Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json)
Hash identifier: P5RBqn1Epjy1SouGPq8WVCCCzgkuHkmxebGe21K1sXg=
Subject key identifier: F1:3A:13:C2:60:5C:7E:F7:05:BE:85:DD:6C:05:04:DC:E8:68:64:29
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 019DEC36CA820B1FEC0EE2620BF000F29CCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
Manifest number: 0E76
Signing time: Sun 03 May 2026 05:01:46 +0000
Manifest this update: Sun 03 May 2026 05:01:46 +0000
Manifest next update: Mon 04 May 2026 05:01:46 +0000
Files and hashes: 1: GBkpxMzxrmyVPOC0jew5XJ8aWhY.roa (hash: 0vABW6RkwXsVeCWaOEjF8mfFrqV+hg0CI9slDlZi5Hs=)
2: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: XcHwbSKCH/k6M52RSQQanhLMsFIcMJ/wRcZP0XBL9JM=)
3: xKJGESGTjFwwHaYD9v272aHamsA.roa (hash: fgbTfswP5/p+4NfMt/CDHRQt2/uUSdoKPJJSPF2ke2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ec:36:ca:82:0b:1f:ec:0e:e2:62:0b:f0:00:f2:9c:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: May 3 05:01:46 2026 GMT
Not After : May 4 05:01:46 2026 GMT
Subject: CN=f13a13c2605c7ef705be85dd6c0504dce8686429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:27:51:50:f4:01:82:fe:c0:eb:a6:b0:2c:54:
c6:b4:ad:f1:30:68:d1:ef:2e:01:cd:84:59:c5:75:
4a:50:05:f2:37:04:51:2b:e0:d8:68:c6:31:ae:67:
bb:0d:a6:69:c7:74:a2:bd:36:e9:ee:23:27:7c:ba:
a2:27:74:f1:20:10:8b:5b:e8:44:b2:e7:bd:3b:c3:
ba:cc:ed:f3:3c:0c:ad:5b:8e:bc:8d:b5:3d:ff:81:
20:64:5d:0f:cb:95:3d:7a:ed:6f:50:97:cc:1d:5c:
61:63:ea:54:cb:e8:02:59:3e:64:f8:e8:da:88:87:
2e:fe:35:55:0e:67:3d:fb:5e:14:49:e5:21:aa:ba:
4a:73:28:f2:23:40:4f:2d:5c:a7:07:3f:c2:9c:98:
7f:ff:46:9f:d8:5a:c8:f2:e5:ac:ad:ba:c1:44:6f:
71:c8:31:77:2b:22:51:6f:01:6b:ad:da:63:87:a2:
d3:a2:20:e4:91:b8:3a:ae:d8:fe:52:1a:a6:f1:71:
c5:8c:28:74:23:48:e7:de:06:87:41:eb:fc:78:61:
2b:3d:5e:16:55:e2:78:bc:2d:0d:ee:48:83:97:b2:
e6:0d:28:ea:5a:dc:7b:03:53:02:28:59:46:12:68:
7f:e9:a0:70:77:6b:98:11:8e:82:19:25:05:da:f2:
ef:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:3A:13:C2:60:5C:7E:F7:05:BE:85:DD:6C:05:04:DC:E8:68:64:29
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:31:ff:18:1c:83:c2:13:43:21:e5:12:d7:d7:df:21:7a:9f:
c0:ed:17:c3:65:e6:46:6c:44:d7:e5:13:56:83:7d:fc:8c:1e:
f4:64:e2:d8:21:2b:5e:cf:37:90:a8:70:93:19:21:54:41:79:
bf:53:14:50:ce:63:9f:52:54:c1:e5:c0:19:9e:3b:e5:7f:51:
17:d5:04:b8:b3:ac:9c:e6:f8:5f:43:a4:a1:84:80:b4:2b:8a:
31:6d:b1:c0:6c:b5:4e:41:11:99:27:07:95:d5:a3:cc:be:0a:
4c:a9:1c:23:9a:28:6f:d1:e4:10:37:a8:84:b8:6d:62:72:c5:
0f:88:f4:8f:ce:9d:0a:6e:d1:dd:45:0c:cb:bb:88:a6:8b:6c:
f1:b6:19:c9:e7:f3:4f:8f:0e:af:dd:ba:e6:03:b5:d7:0b:46:
ff:e5:c4:71:2e:fc:8e:f5:a7:01:94:b4:ad:f8:b3:e2:4c:09:
76:33:11:30:13:c1:8f:44:61:76:f0:1e:89:26:fd:13:6b:4d:
cc:65:b8:f1:f5:45:9f:2d:7b:51:fc:ea:65:b1:ad:51:c5:45:
80:24:60:85:ac:ac:22:35:e7:e6:0e:61:45:ff:88:b3:7b:e3:
7d:d1:d2:7b:78:64:89:1b:d0:10:2e:f0:20:41:0b:3c:d4:13:
69:22:75:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 16:11:52 2026 by rpki-client