Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
File: AVgEEYI7SHN2g27WavP4qrsgEZw.mft (raw, json)
Hash identifier: Fkg0h0+e2mDVxf/+tG6EPc0IwSzYdkjdI+UragFGwb4=
Subject key identifier: 99:C1:B9:52:AC:B2:5B:52:50:0B:C8:EF:AF:8E:AF:B6:D0:10:2E:C6
Authority key identifier: 01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C
Certificate issuer: /CN=01580411823b487376836ed66af3f8aabb20119c
Certificate serial: 019CA97CD7EB70F08613B9B8D807EB53E237
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 13:00:57 +0000
Manifest this update: Sun 01 Mar 2026 13:00:57 +0000
Manifest next update: Mon 02 Mar 2026 13:00:57 +0000
Files and hashes: 1: AVgEEYI7SHN2g27WavP4qrsgEZw.crl (hash: A9l0R1Ngh+QEqhF6kL4JIZ54komF7CDvQEOvT0EoI5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7c:d7:eb:70:f0:86:13:b9:b8:d8:07:eb:53:e2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01580411823b487376836ed66af3f8aabb20119c
Validity
Not Before: Mar 1 13:00:57 2026 GMT
Not After : Mar 2 13:00:57 2026 GMT
Subject: CN=99c1b952acb25b52500bc8efaf8eafb6d0102ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5b:bf:62:1f:d6:2d:ec:ac:3b:dc:cf:55:ce:
79:e7:f3:0d:88:19:6d:2c:35:fb:2f:04:4c:b4:9e:
f5:44:e3:d0:18:62:9d:b9:44:f5:0c:81:d0:2d:a5:
b4:9d:02:2b:b6:de:de:83:7d:81:e3:6f:49:56:0e:
ad:da:94:8f:ed:ab:ac:6a:19:f3:ec:d6:fc:a1:75:
d8:f8:79:d4:f3:ff:46:fb:cc:d8:40:92:a6:33:e5:
91:e1:0e:12:33:8b:34:4a:a4:99:b6:79:c9:dc:00:
ee:0f:f4:7b:9f:3e:5d:c0:5d:02:9e:02:94:ca:38:
d7:d8:f4:00:1f:25:07:5f:61:e1:87:a5:2c:0b:2f:
22:5e:fa:4b:30:8a:43:65:c0:fe:d1:53:de:ae:35:
b8:f9:ca:e8:f3:69:4b:a0:7c:0c:48:1a:e9:13:09:
e5:0f:ae:4a:51:30:09:7a:24:82:7c:a0:2b:d4:f8:
46:7b:bd:d0:84:90:ad:e8:f1:9a:d4:b3:c6:62:31:
3c:cf:ee:99:97:82:57:60:ed:df:61:23:5b:a4:46:
4a:07:a1:43:bd:2c:41:af:df:aa:08:b6:36:2f:c1:
2c:fc:da:9e:c0:b8:66:bf:ce:d0:39:8f:69:3d:92:
81:18:32:75:30:b0:a6:a5:3c:78:e1:37:40:11:1b:
49:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C1:B9:52:AC:B2:5B:52:50:0B:C8:EF:AF:8E:AF:B6:D0:10:2E:C6
X509v3 Authority Key Identifier:
keyid:01:58:04:11:82:3B:48:73:76:83:6E:D6:6A:F3:F8:AA:BB:20:11:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVgEEYI7SHN2g27WavP4qrsgEZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/09d667-b1c5-4521-8b5f-c18abecdd524/1/AVgEEYI7SHN2g27WavP4qrsgEZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:d8:8f:d5:16:9f:b6:6b:76:0a:40:88:bb:54:93:8a:67:7e:
