Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
File: aVHUVR0mpRwPkrd8LTePs0dYuHc.mft (raw, json)
Hash identifier: b0AZWx+mmegWki0grjz072Sks9TgiYTHFa0yalIBKv4=
Subject key identifier: F2:8C:A1:4D:25:17:DE:83:16:16:43:E2:44:50:DF:EE:D2:1B:EC:10
Authority key identifier: 69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
Certificate issuer: /CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Certificate serial: 019D39409FCD86FCDD207CC240101B10AE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
Manifest number: 09A0
Signing time: Sun 29 Mar 2026 11:00:29 +0000
Manifest this update: Sun 29 Mar 2026 11:00:29 +0000
Manifest next update: Mon 30 Mar 2026 11:00:29 +0000
Files and hashes: 1: B37ZLKtj14cuD-pdJFeTxpgnlo4.roa (hash: RjHd8q/rrwWBUD1P2o4ZQ5H8oNxRkf+ZFtauIfVCi3Q=)
2: aVHUVR0mpRwPkrd8LTePs0dYuHc.crl (hash: +C5wRA2kjKD1JlSzE9Nr/W/lSyx0TYVt01X5TRpf/M4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:9f:cd:86:fc:dd:20:7c:c2:40:10:1b:10:ae:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Validity
Not Before: Mar 29 11:00:29 2026 GMT
Not After : Mar 30 11:00:29 2026 GMT
Subject: CN=f28ca14d2517de83161643e24450dfeed21bec10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:44:08:f0:d4:55:db:3f:69:c7:91:ed:35:e9:
e1:30:96:0b:6f:27:2e:6e:0f:8a:1d:8e:46:f4:10:
0c:24:bb:c6:30:84:bd:24:1d:44:14:f4:41:50:8b:
d8:cd:bb:76:82:d1:82:38:59:28:fa:d2:bc:03:61:
26:f4:9b:ae:5a:15:c2:33:4c:fc:bd:df:08:89:00:
55:7b:9b:70:bd:b7:69:e3:b8:bf:e3:fc:43:b7:99:
51:37:7e:5e:83:9f:1e:53:f7:1b:cb:28:e9:01:e1:
ef:32:22:7b:d3:0f:72:ff:7f:3c:aa:ef:5b:31:07:
6e:a0:18:5b:0d:aa:cb:69:ef:bd:c7:d7:69:99:eb:
68:0d:c7:a3:d6:15:f3:80:6f:32:f8:c9:3d:2c:82:
f8:0b:7f:8f:88:09:6f:3c:5b:b2:7a:25:1f:df:e9:
08:36:3c:33:d1:35:aa:20:db:eb:9d:2e:06:ba:ad:
65:51:58:20:de:d3:03:fb:33:82:c3:96:65:f3:d3:
10:78:d1:33:97:41:e6:2f:04:f0:7a:f7:58:7b:82:
23:29:30:22:f4:07:f3:66:aa:66:1a:06:4c:cf:c4:
3f:70:c3:a6:73:3a:1c:75:fd:9b:a2:1a:4d:07:bb:
64:03:62:39:b6:87:dc:ec:00:1d:ab:de:74:ff:61:
7a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8C:A1:4D:25:17:DE:83:16:16:43:E2:44:50:DF:EE:D2:1B:EC:10
X509v3 Authority Key Identifier:
keyid:69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:51:16:d5:60:2e:75:32:72:96:2a:34:c9:ae:09:d1:eb:90:
7b:fe:4d:11:24:4a:16:6a:de:04:57:55:d4:5d:6d:5a:ab:0e:
87:20:ee:cd:31:82:e6:9f:b0:cc:ee:9b:2d:91:8e:95:e9:37:
40:6e:dd:c3:e2:21:2e:1c:00:b8:49:27:d5:6c:1c:ab:62:a8:
61:36:88:4a:70:6d:05:28:94:b4:9a:46:13:97:73:86:61:21:
0e:dd:dd:72:34:96:b6:a2:82:53:7e:c9:98:3a:fc:04:52:1b:
b8:ac:62:c3:3c:9b:d6:ea:5e:d7:87:d4:bd:22:86:c3:6e:7d:
ba:25:3a:80:18:56:ac:d5:b0:05:8b:d8:18:9c:ca:1a:71:10:
29:17:3e:6a:3e:65:0c:38:5a:50:94:54:c6:76:96:95:ad:e4:
64:bd:6d:a7:d6:a8:f3:57:3e:28:7d:08:6f:a9:42:9a:12:04:
4b:43:76:f8:9e:f1:53:fd:46:40:db:e2:83:8f:b7:d3:3e:0b:
1c:82:50:9d:e9:30:41:16:3f:d9:25:42:6b:30:d5:21:3d:61:
55:10:25:fb:18:6d:fe:5d:7d:d4:54:cc:85:38:98:60:33:7e:
be:ed:96:2a:4f:c0:80:08:ca:89:94:7d:f9:55:63:69:14:21:
64:35:d3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:16 2026 by rpki-client