Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d94e29-ad94-4b0e-afa2-6533b72c6a6b/1/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.mft
File: Ayd2nBoB4SUPHyimBbXJ2bbTQZo.mft (raw, json)
Hash identifier: R2krgrU1A+pkabjHkQIgKFoLaTj1OIcVouJwNXXSEzs=
Subject key identifier: 46:E6:67:23:3F:A9:53:9B:37:46:03:FC:BA:76:05:D7:85:A4:BF:E5
Authority key identifier: 03:27:76:9C:1A:01:E1:25:0F:1F:28:A6:05:B5:C9:D9:B6:D3:41:9A
Certificate issuer: /CN=0327769c1a01e1250f1f28a605b5c9d9b6d3419a
Certificate serial: 019D38D35AB3CE22C7AAE2E30BC6E38D27A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d94e29-ad94-4b0e-afa2-6533b72c6a6b/1/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.mft
Manifest number: A7
Signing time: Sun 29 Mar 2026 09:01:08 +0000
Manifest this update: Sun 29 Mar 2026 09:01:08 +0000
Manifest next update: Mon 30 Mar 2026 09:01:08 +0000
Files and hashes: 1: Ayd2nBoB4SUPHyimBbXJ2bbTQZo.crl (hash: kI1kSGTLwJCK6MwsxvN0PcH8BHjX+mNAVsZVM76FhG0=)
2: eLRzDYpH6ctJoMbMPtU-ULGxRIo.roa (hash: OdzMUAVnw7I56wJuOq/9aOkYjscK9Sg8yKOxq15PvwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d94e29-ad94-4b0e-afa2-6533b72c6a6b/1/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/d94e29-ad94-4b0e-afa2-6533b72c6a6b/1/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:5a:b3:ce:22:c7:aa:e2:e3:0b:c6:e3:8d:27:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0327769c1a01e1250f1f28a605b5c9d9b6d3419a
Validity
Not Before: Mar 29 09:01:08 2026 GMT
Not After : Mar 30 09:01:08 2026 GMT
Subject: CN=46e667233fa9539b374603fcba7605d785a4bfe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2d:b8:9b:07:e9:29:6a:20:75:1a:51:46:ed:
45:62:bf:99:2e:8b:76:63:be:f1:7a:4c:6d:d4:c8:
5c:cf:c1:80:8b:99:c5:9c:5a:db:1a:60:e2:fe:44:
ca:37:8b:42:53:b0:53:39:8d:4c:bf:49:a0:2f:fe:
48:c6:ad:7f:9d:34:43:76:44:ea:fe:e6:28:50:31:
60:aa:56:0f:97:01:3d:20:e9:d6:74:32:af:65:f6:
78:32:3f:5f:96:25:3d:2a:56:fe:64:9c:4c:61:c3:
a7:70:5f:3b:15:29:96:c1:2d:d2:c9:91:b8:1d:0d:
dd:cf:a5:38:20:a5:07:10:60:a6:8d:2b:35:67:98:
46:19:5b:8c:8a:38:09:93:f7:b6:e7:b4:02:6b:3f:
b3:e4:c7:7b:74:16:7f:d2:9f:2d:33:08:53:aa:e7:
c5:54:6d:6f:85:72:25:f3:d2:72:3e:dd:36:36:d7:
dc:4c:fa:23:cb:0a:37:46:94:97:e3:0e:27:e4:05:
69:92:19:87:67:66:67:e0:f8:58:fe:0a:b5:2d:cb:
3f:51:71:3b:61:4d:62:05:3c:7f:cb:9d:ff:02:81:
26:92:10:5e:97:1d:dd:92:64:2f:ad:8a:be:7a:82:
76:b3:47:f4:c7:c8:8b:59:fe:c5:f0:66:cf:c4:2d:
69:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E6:67:23:3F:A9:53:9B:37:46:03:FC:BA:76:05:D7:85:A4:BF:E5
X509v3 Authority Key Identifier:
keyid:03:27:76:9C:1A:01:E1:25:0F:1F:28:A6:05:B5:C9:D9:B6:D3:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d94e29-ad94-4b0e-afa2-6533b72c6a6b/1/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d94e29-ad94-4b0e-afa2-6533b72c6a6b/1/Ayd2nBoB4SUPHyimBbXJ2bbTQZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:03:fc:28:47:8c:73:a5:79:d7:84:04:b2:e7:b0:1e:fa:68:
32:e4:54:84:28:0e:ab:39:88:37:de:ca:b8:87:89:c0:b9:e4:
c6:eb:91:17:8a:c4:a0:8a:d0:e9:77:a3:2e:35:a6:2d:63:0a:
a5:34:27:35:09:29:63:78:63:f6:56:e8:76:6b:dc:30:d0:cc:
6e:75:50:a0:6d:d6:c7:d0:3f:88:e8:8b:08:06:9d:a8:ff:bd:
4c:60:ec:24:4c:10:6e:90:6f:4d:2a:27:37:93:0d:bf:c2:c7:
5d:7b:14:de:57:2e:0b:47:84:e6:89:fe:b2:55:27:c1:59:94:
b2:f5:78:68:73:f1:ac:a7:eb:37:9e:16:63:57:b0:59:66:d0:
5e:0d:78:49:fe:93:3a:8e:ac:6e:a8:03:78:9c:7b:8f:a7:e4:
65:42:10:93:6f:c9:54:a6:ec:f3:91:ae:6e:18:70:38:3f:e1:
9e:2d:56:2b:86:9e:e0:7b:52:c3:42:9f:d5:ee:3d:d0:b8:cc:
a6:75:82:66:62:29:56:d1:58:2a:77:6a:96:78:0e:96:9f:fe:
07:8f:19:72:df:06:80:a9:cc:0f:36:b9:d2:8f:e2:1f:ab:eb:
e1:0c:0c:f7:d9:ce:1c:4d:4b:d0:ab:10:5f:9a:a5:38:34:df:
36:f6:e0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:50 2026 by rpki-client