Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: xL/FELK+EsC9ZpnUbohy7dUTdtDXP07dF2Y+z0DYUk4=
Subject key identifier: 98:2F:A2:43:61:1B:5B:4B:71:E1:F9:4B:55:D7:DE:AE:CF:50:E1:47
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 019D2771FA66E1B164BADA00E62ECCABF924
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0D78
Signing time: Thu 26 Mar 2026 00:01:14 +0000
Manifest this update: Thu 26 Mar 2026 00:01:14 +0000
Manifest next update: Fri 27 Mar 2026 00:01:14 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: ZGf7nbe+/6mhe3Ut+id1UdZA89FSg2/XIxOir72q7B8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:fa:66:e1:b1:64:ba:da:00:e6:2e:cc:ab:f9:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Mar 26 00:01:14 2026 GMT
Not After : Mar 27 00:01:14 2026 GMT
Subject: CN=982fa243611b5b4b71e1f94b55d7deaecf50e147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a9:57:94:17:ef:53:81:e5:ff:81:0c:51:8c:
65:c8:46:1b:ba:0a:18:ca:d1:c3:3a:7a:83:bc:b7:
e4:05:b8:a5:ff:da:68:3e:93:15:d0:1e:e5:ba:bf:
bf:69:e7:ce:34:42:53:f2:e1:eb:c8:bf:8d:f4:da:
fa:5d:db:75:28:f5:59:d7:e8:a5:5d:31:f7:1f:57:
6b:31:bc:80:c7:4d:75:32:96:5b:6d:2b:81:b4:a6:
51:19:09:30:d4:fc:7a:1b:8f:66:da:56:12:22:7e:
de:cc:19:34:6b:11:b2:f7:d1:9b:1c:72:43:65:29:
68:15:bc:c6:45:9e:90:e6:8c:c0:83:58:ed:5a:9b:
07:88:1d:01:37:4c:0c:cb:57:d3:c5:e2:4d:5b:3a:
4d:46:17:db:c6:69:3c:08:97:3c:31:df:2f:f6:f9:
14:8c:4b:b5:23:20:c4:c1:68:44:e1:0b:17:af:de:
1f:6d:b2:a5:4a:cb:b7:0e:31:6f:fb:e7:20:3c:e7:
f7:d3:13:7e:5e:dd:d9:e8:b9:0f:c9:59:e6:b1:f6:
8c:b6:4f:4b:1b:52:de:59:cb:be:87:88:c5:52:70:
f8:8f:c3:9c:2d:5b:14:06:56:7e:d0:2e:6a:3a:b3:
d7:c1:ad:07:d8:02:36:8d:bc:be:46:ad:c6:ff:68:
2b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2F:A2:43:61:1B:5B:4B:71:E1:F9:4B:55:D7:DE:AE:CF:50:E1:47
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:e4:3f:12:b9:36:66:b1:b2:cc:ff:2e:4f:43:61:83:4e:b0:
92:1c:22:c3:21:64:82:6f:40:87:2f:07:35:73:be:85:d2:30:
9a:52:d9:7f:ce:9e:e6:2d:b5:aa:a8:ac:67:ac:f4:dc:ee:dc:
b2:84:fb:43:eb:82:7c:78:ce:89:da:e5:a9:49:a3:b9:82:46:
8e:37:37:80:e4:97:8e:eb:7c:5a:09:ae:05:80:89:54:61:c9:
92:94:ea:28:1c:06:2b:f2:39:a5:39:0c:f4:a2:d9:36:b8:9d:
62:4b:ed:4a:b8:27:45:80:db:44:13:54:15:74:c9:b6:50:d7:
21:dc:13:a8:f9:35:69:ea:7d:e5:ab:e0:64:05:30:ae:fa:ce:
40:a6:c2:87:00:5f:7a:40:bf:be:4f:2c:3d:69:25:d1:3c:cc:
ca:aa:da:a9:c8:d8:df:29:d7:8f:65:d7:b8:92:f6:98:10:69:
ec:11:95:4b:b0:42:86:7b:0c:05:c9:38:b1:65:93:d7:8f:10:
3a:89:a8:1f:14:21:0c:cb:55:0d:d9:db:fd:c5:53:63:e7:0b:
13:b3:a6:91:da:c8:e8:62:55:35:79:05:44:de:aa:5d:a9:f4:
26:22:68:c2:81:c1:be:55:33:26:84:a1:b4:6c:c4:69:ee:38:
ad:a5:45:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:46 2026 by rpki-client