Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
File: AVgEEYI7SHN2g27WavP4qrsgEZw.mft (raw, json)
Hash identifier: sE49Q43tzZGYhUmck6AqiiPCuwiAXLzLTH5ChQXxjng=
Subject key identifier: 75:96:EA:14:DB:90:88:BF:62:F6:AD:16:DE:C5:6E:3C:DE:D4:F5:F8
Authority key identifier: 01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C
Certificate issuer: /CN=01580411823b487376836ed66af3f8aabb20119c
Certificate serial: 019D386671D742387C7C61E333A3EA5857E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 07:02:10 +0000
Manifest this update: Sun 29 Mar 2026 07:02:10 +0000
Manifest next update: Mon 30 Mar 2026 07:02:10 +0000
Files and hashes: 1: AVgEEYI7SHN2g27WavP4qrsgEZw.crl (hash: y2jGK5+gYAdOVa77Oh5ohsYpqwcIsOCRidtZNNtHLAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:71:d7:42:38:7c:7c:61:e3:33:a3:ea:58:57:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01580411823b487376836ed66af3f8aabb20119c
Validity
Not Before: Mar 29 07:02:10 2026 GMT
Not After : Mar 30 07:02:10 2026 GMT
Subject: CN=7596ea14db9088bf62f6ad16dec56e3cded4f5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:43:18:f4:5d:56:02:e2:27:f6:75:2b:60:37:
52:e9:09:3d:ee:ec:e0:7d:87:6a:22:06:0a:a9:02:
cf:a7:6e:fb:1e:ab:dc:e9:c7:9b:4c:78:10:fd:ef:
2b:c2:e5:41:39:72:d6:1d:8e:66:29:21:d4:2f:21:
49:d1:a1:91:9d:be:42:7c:73:9b:54:19:9d:cc:4c:
bd:7f:01:b1:ea:94:a2:3e:e2:07:2b:56:39:f9:a7:
01:92:36:91:7b:4d:e6:69:1c:91:3c:ba:92:d4:52:
be:bb:79:6d:6a:f0:2b:0a:e2:44:2d:d3:fd:26:75:
7f:93:c2:38:f8:62:1e:65:37:22:fe:f9:56:c3:36:
f5:dd:fd:bb:04:38:63:1e:0d:82:e8:e4:4e:85:84:
36:e4:ff:f0:f0:8b:92:6f:76:72:85:07:7f:ad:b6:
57:a3:93:96:5c:15:54:f9:d1:e6:3e:32:38:a4:15:
c0:5a:91:1c:8c:cd:93:3f:f1:b5:be:0f:be:d3:4e:
b1:3e:33:f6:83:60:3c:21:46:1b:d8:7d:f2:00:c6:
9e:f4:7d:36:7e:d4:fc:4f:f2:9f:46:dc:88:47:fd:
8c:d7:70:40:63:34:92:11:41:5b:eb:76:64:f0:99:
56:d8:1b:d5:b7:7c:d7:d4:b3:93:c2:ed:0f:e8:ba:
c4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:96:EA:14:DB:90:88:BF:62:F6:AD:16:DE:C5:6E:3C:DE:D4:F5:F8
X509v3 Authority Key Identifier:
keyid:01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:5f:1c:d8:d1:e3:b5:f2:85:73:cf:31:29:ee:96:53:2d:d6:
6d:c8:66:ec:14:1e:16:26:60:f4:a6:33:b5:20:51:65:01:d4:
77:45:20:75:98:02:b1:57:3e:57:12:90:1d:38:ce:bb:ea:ec:
98:0a:2a:ee:36:ee:da:fd:b8:4c:10:4a:ac:3c:c6:bf:44:68:
8b:30:a9:7f:7b:a7:8d:9b:78:02:86:82:9f:d3:04:59:dc:51:
99:74:2e:88:94:68:3e:88:7f:d9:e2:75:8c:90:40:36:88:27:
1f:50:03:ea:89:a2:b9:44:23:54:3a:a9:52:a2:ea:77:f2:8b:
94:e0:32:bc:22:57:60:47:0d:f4:47:8e:cb:3b:6c:9e:01:29:
26:6b:76:25:24:32:82:ba:d5:c0:8c:57:1b:80:4e:e6:59:e8:
68:43:ba:b6:56:ed:68:00:11:d6:f4:a9:09:09:f8:66:b9:2e:
69:de:59:25:7f:07:ce:09:54:5a:d0:b5:f1:da:90:dc:63:a5:
ea:42:21:aa:42:02:ad:db:af:e6:bd:0a:eb:fa:a8:43:88:ce:
b4:e8:26:66:ac:2d:c7:91:bc:88:e8:e8:47:74:8e:6e:a6:ac:
9d:5a:ab:03:01:04:ec:02:0d:d2:cc:8b:c6:10:e8:e2:5f:43:
b8:0b:08:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:09 2026 by rpki-client