d1:b3:8a:43:49:2c:d3:c1:7d:4b:fa:ea:05:51:
fc:35:53:6e:5f:12:03:42:f5:24:82:f5:83:4f:d6:
a4:06:13:0c:0d:da:04:19:e7:02:bd:14:56:37:f8:
a0:7a:c7:e5:c6:4f:93:40:9b:6a:f4:32:86:f2:48:
60:34:45:58:01:fb:8a:2d:b6:b4:1c:5c:82:d2:97:
d1:6a:5f:04:3d:84:4b:c9:0f:17:19:2e:63:ea:72:
5f:74:36:41:3e:5d:63:a4:39:54:36:6f:85:25:32:
f5:13:31:dc:f8:94:6d:7d:53:6d:69:29:56:16:9d:
2f:26:39:86:05:aa:e0:58:5b:b2:a9:44:c0:f7:cb:
db:4e:e6:ed:87:32:48:52:50:5d:8d:db:2a:2b:2a:
73:65:39:cf:63:92:ce:9f:5a:03:7c:85:7b:f7:c3:
ca:a2:74:3a:3e:2b:d7:7b:c8:5f:e0:30:7b:3f:29:
81:36:c6:0e:af:8f:15:05:6f:5c:a2:c6:76:e2:82:
3d:4d:18:6a:74:b2:00:23:cc:30:78:8d:d1:5d:86:
10:39:90:99:66:65:03:19:96:23:a7:bc:9e:ba:b8:
9f:da:96:85:8d:f0:19:8a:3a:fb:07:2f:8c:29:ae:
ca:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:84:62:61:53:6A:EE:32:59:F3:98:88:79:72:B0:51:D6:9A:18:42
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:0a:a3:31:15:84:21:75:30:19:ed:6b:30:e7:e2:26:0c:54:
f3:57:75:18:d5:da:ce:b2:78:f4:8e:77:2f:0b:e6:ba:b1:38:
38:69:45:05:14:d3:59:34:80:9f:19:69:71:43:be:e5:91:d0:
88:60:cf:71:12:04:30:ba:ab:1a:e0:bf:d7:bd:34:20:71:3c:
d6:70:d7:a6:00:0f:ae:27:26:f7:96:dc:54:6c:69:f8:fc:ab:
8d:ea:e4:cd:e5:d7:ee:8f:8e:8a:4f:b6:e4:50:34:02:33:a5:
36:72:85:12:6f:aa:7f:d5:80:b8:83:c4:3c:91:4a:b0:f2:c3:
40:88:88:9b:a9:de:a2:9b:20:03:e7:69:a7:8e:49:d6:39:1e:
db:e3:75:45:94:d7:c7:a8:ff:9e:70:96:19:22:84:4a:83:0e:
38:4d:10:46:ec:23:db:15:55:81:dd:c6:c6:ae:91:06:b5:d3:
1a:35:26:9a:d0:26:ca:eb:f1:48:d3:ce:e3:0a:de:32:4e:1f:
f8:74:fa:69:3e:2b:30:c8:59:a7:dd:f8:66:b4:43:24:15:84:
f9:2e:18:8c:e8:29:ad:eb:f4:50:93:f0:4d:85:f5:0a:63:f0:
52:e0:d7:06:2b:ff:cf:c2:a4:2c:05:5e:07:eb:68:93:4a:42:
6f:50:34:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 22:18:13 2026 by rpki-client