Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: 8gZYAdS0VhY3QWCdCbjT312fJJ98j9kDDFaFgkuGN10=
Subject key identifier: C6:37:AC:07:AF:9F:26:21:0D:76:94:71:99:59:94:8A:77:44:EF:70
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 019D28BB90BFF4B982A65F9C79D19BCD7DD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 1584
Signing time: Thu 26 Mar 2026 06:01:13 +0000
Manifest this update: Thu 26 Mar 2026 06:01:13 +0000
Manifest next update: Fri 27 Mar 2026 06:01:13 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: XotoAaueKbHp4zROPHD5IGeweqQDN4CLsXpJAza7jQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:90:bf:f4:b9:82:a6:5f:9c:79:d1:9b:cd:7d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: Mar 26 06:01:13 2026 GMT
Not After : Mar 27 06:01:13 2026 GMT
Subject: CN=c637ac07af9f26210d7694719959948a7744ef70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0c:1a:2b:aa:f0:ea:6e:97:fd:7c:1e:89:57:
b6:54:67:26:59:0a:cb:51:cc:56:b5:cb:65:c4:0d:
cd:ab:70:b3:07:d5:6e:81:58:52:a0:1f:2e:24:5e:
0e:f0:aa:a7:c5:67:04:cb:3d:60:fd:7e:b8:b5:18:
71:2f:44:bb:a6:e3:a8:1e:41:71:1a:4c:a2:3d:ff:
5e:c4:8e:9f:00:44:bb:79:6e:c6:94:b0:16:5a:13:
b8:15:f9:29:b7:af:27:dc:8c:0d:b6:b8:ef:f3:c1:
05:9f:8d:af:ca:62:5c:9c:eb:66:19:8c:ae:63:ec:
d3:3a:91:21:bc:24:9a:38:f0:dc:a2:77:f5:78:61:
09:62:45:39:c1:6b:8e:0e:ba:c6:8a:c3:44:2c:70:
f5:78:52:65:fe:f0:a0:b5:d8:70:f3:87:94:ae:10:
4d:81:ad:43:5d:87:0b:6f:51:a4:8f:05:56:89:0c:
21:8c:0c:c1:a4:95:3b:ec:d5:71:11:18:dc:40:00:
fc:17:3a:74:20:54:2c:51:5e:aa:07:1d:69:e4:8b:
0b:6a:b0:bf:ab:4b:67:be:81:4d:0d:ba:94:7a:b3:
6e:1f:58:43:fa:d7:01:6e:ec:4b:4b:a4:db:74:63:
7e:7d:b9:57:05:cd:3e:cf:11:42:dc:b0:99:26:5e:
a4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:37:AC:07:AF:9F:26:21:0D:76:94:71:99:59:94:8A:77:44:EF:70
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:60:9e:61:a6:51:16:bc:c2:1d:6b:e1:c0:ab:a6:f3:cd:13:
cb:a5:88:d6:71:1e:a2:4a:9a:b1:3f:4a:91:24:38:73:7d:36:
fc:c6:7d:4b:9b:f0:64:82:17:6a:32:33:6f:fc:f4:45:be:4d:
54:fc:36:a8:5b:55:87:37:04:b0:81:e6:db:2b:07:9a:40:bf:
18:29:50:38:01:53:a5:c9:d0:7e:0b:31:d0:3a:65:93:f7:ea:
90:5a:8a:a8:7b:fc:2b:a5:ca:85:50:fd:22:83:fa:d2:7a:f0:
4b:43:46:52:15:f0:e1:70:61:d4:25:8b:40:b5:98:d6:5c:bb:
0c:41:20:99:c6:27:b0:c1:ad:86:45:8a:c4:6f:0c:e4:14:30:
c0:6d:0a:55:76:00:34:7d:09:fd:e1:81:53:09:ed:aa:a1:39:
5b:09:14:91:90:4f:df:db:fe:f7:43:a7:58:4a:35:6f:9c:1d:
23:20:0d:26:fe:45:35:78:c2:ef:e5:8d:67:74:e3:7e:8a:2c:
c6:31:02:40:41:83:c1:16:35:45:36:07:78:e0:62:25:83:0d:
0f:28:2e:c8:95:9f:f3:fa:fa:34:45:65:be:92:79:5e:40:3b:
b3:c8:14:a0:8f:e3:0a:c8:2a:5a:15:6f:ce:28:21:f7:bd:f4:
c3:bb:a3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:28 2026 by rpki-client