Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
File: aVu9VCkSpm_uajQSijqM9wl9xps.mft (raw, json)
Hash identifier: PYPFde0nIqgBCFGawoghyVMB/Zk3EZDMmISFgyB3+Pk=
Subject key identifier: 9A:11:E8:21:7E:F2:22:E3:A4:CB:77:BF:D6:81:A3:EC:C1:90:B3:BF
Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Certificate serial: 019D382E92B986C1B4A3FE4FB6BAA4040BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
Manifest number: 08AA
Signing time: Sun 29 Mar 2026 06:01:09 +0000
Manifest this update: Sun 29 Mar 2026 06:01:09 +0000
Manifest next update: Mon 30 Mar 2026 06:01:09 +0000
Files and hashes: 1: aVu9VCkSpm_uajQSijqM9wl9xps.crl (hash: Nq10oH1pTlBCu/tiJPTDsHbB5zyzv4h5mKxzKb6ABnw=)
2: kD6KbG2HjbabIdgR62fkFbl77WA.roa (hash: zAnnRMEkzTArkloWuwnMCm7SOof7tWB+G0YPKyy3r8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:92:b9:86:c1:b4:a3:fe:4f:b6:ba:a4:04:0b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b
Validity
Not Before: Mar 29 06:01:09 2026 GMT
Not After : Mar 30 06:01:09 2026 GMT
Subject: CN=9a11e8217ef222e3a4cb77bfd681a3ecc190b3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ac:0d:30:5d:8d:6a:c5:06:06:79:7b:88:b8:
42:1f:b1:ed:ad:6a:96:c8:dc:05:b8:0a:f9:15:45:
4c:51:52:bd:ad:65:fb:94:f5:8c:b3:ab:ff:03:9a:
ff:1a:59:cc:de:57:2c:fa:16:df:23:98:75:b2:29:
85:1f:89:52:af:11:b0:60:87:23:8e:04:c5:ef:89:
4d:43:d7:d0:21:d6:90:c5:e9:0b:14:b0:44:44:35:
cf:1f:c8:da:48:89:b7:f2:04:86:76:31:92:81:a9:
e8:97:0a:1e:49:ec:7d:ee:1c:76:c6:19:4e:b8:45:
10:48:75:c8:4a:85:3f:af:91:ba:f0:27:5a:e6:1a:
2c:b7:78:96:8a:aa:44:da:02:72:58:f9:27:62:4c:
f4:5e:18:e6:5a:79:be:ab:e6:a2:e3:ea:4c:0b:33:
a1:91:1d:ca:50:87:6c:cc:01:82:dc:8a:3b:57:bf:
3e:ae:4d:e6:23:4b:8d:27:76:20:1b:2c:7d:14:1e:
bb:d7:f9:cc:b7:8a:15:7f:90:26:2e:c5:fc:5c:1f:
2a:92:e0:1d:dd:2a:24:8e:17:04:fe:c4:aa:38:2b:
1a:81:59:5a:21:f3:31:2c:d9:c5:d0:fd:28:02:89:
f8:7c:3b:3b:00:70:e0:59:44:c5:e3:b7:c1:8c:fe:
bd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:11:E8:21:7E:F2:22:E3:A4:CB:77:BF:D6:81:A3:EC:C1:90:B3:BF
X509v3 Authority Key Identifier:
keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:85:96:e8:a7:07:96:61:99:49:66:e2:7e:15:c2:2e:d0:b8:
20:50:48:7f:cd:60:70:fd:5b:64:90:92:51:f4:06:1f:a2:18:
35:ea:f6:55:c2:3b:2a:a5:d7:5b:24:09:33:96:08:49:b0:50:
fc:0d:55:08:57:56:11:1b:cb:5e:70:1f:f6:2d:59:ad:21:fc:
38:53:81:18:24:5a:f2:70:ae:8d:bf:ad:cf:6b:e6:02:49:13:
28:58:a8:d9:c9:d1:dd:b5:19:80:41:4e:15:58:25:40:d4:27:
65:19:a3:ad:39:15:22:a7:37:95:e3:68:c5:be:dc:8f:66:fd:
73:3e:2b:50:51:fc:4c:5e:80:1f:57:d7:6a:37:8f:bd:24:b8:
6c:f3:f9:c4:a2:f4:62:a8:e9:95:f1:bd:d0:38:90:1c:91:f5:
bb:6e:ee:07:a2:68:03:62:24:7b:31:69:87:85:4b:e6:28:68:
36:d4:fc:91:b1:45:51:a8:da:7a:bd:2d:17:81:a1:1b:58:4f:
55:5e:b7:3d:b1:11:26:e0:72:5f:ee:c2:97:cc:63:38:70:88:
ff:0c:9b:9c:f9:d8:4c:0a:4d:04:b4:e5:26:3a:17:0f:ed:cf:
ed:77:4d:79:82:82:c3:6d:a1:56:b9:aa:28:d1:f3:a1:b3:e6:
67:b8:fb:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:06 2026 by rpki-client