Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json)
Hash identifier: E4vXL26CXgPTOp59Z2OlJoje9r/vxhVOlBs3qBBtSSE=
Subject key identifier: CA:89:BE:68:15:3A:09:22:58:24:4D:EC:CA:E6:A7:CA:FA:57:5A:38
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 019D28164FF3A95E5C1081C81D19BDF8B61A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
Manifest number: 181A
Signing time: Thu 26 Mar 2026 03:00:43 +0000
Manifest this update: Thu 26 Mar 2026 03:00:43 +0000
Manifest next update: Fri 27 Mar 2026 03:00:43 +0000
Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: 7vEAKo/DyUldhco4Q6IH+NtaFBwXnPTHBTtGaGnEL9Y=)
2: pwbWCuGOLTFOrJupg71uoibxjHU.roa (hash: AW3hofHwJcZNnJFiGJ8uTdZk7az4nc9IpPWU/+dKm48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:4f:f3:a9:5e:5c:10:81:c8:1d:19:bd:f8:b6:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: Mar 26 03:00:43 2026 GMT
Not After : Mar 27 03:00:43 2026 GMT
Subject: CN=ca89be68153a092258244deccae6a7cafa575a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:45:76:cd:7a:0d:1a:d7:5d:fd:2f:0f:95:0d:
52:ea:c4:5a:42:c1:40:ac:ff:27:24:ee:bf:99:2a:
6b:06:63:e4:9f:12:5d:cd:46:04:82:4a:61:d8:5f:
17:fc:01:84:19:53:bd:4b:bf:d8:42:9d:90:d2:96:
52:e9:0c:97:99:f0:6b:0f:74:d1:de:52:d5:3a:ef:
a9:80:25:b8:f5:74:0d:cc:c3:e8:75:71:0d:3a:88:
1e:52:79:fa:16:05:4d:4e:ab:ca:77:53:52:4c:dc:
9d:1c:1d:b3:56:8f:ec:7d:d0:1e:f0:e3:2b:77:ec:
74:40:6d:82:e9:69:5f:a9:a4:84:24:0b:b3:22:73:
03:8d:b3:32:85:83:f8:2e:b3:13:65:b3:e5:57:1f:
e1:a0:e4:b1:26:78:4b:dc:17:2e:91:e5:4b:38:84:
92:da:1a:e7:43:c1:2a:a4:28:9b:a8:75:43:b8:b4:
1c:0c:11:d9:bd:13:ff:0d:16:78:35:42:8c:aa:56:
c6:71:2b:51:6a:09:62:ce:84:c8:84:0a:bf:b5:2f:
7f:56:c8:b8:4c:76:08:d3:76:9f:d7:12:da:c4:71:
f6:6f:73:80:f6:41:7f:d9:b9:7b:36:60:a6:e2:1d:
c2:e5:91:ec:c8:fc:e4:af:4b:85:a2:c5:a0:82:46:
9c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:89:BE:68:15:3A:09:22:58:24:4D:EC:CA:E6:A7:CA:FA:57:5A:38
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:e6:66:9f:f8:14:e6:d4:8c:ea:ee:64:34:01:1a:05:87:7f:
b2:b6:88:f8:af:6c:9b:87:78:16:b5:36:e9:e0:d0:77:5d:8e:
c6:97:c9:23:bf:e0:aa:d3:7d:0b:ff:ce:4b:81:a7:d3:78:87:
1f:11:37:c0:fd:9e:5e:48:36:c3:0e:c6:5c:ca:6f:bb:aa:69:
6c:f7:69:eb:d0:98:f7:0f:45:b2:9f:0d:3b:88:33:c7:b6:fd:
4a:51:48:b7:e5:38:56:bd:8e:d3:3e:eb:4e:2f:f4:91:c3:09:
9c:11:ec:4c:d6:c0:74:51:28:64:77:48:72:76:e8:60:8b:d9:
17:0a:81:0f:77:53:a3:bf:13:46:dd:9f:63:36:e6:8f:5d:6d:
ee:14:2f:d5:c3:71:68:47:9b:83:ec:11:56:e6:79:4d:3f:9a:
50:ac:32:9b:86:7a:60:a7:9f:c8:4a:12:bb:07:57:c1:57:e8:
f6:ee:47:8f:fc:2a:f7:20:37:ac:10:d2:97:04:24:d8:ea:3a:
93:38:83:19:cf:8b:26:1d:8a:69:dd:39:ea:4c:fd:35:e5:9d:
b4:0b:e0:57:8f:e6:76:fc:9e:76:fd:b9:a3:33:dd:02:07:3e:
c6:33:a7:b7:57:27:09:0a:cb:32:e0:57:db:21:25:0f:51:31:
c1:c2:0e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:41 2026 by rpki-client