Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
File: AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft (raw, json)
Hash identifier: dXPbiES/Wy2CtgN9RCpJ6dvVMXKdq9rM1I4nsfYp62c=
Subject key identifier: 92:DD:44:7B:7E:1B:A1:E9:B7:C6:44:19:06:C1:26:BF:B4:68:43:C1
Authority key identifier: 02:F5:46:89:04:A8:AA:7D:DB:5D:42:9E:A0:5E:8D:31:87:36:44:19
Certificate issuer: /CN=02f5468904a8aa7ddb5d429ea05e8d3187364419
Certificate serial: 019D375334628B6BBE50B843A6ED753DB757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
Manifest number: 022B
Signing time: Sun 29 Mar 2026 02:01:32 +0000
Manifest this update: Sun 29 Mar 2026 02:01:32 +0000
Manifest next update: Mon 30 Mar 2026 02:01:32 +0000
Files and hashes: 1: AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl (hash: Bkuo5XAkHMxR+pP66WpzcehU2aE2kc9DruDy9Z6nrnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:34:62:8b:6b:be:50:b8:43:a6:ed:75:3d:b7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f5468904a8aa7ddb5d429ea05e8d3187364419
Validity
Not Before: Mar 29 02:01:32 2026 GMT
Not After : Mar 30 02:01:32 2026 GMT
Subject: CN=92dd447b7e1ba1e9b7c6441906c126bfb46843c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ae:f5:1a:21:b7:d2:ae:2b:84:1c:76:02:12:
8e:e7:34:18:d6:ab:a1:fb:b2:a1:a9:1e:33:2e:18:
b1:bc:f3:08:4e:5d:f3:da:d3:90:0b:80:28:b1:15:
30:17:8a:ce:10:e5:13:84:cf:d9:ab:32:1f:94:7b:
9e:41:44:47:20:4c:34:37:8e:2e:28:a6:3b:83:57:
5c:fb:6e:b9:15:f3:c8:8a:e6:74:0a:47:cb:b9:83:
88:4f:24:42:24:85:de:c0:b5:f9:9e:28:c6:33:a8:
9c:13:0c:07:6d:59:a8:81:44:cd:1e:18:31:be:ee:
e8:d9:41:e3:c8:46:7d:92:2b:3c:bf:00:3e:4e:2a:
6b:c9:d2:27:1a:21:53:fd:74:64:77:d7:13:53:22:
db:cf:23:01:a4:66:1c:a0:c7:02:c1:d0:06:fb:08:
fc:b7:11:20:ad:fe:db:44:27:37:d5:ac:ca:4c:53:
1e:0e:e0:26:d7:13:c5:dd:29:fb:d0:99:06:f6:1b:
e7:df:96:62:d9:e1:25:e1:b6:e2:77:ab:41:f1:66:
1a:eb:92:c8:f6:c0:0d:a9:76:bd:47:36:49:df:bc:
21:00:15:60:98:29:7f:d5:44:e1:a7:cd:cc:ae:16:
08:45:ae:c5:21:c4:de:8f:00:1c:57:48:ea:3d:70:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DD:44:7B:7E:1B:A1:E9:B7:C6:44:19:06:C1:26:BF:B4:68:43:C1
X509v3 Authority Key Identifier:
keyid:02:F5:46:89:04:A8:AA:7D:DB:5D:42:9E:A0:5E:8D:31:87:36:44:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:85:ae:05:98:68:a8:21:79:a8:47:60:1c:8e:2d:28:37:21:
57:ad:44:6c:4e:6b:24:a5:ed:e5:ca:2a:03:33:f9:9c:10:b7:
ef:ee:a6:c6:60:33:e1:3b:48:22:42:d0:80:bb:8a:13:03:db:
e1:61:f0:3d:53:b3:6c:99:2b:34:04:02:49:ad:df:44:a9:8a:
e4:14:9b:64:c4:d0:b1:f8:38:80:67:8a:97:cf:5a:c0:27:d2:
5c:20:e2:57:4c:9f:58:d9:c7:9e:2d:e7:24:bc:3b:31:09:8a:
88:9e:1c:c6:01:97:fc:b4:f2:57:90:de:d1:66:1d:6d:66:da:
7b:8a:0b:5d:21:cb:9b:a6:57:1a:b5:d7:2b:06:9d:9f:57:2d:
66:15:c5:47:7d:bc:bb:d7:d2:e5:72:8b:16:1b:6c:a6:83:05:
99:79:1a:37:83:87:b4:12:eb:6c:17:e1:59:00:5c:a0:87:e1:
f0:8e:3c:1a:02:bc:a2:cb:bd:45:60:02:f9:fc:cc:b9:15:6f:
c3:53:3b:04:98:bd:ed:9b:78:45:51:d9:1f:bf:e1:18:a8:d2:
d2:6a:35:21:08:2e:2c:c1:47:13:62:52:de:f8:4c:e3:6d:92:
9c:36:b6:71:21:14:a9:c4:ba:dc:85:8c:6d:b4:2d:de:4f:4d:
25:66:d1:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:35 2026 by rpki-client