Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/f49f95-bb6c-46c1-88e2-12165f27142f/1/0aVkCYrHZdC-2EkYgJFvYba48Y0.mft
File: 0aVkCYrHZdC-2EkYgJFvYba48Y0.mft (raw, json)
Hash identifier: Cm9Xlghs2Blbm/woTtSrBlLHQr/m0I66PanOS03o8Og=
Subject key identifier: 29:F0:AD:18:9A:FD:B5:22:0F:97:39:35:8B:64:07:4D:46:23:8A:2B
Authority key identifier: D1:A5:64:09:8A:C7:65:D0:BE:D8:49:18:80:91:6F:61:B6:B8:F1:8D
Certificate issuer: /CN=d1a564098ac765d0bed8491880916f61b6b8f18d
Certificate serial: 019D3789B92A6B58D21D0DA94C5F2AE61CB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aVkCYrHZdC-2EkYgJFvYba48Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/f49f95-bb6c-46c1-88e2-12165f27142f/1/0aVkCYrHZdC-2EkYgJFvYba48Y0.mft
Manifest number: 6E
Signing time: Sun 29 Mar 2026 03:01:05 +0000
Manifest this update: Sun 29 Mar 2026 03:01:05 +0000
Manifest next update: Mon 30 Mar 2026 03:01:05 +0000
Files and hashes: 1: 0aVkCYrHZdC-2EkYgJFvYba48Y0.crl (hash: sbC/5wOdmJGq3rqWiifNaZiipVD1ToIkSdiVXs9/ZjQ=)
2: 0fBOVPEVt_Vn70y4H7R92SYVH6A.roa (hash: AXH0b2vzi3eJ8ZGHrdb03qMvGfl3ImnFJSUpRqXJVtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/f49f95-bb6c-46c1-88e2-12165f27142f/1/0aVkCYrHZdC-2EkYgJFvYba48Y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/f49f95-bb6c-46c1-88e2-12165f27142f/1/0aVkCYrHZdC-2EkYgJFvYba48Y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aVkCYrHZdC-2EkYgJFvYba48Y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b9:2a:6b:58:d2:1d:0d:a9:4c:5f:2a:e6:1c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a564098ac765d0bed8491880916f61b6b8f18d
Validity
Not Before: Mar 29 03:01:05 2026 GMT
Not After : Mar 30 03:01:05 2026 GMT
Subject: CN=29f0ad189afdb5220f9739358b64074d46238a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f4:c9:a7:e3:f2:cf:99:58:07:2b:4e:2e:c2:
85:6e:e9:62:91:38:20:af:02:e2:30:12:fd:2f:97:
18:07:b4:30:e9:af:a1:70:d7:c8:60:ff:13:c1:24:
07:52:39:f8:9f:ff:4a:c3:e2:d4:f8:0e:73:3a:84:
54:c3:e6:6c:52:80:4b:46:ab:9f:cc:8e:7d:66:db:
02:c6:c1:f1:01:94:b2:de:92:0a:8a:55:01:24:0c:
7c:a8:94:68:3a:fe:21:eb:23:2b:6e:e8:2a:f6:d5:
eb:d5:bb:0d:05:5f:94:88:21:e3:79:63:2a:24:9d:
c2:a1:b2:d6:d8:a2:81:01:3a:c8:06:d1:47:49:4e:
f5:9d:07:0c:8c:c0:fb:20:23:f5:70:b1:20:b4:08:
5e:13:02:25:bc:50:08:90:d4:d2:06:c1:66:ae:56:
b9:1d:46:1e:63:eb:b0:0d:7f:41:55:7b:0c:38:86:
3c:97:d0:02:df:90:ce:51:4f:4f:a1:48:56:6f:9c:
21:9c:fb:3d:17:b0:d7:b7:03:dc:6a:ab:a5:44:f3:
07:04:57:70:11:d1:b5:67:51:90:ab:41:a0:e9:b3:
36:c0:bf:fe:92:2e:de:d6:19:59:0b:c2:5f:de:02:
11:c2:e5:db:de:f4:6f:96:c7:7f:67:77:a8:f4:41:
1a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F0:AD:18:9A:FD:B5:22:0F:97:39:35:8B:64:07:4D:46:23:8A:2B
X509v3 Authority Key Identifier:
