Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: CCZ2KHsyhppBF6/bne/aY+ubOnIBNBxnYU3p7TW2V7g=
Subject key identifier: D3:A5:78:D5:69:A6:D9:86:48:A5:FD:58:06:87:6E:4D:AC:36:72:3F
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 019D38D2F9DD08978D3C74D07F4E0454B129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 09:00:43 +0000
Manifest this update: Sun 29 Mar 2026 09:00:43 +0000
Manifest next update: Mon 30 Mar 2026 09:00:43 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: vg3KXegKruXO/SSONW0asGwzNA7Yqj25QTG9kppzXWI=)
2: _ERGoNtkfCnC57fEn319xuy5MH0.roa (hash: Wq3TColJj1+ZOwaQJ2+Hu8QnMsklYvCOvDExQBnwEXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:f9:dd:08:97:8d:3c:74:d0:7f:4e:04:54:b1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: Mar 29 09:00:43 2026 GMT
Not After : Mar 30 09:00:43 2026 GMT
Subject: CN=d3a578d569a6d98648a5fd5806876e4dac36723f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:92:3f:6a:71:f6:d5:2a:69:35:05:2b:67:6e:
b3:9f:1f:02:81:11:ba:1a:76:e3:96:9c:65:8b:96:
7f:66:e1:f9:01:a1:0b:de:2d:8a:8d:f4:19:bd:1a:
46:28:03:d6:be:0b:a3:d8:f9:72:2f:b0:dd:87:b6:
34:b8:de:62:58:ee:bd:85:4b:c1:3e:6f:65:23:c2:
08:5f:a7:c7:8f:45:21:7d:9e:8c:77:a1:0d:db:a7:
a2:07:43:de:5a:bf:a2:cf:08:46:70:8f:fc:41:ee:
94:ce:9f:49:7b:0f:69:42:3c:1b:31:1e:df:22:0c:
ca:5b:dd:f7:a9:54:1a:fb:70:09:c0:16:47:72:ae:
cd:36:9a:9a:35:c3:9f:a6:6c:89:77:c1:f7:69:43:
09:cb:60:08:05:b7:70:64:cd:28:06:d1:0f:40:2c:
a0:f5:8f:8c:9c:e2:77:8e:2e:26:28:6d:31:75:a1:
2b:79:11:02:7b:09:c3:54:45:53:9d:18:ec:31:83:
55:16:a7:5c:c3:62:be:9b:77:37:2b:ec:ca:85:56:
68:bb:66:d2:52:29:a8:45:83:91:03:2d:75:bd:af:
9b:d3:8b:99:7c:30:ed:ea:29:5d:8f:6b:f3:bf:ce:
43:9c:c5:3c:9f:17:b1:a3:cc:16:44:54:b9:30:7f:
5d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A5:78:D5:69:A6:D9:86:48:A5:FD:58:06:87:6E:4D:AC:36:72:3F
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:60:4e:8e:42:47:0d:c9:9e:23:6a:78:9e:87:ea:4b:55:9f:
8f:07:fb:49:cd:9f:c9:0c:24:55:c2:b5:71:04:de:9d:74:b7:
dd:44:21:db:db:35:35:1c:75:3d:10:86:b8:a9:e0:e1:3c:27:
27:92:8b:50:56:6c:2d:19:4e:1c:af:28:cd:6f:6e:7c:57:f3:
d5:d2:25:5b:f2:bf:3f:0d:2e:3e:3a:f3:7a:11:ab:fa:e9:2a:
0a:6d:89:07:f2:fc:7e:c3:a1:a4:74:5b:01:86:56:f5:b2:39:
d5:11:32:61:91:8b:69:04:37:a6:51:1a:28:a3:a6:3c:dd:39:
d7:33:a0:30:44:a6:3e:04:9f:3a:54:26:7a:36:75:e9:7a:29:
8d:24:5d:36:16:c0:f0:5f:4f:23:62:3a:c9:38:33:9b:4f:68:
6b:06:41:08:ac:f5:d4:fa:21:64:ad:47:99:64:a1:27:9f:1e:
2f:36:ac:73:5d:b9:3e:a6:41:5a:27:65:e0:54:1b:31:0e:bf:
b4:c0:59:16:11:c8:f4:80:cf:e9:80:64:56:00:50:cb:60:94:
5a:95:6a:e6:74:81:e9:45:e9:92:7e:ca:63:4a:4e:fc:97:d8:
d8:fb:b9:c8:81:11:c3:ba:c0:b6:b0:37:d0:80:7a:ba:26:10:
ca:45:86:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:13:30 2026 by rpki-client