Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: yPIRS4czPH216noLyNMYzv2Za80bNw2qSi4UsrkMNc4=
Subject key identifier: 6F:7E:58:CF:A2:B5:85:F4:C9:B0:23:41:1E:DF:B9:E4:78:BD:1D:A1
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 019D081E7F63DBFF52435F16A16F6BFA4D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 0A4F
Signing time: Thu 19 Mar 2026 22:01:49 +0000
Manifest this update: Thu 19 Mar 2026 22:01:49 +0000
Manifest next update: Fri 20 Mar 2026 22:01:49 +0000
Files and hashes: 1: Exw1Qk2SWzacP5BYuop4G0zGR9w.roa (hash: LJscICsI9uW5FgqiZjcGqJLPX1UQnMp+ey99OzItE9c=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: /5/NFtXItirOSswVosYf2kFiGbpf2NvWInNeAYRjq1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 16:33:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:08:1e:7f:63:db:ff:52:43:5f:16:a1:6f:6b:fa:4d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Mar 19 22:01:49 2026 GMT
Not After : Mar 20 22:01:49 2026 GMT
Subject: CN=6f7e58cfa2b585f4c9b023411edfb9e478bd1da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:52:3f:01:1f:3b:fb:00:9b:8e:1f:53:a7:b6:
d1:d7:07:22:3a:92:30:51:9d:2e:fe:68:35:95:d5:
2e:3b:b8:31:be:e5:10:f4:b1:7f:0e:33:69:18:c9:
0d:47:30:e8:15:37:c1:9f:78:cc:58:1f:f8:d1:c5:
6c:9b:8d:30:99:a7:8f:95:d1:98:4e:60:c4:e2:56:
25:d4:94:ec:4b:cf:d8:33:73:e7:4b:ab:62:7c:2e:
33:47:2d:29:a1:9e:28:02:84:a2:fd:fe:5a:0c:c2:
0d:28:74:e8:d1:07:52:98:15:2f:b2:c7:68:bf:f2:
41:f2:fa:30:ca:7f:be:26:a4:0f:18:fd:01:75:18:
d4:5d:26:b8:8f:a0:e4:d8:55:67:61:c1:ba:a2:ca:
fc:f0:9b:46:4c:3a:26:11:a8:03:11:cb:71:69:90:
32:14:6f:0b:b4:09:90:72:35:ad:07:a9:6d:f0:ce:
e2:16:52:6f:77:a8:ed:a6:43:dc:fe:92:5e:6d:63:
f0:20:5f:ed:f3:3f:bf:69:9b:6a:c9:c1:84:4a:bb:
a6:ff:e4:0b:6d:0b:2a:bb:aa:88:8a:d4:f1:90:80:
0e:48:08:14:a3:77:92:c7:b6:ec:26:50:28:55:db:
d2:78:f7:53:cd:76:0e:27:f4:8d:65:62:35:4d:6a:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7E:58:CF:A2:B5:85:F4:C9:B0:23:41:1E:DF:B9:E4:78:BD:1D:A1
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e7:de:dd:1c:0a:89:bc:1e:c5:69:5a:4d:e5:be:03:47:48:4e:
4a:0a:f4:28:a8:d3:b2:c8:9c:cb:d7:5b:d8:5d:70:f2:38:98:
36:f1:de:62:5f:e1:aa:9e:e3:6f:74:45:a8:53:7d:03:b9:ac:
89:1f:f0:92:ef:83:4f:6b:46:9d:31:11:cc:46:f8:30:a2:6d:
f7:64:ed:20:5e:49:d7:09:59:e2:83:fd:44:3f:f5:43:66:1e:
53:4e:ce:f5:18:22:48:7a:f1:81:88:a3:03:31:b3:24:ae:e9:
1d:72:44:91:58:71:a4:e0:b7:cb:cb:b3:b8:a1:79:13:7c:ed:
a6:12:9e:ce:82:52:33:7f:7c:98:1b:da:bd:90:90:25:80:13:
a8:1d:c0:f5:9b:62:3e:ba:16:15:58:11:6c:e9:0a:57:90:6a:
93:81:5a:a3:75:99:0c:22:6f:74:af:5f:50:00:47:51:ad:6b:
60:b8:3e:84:e0:e2:1c:47:0a:09:d3:80:18:08:7f:99:ca:53:
0f:94:99:72:c9:4c:6b:7f:68:50:1d:4f:0a:75:cf:83:2d:d9:
b1:6d:f4:49:b7:ff:38:e5:4a:b2:63:6b:f7:40:89:6e:d4:97:
96:84:49:eb:9c:3b:fa:6c:a3:0d:0c:cc:9c:a2:6c:ea:99:a1:
9c:45:31:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 02:10:17 2026 by rpki-client