Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
File: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft (raw, json)
Hash identifier: 19M1vWZWtUpNybGGZ6nLUttSEvqwlyPfirWR6xb0k+E=
Subject key identifier: 53:87:99:E4:12:3F:14:53:A2:6E:C4:22:5A:95:7B:DC:F6:91:36:0F
Authority key identifier: 03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
Certificate issuer: /CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Certificate serial: 019D3A541F764ECBB180E65BA0439A95BC0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 16:01:24 +0000
Manifest this update: Sun 29 Mar 2026 16:01:24 +0000
Manifest next update: Mon 30 Mar 2026 16:01:24 +0000
Files and hashes: 1: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl (hash: fkxb4ez+UeYB5mMwK8NqhTWYlY3CjbdO4KrOaka8GkA=)
2: eCyziES9pqG-mQfeLtr0n6C5-NA.roa (hash: l6vsyJV9WvrG97VV98IwTWvWh3E/Ue4n2AyaMsNRcxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:1f:76:4e:cb:b1:80:e6:5b:a0:43:9a:95:bc:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d39ce91be867cf5ce1b6009d5262c28b65209
Validity
Not Before: Mar 29 16:01:24 2026 GMT
Not After : Mar 30 16:01:24 2026 GMT
Subject: CN=538799e4123f1453a26ec4225a957bdcf691360f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:29:5c:ee:10:17:db:9c:84:06:9c:b7:da:96:
32:61:6e:b2:26:b1:79:dc:a2:e2:a7:9a:63:d0:7e:
bb:5c:97:59:53:5c:15:ec:51:8a:65:ff:cd:15:c9:
ee:63:02:35:53:90:f1:c0:98:a3:6f:4e:9b:98:c0:
c6:19:13:eb:3f:9d:c4:ec:e8:2c:dc:55:b7:7c:f2:
6a:43:10:d5:56:2e:b7:59:0f:8a:dc:9e:0b:6d:58:
88:71:29:7d:52:05:58:f3:c8:75:84:6a:3c:30:9d:
84:99:0b:0e:c5:4a:2d:34:86:af:b3:ad:97:3d:ee:
46:bf:ef:79:86:d7:c7:6a:be:6e:4f:ae:3d:f3:49:
d6:c0:3a:8b:c2:29:a1:dd:d4:73:28:72:65:3f:11:
5a:92:62:66:d6:4f:6e:c5:ca:64:66:7d:ca:fb:db:
6d:57:7f:93:a1:7a:a0:bb:cc:05:44:37:0a:36:85:
94:d0:a6:ad:fd:2a:12:7e:2d:14:f9:f7:91:3e:b5:
7d:15:4e:ec:d6:92:20:08:60:c1:fd:e9:16:34:3d:
3d:66:d3:23:0d:d9:c1:61:32:5b:0d:ce:d0:e7:f1:
65:a8:02:55:49:95:5a:0c:08:d5:5c:89:2d:17:d4:
eb:32:5f:37:7a:56:68:5d:24:2d:80:a9:25:66:c4:
ab:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:87:99:E4:12:3F:14:53:A2:6E:C4:22:5A:95:7B:DC:F6:91:36:0F
X509v3 Authority Key Identifier:
keyid:03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:a4:be:4f:f2:8a:0a:d0:f1:7b:c2:2c:99:c3:99:1c:e2:35:
91:db:eb:ad:db:e2:9e:3b:2d:70:01:f7:4d:84:4e:21:93:30:
f2:9f:ca:14:42:1c:cd:c9:ad:a7:cf:d0:4c:3c:35:a4:64:a2:
b9:d4:1f:ea:ac:cb:07:98:03:1b:16:33:0a:bd:d4:5e:e5:e8:
1d:10:e0:6c:fe:c2:1f:1c:60:0f:da:7f:fa:61:28:25:eb:45:
f1:6c:98:8f:d0:13:c8:fb:48:a6:c4:06:fc:0f:90:91:7b:ea:
5f:64:9c:cc:62:d7:27:13:0b:e7:1d:bd:d5:e0:59:2b:1a:7f:
ea:30:ce:ef:90:c4:3d:56:59:5a:49:e4:a4:81:c3:55:1b:7b:
28:6e:85:34:73:12:a4:ed:c5:66:76:fd:08:50:fd:a7:82:6c:
d8:5d:cf:6e:81:a0:49:87:ca:2c:50:a8:db:c3:4b:a5:a6:c6:
89:f8:9c:ad:94:64:9d:f7:b3:af:b2:00:08:5e:b1:aa:1b:a1:
5a:cd:e2:06:f1:07:21:a4:fd:b6:fd:7a:04:bf:77:c0:b1:06:
c4:07:87:9f:64:2d:09:e8:a2:78:05:17:8b:4b:1d:37:1e:88:
13:8e:63:41:5d:42:89:86:00:11:13:3f:63:9d:f3:45:99:07:
6c:ca:db:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:03:01 2026 by rpki-client