Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
File: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft (raw, json)
Hash identifier: sBU6XzXqSOJN87Ggq/1WhRGqTxOkRw4MMWF/MLX6OVg=
Subject key identifier: 4C:89:05:59:E7:C9:9A:E0:F6:82:C3:AB:BB:07:41:8D:29:7C:10:02
Authority key identifier: 03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
Certificate issuer: /CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Certificate serial: 019F19442E1A96C9745374D4E3EFB290781E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
Manifest number: 1986
Signing time: Tue 30 Jun 2026 16:02:06 +0000
Manifest this update: Tue 30 Jun 2026 16:02:06 +0000
Manifest next update: Wed 01 Jul 2026 16:02:06 +0000
Files and hashes: 1: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl (hash: tAZcvRzMQmnX0qHp2tFcSGi57MBh3ORCdztBO7YqPmI=)
2: eCyziES9pqG-mQfeLtr0n6C5-NA.roa (hash: l6vsyJV9WvrG97VV98IwTWvWh3E/Ue4n2AyaMsNRcxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:44:2e:1a:96:c9:74:53:74:d4:e3:ef:b2:90:78:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Validity
Not Before: Jun 30 16:02:06 2026 GMT
Not After : Jul 1 16:02:06 2026 GMT
Subject: CN=4c890559e7c99ae0f682c3abbb07418d297c1002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:33:f4:d0:6f:e1:e5:5b:8d:30:e8:7a:eb:0f:
54:cc:4d:c3:65:81:2d:fd:17:64:9a:0b:e8:26:4c:
9d:57:c3:1a:65:c0:61:61:b2:29:cd:6d:ed:ae:a3:
8c:a8:2f:e8:07:19:7c:5e:12:45:04:26:c3:ad:27:
70:77:15:74:b6:ce:cf:c9:50:a1:69:38:c4:eb:7d:
82:0b:87:c1:7a:3c:27:93:9e:6f:3c:20:04:e0:31:
7c:c7:c6:32:c7:cd:d6:c6:30:68:05:ba:d5:fb:2c:
ba:49:06:a9:4c:e4:be:d7:25:49:6a:16:91:26:8a:
c7:ee:05:e2:9b:94:fc:c6:c9:71:53:d8:6b:e9:61:
2e:53:83:df:57:a0:97:f6:2d:0c:37:57:b4:50:70:
9a:ea:57:d0:43:3e:3d:42:6d:f2:79:17:22:2a:e8:
d4:c1:93:87:5a:82:3a:cd:da:e2:be:a5:fd:d4:70:
51:e3:22:5c:7d:7b:0a:48:ef:3a:6b:3c:8d:a0:c7:
62:cb:5a:23:35:39:0e:f2:08:65:06:82:27:dc:9f:
7f:39:69:e6:ff:e1:12:74:70:3a:45:91:90:5f:fd:
f9:e2:bd:47:8e:de:f4:97:aa:6b:a8:ef:cf:9b:d0:
b9:31:6a:5f:18:54:72:69:68:6c:4a:1e:7a:fc:6b:
1e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:89:05:59:E7:C9:9A:E0:F6:82:C3:AB:BB:07:41:8D:29:7C:10:02
X509v3 Authority Key Identifier:
keyid:03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:b7:2d:f5:b6:67:8e:3c:12:5f:9a:f4:3f:c3:9e:c5:c6:21:
c6:df:f8:f0:bc:d1:8a:ac:55:86:60:4b:b5:e9:bb:8c:5d:26:
a1:4e:73:b5:fa:07:b6:b4:ac:59:67:bb:5b:fb:02:46:57:3e:
e2:d4:61:64:b3:7c:41:2c:cc:4b:d4:d6:0f:73:57:07:8f:c7:
74:29:fb:68:16:4b:aa:1c:77:58:99:56:14:b3:c8:31:f4:f0:
1d:9d:22:70:8c:21:27:b8:f4:86:09:60:2e:13:cc:97:18:5a:
1b:a2:a1:b0:dc:ee:fc:3f:d5:e2:98:b5:68:02:8c:88:63:39:
11:48:0b:c1:25:d1:6c:3a:79:23:7c:ff:35:53:b4:e3:b8:59:
84:c8:6e:c6:0f:ad:51:63:09:76:54:b5:5f:70:c1:d4:5e:f3:
d1:75:ac:91:d9:ec:9a:0b:72:96:c6:f1:36:f7:f9:07:5b:62:
bf:11:85:1a:98:a4:63:d2:08:4a:9b:99:49:c6:96:97:7a:9b:
d8:b7:17:6a:53:c1:2a:4d:3b:15:d1:59:cc:3a:19:e3:00:56:
0c:22:81:b0:12:07:bc:9b:d2:11:7a:a8:cf:96:64:b7:80:5a:
78:96:bc:5a:f5:f7:e6:fd:0b:f9:6c:f2:f6:b5:31:f0:81:6e:
0c:d7:de:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:27:19 2026 by rpki-client