61:14:d7:ab:0e:87:f8:fb:96:d6:fd:9c:12:fd:61:37:e9:d8:
e5:bb:34:7a:aa:77:e2:8f:f5:26:ae:12:34:6c:0d:da:57:6c:
ec:08:77:5b:03:62:c4:27:c9:5b:6f:fd:e8:5f:f4:3f:52:14:
4a:f8:21:8f:83:60:ca:25:38:80:9c:6f:1e:1d:28:32:1d:0c:
f5:ad:48:0b:ac:e6:e6:4a:09:e4:6b:77:6b:d6:6a:a8:bc:5e:
8f:9b:0a:4f:fc:48:c1:cf:c6:06:61:33:2a:22:57:4a:89:5f:
a9:f6:26:0d:9a:3c:f8:19:40:df:15:10:19:74:45:67:c2:48:
5d:27:32:3d:dc:41:82:9b:0f:9b:59:b2:c8:93:45:57:45:0e:
26:83:63:2e:25:74:03:4c:d2:fd:0d:82:97:9f:87:85:d3:9f:
d2:70:31:11:ce:7d:0f:b8:13:24:05:34:7a:01:0d:84:98:ea:
8f:80:b1:85:86:88:5b:2d:ca:fc:b9:36:27:df:04:a3:b8:20:
ed:d5:04:53:cf:13:f0:4c:b8:3d:19:04:c6:34:af:d5:1b:d5:
34:06:8c:47:23:28:26:05:0c:84:35:59:26:a6:14:f3:f5:e0:
88:ea:ef:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfNfrcPCGE7m42AfrU+I3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNTgwNDExODIzYjQ4NzM3NjgzNmVkNjZhZjNmOGFhYmIy
MDExOWMwHhcNMjYwMzAxMTMwMDU3WhcNMjYwMzAyMTMwMDU3WjAzMTEwLwYDVQQD
Eyg5OWMxYjk1MmFjYjI1YjUyNTAwYmM4ZWZhZjhlYWZiNmQwMTAyZWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVu/Yh/WLeysO9zPVc555/MNiBlt
LDX7LwRMtJ71ROPQGGKduUT1DIHQLaW0nQIrtt7eg32B429JVg6t2pSP7ausahnz
7Nb8oXXY+HnU8/9G+8zYQJKmM+WR4Q4SM4s0SqSZtnnJ3ADuD/R7nz5dwF0CngKU
yjjX2PQAHyUHX2Hhh6UsCy8iXvpLMIpDZcD+0VPerjW4+cro82lLoHwMSBrpEwnl
D65KUTAJeiSCfKAr1PhGe73QhJCt6PGa1LPGYjE8z+6Zl4JXYO3fYSNbpEZKB6FD
vSxBr9+qCLY2L8Es/NqewLhmv87QOY9pPZKBGDJ1MLCmpTx44TdAERtJlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJnBuVKssltSUAvI76+Or7bQEC7GMB8GA1UdIwQY
MBaAFAFYBBGCO0hzdoNu1mrz+Kq7IBGcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVZnRUVZSTdTSE4yZzI3V2F2UDRxcnNnRVp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8wOWQ2NjctYjFjNS00NTIxLThiNWYt
YzE4YWJlY2RkNTI0LzEvQVZnRUVZSTdTSE4yZzI3V2F2UDRxcnNnRVp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8wOWQ2NjctYjFjNS00NTIxLThiNWYtYzE4YWJlY2RkNTI0
LzEvQVZnRUVZSTdTSE4yZzI3V2F2UDRxcnNnRVp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ9iP1Raf
tmt2CkCIu1STimd+YRTXqw6H+PuW1v2cEv1hN+nY5bs0eqp34o/1Jq4SNGwN2lds
7Ah3WwNixCfJW2/96F/0P1IUSvghj4NgyiU4gJxvHh0oMh0M9a1IC6zm5koJ5Gt3
a9ZqqLxej5sKT/xIwc/GBmEzKiJXSolfqfYmDZo8+BlA3xUQGXRFZ8JIXScyPdxB
gpsPm1myyJNFV0UOJoNjLiV0A0zS/Q2Cl5+HhdOf0nAxEc59D7gTJAU0egENhJjq
j4CxhYaIWy3K/Lk2J98Eo7gg7dUEU88T8Ey4PRkExjSv1RvVNAaMRyMoJgUMhDVZ
JqYU8/XgiOrv8w==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:22 2026 by rpki-client