keyid:D1:A5:64:09:8A:C7:65:D0:BE:D8:49:18:80:91:6F:61:B6:B8:F1:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aVkCYrHZdC-2EkYgJFvYba48Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f49f95-bb6c-46c1-88e2-12165f27142f/1/0aVkCYrHZdC-2EkYgJFvYba48Y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f49f95-bb6c-46c1-88e2-12165f27142f/1/0aVkCYrHZdC-2EkYgJFvYba48Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:5c:37:2d:61:dc:6e:24:c3:0a:a1:3c:de:f7:14:8a:4e:28:
40:f3:03:ec:13:26:f4:03:c7:53:cd:03:02:b1:72:48:45:0b:
30:f2:c7:80:be:f3:78:f9:99:3b:ca:5b:e0:ac:cd:29:56:de:
0f:05:09:41:41:a3:9c:b0:97:f6:23:31:ad:bf:68:db:59:75:
5a:03:6e:9e:55:72:d3:29:53:2e:f6:1a:7f:e3:9b:86:ca:69:
85:05:c4:87:7e:df:e7:c1:9e:eb:de:32:56:a2:e1:90:f1:e5:
b7:22:92:af:0e:4e:da:0f:ee:a2:25:3c:3a:47:52:b6:16:f8:
db:8d:8c:3d:fd:e1:ff:d8:14:08:7b:6b:f0:db:7a:01:59:3b:
bf:fd:77:9a:0c:34:12:6a:3b:d6:55:7b:1e:94:8f:f2:59:a6:
25:48:0e:20:44:22:94:04:7b:59:2d:6f:db:c2:be:dd:7b:50:
e9:03:95:3d:c0:21:11:8e:a6:71:f3:44:da:d2:b0:84:ba:96:
6e:45:09:8f:e8:d3:73:23:ba:45:e1:d6:35:56:7b:a7:22:2b:
d4:d2:4e:1a:d2:a8:40:d5:da:99:19:12:e9:21:0f:1b:ab:40:
b0:56:6b:e5:3a:9a:ac:53:a9:7d:e6:ad:48:68:90:e6:0d:7e:
53:35:7f:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03ibkqa1jSHQ2pTF8q5hyzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYTU2NDA5OGFjNzY1ZDBiZWQ4NDkxODgwOTE2ZjYxYjZi
OGYxOGQwHhcNMjYwMzI5MDMwMTA1WhcNMjYwMzMwMDMwMTA1WjAzMTEwLwYDVQQD
EygyOWYwYWQxODlhZmRiNTIyMGY5NzM5MzU4YjY0MDc0ZDQ2MjM4YTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfTJp+Pyz5lYBytOLsKFbulikTgg
rwLiMBL9L5cYB7Qw6a+hcNfIYP8TwSQHUjn4n/9Kw+LU+A5zOoRUw+ZsUoBLRquf
zI59ZtsCxsHxAZSy3pIKilUBJAx8qJRoOv4h6yMrbugq9tXr1bsNBV+UiCHjeWMq
JJ3CobLW2KKBATrIBtFHSU71nQcMjMD7ICP1cLEgtAheEwIlvFAIkNTSBsFmrla5
HUYeY+uwDX9BVXsMOIY8l9AC35DOUU9PoUhWb5whnPs9F7DXtwPcaqulRPMHBFdw
EdG1Z1GQq0Gg6bM2wL/+ki7e1hlZC8Jf3gIRwuXb3vRvlsd/Z3eo9EEakQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCnwrRia/bUiD5c5NYtkB01GI4orMB8GA1UdIwQY
MBaAFNGlZAmKx2XQvthJGICRb2G2uPGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGFWa0NZckhaZEMtMkVrWWdKRnZZYmE0OFkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9mNDlmOTUtYmI2Yy00NmMxLTg4ZTIt
MTIxNjVmMjcxNDJmLzEvMGFWa0NZckhaZEMtMkVrWWdKRnZZYmE0OFkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9mNDlmOTUtYmI2Yy00NmMxLTg4ZTItMTIxNjVmMjcxNDJm
LzEvMGFWa0NZckhaZEMtMkVrWWdKRnZZYmE0OFkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb1w3LWHc
biTDCqE83vcUik4oQPMD7BMm9APHU80DArFySEULMPLHgL7zePmZO8pb4KzNKVbe
DwUJQUGjnLCX9iMxrb9o21l1WgNunlVy0ylTLvYaf+ObhspphQXEh37f58Ge694y
VqLhkPHltyKSrw5O2g/uoiU8OkdSthb4242MPf3h/9gUCHtr8Nt6AVk7v/13mgw0
Emo71lV7HpSP8lmmJUgOIEQilAR7WS1v28K+3XtQ6QOVPcAhEY6mcfNE2tKwhLqW
bkUJj+jTcyO6ReHWNVZ7pyIr1NJOGtKoQNXamRkS6SEPG6tAsFZr5TqarFOpfeat
SGiQ5g1+UzV/fw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:38:58 2026 by rpki-client