Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: hwciHzqcQDSzmFewwoHoBoPXyneOdS+oP4We7LTXSVk=
Subject key identifier: 3D:82:16:C1:67:21:A7:A2:1E:51:27:36:A4:5F:C7:7B:CC:B0:07:B8
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 019D27729FF663367914BCB3DCDF1A2B9368
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 09F7
Signing time: Thu 26 Mar 2026 00:01:56 +0000
Manifest this update: Thu 26 Mar 2026 00:01:56 +0000
Manifest next update: Fri 27 Mar 2026 00:01:56 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: 3aiyrl4glqK4pudkEinq/9QsiwBTMUU5x+wEmfXs84I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:9f:f6:63:36:79:14:bc:b3:dc:df:1a:2b:93:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Mar 26 00:01:56 2026 GMT
Not After : Mar 27 00:01:56 2026 GMT
Subject: CN=3d8216c16721a7a21e512736a45fc77bccb007b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1b:e6:cd:02:dc:af:2d:05:33:ea:27:22:05:
d9:b2:6a:4f:98:ce:58:1d:32:92:72:bb:ce:1f:67:
2d:f4:ef:98:4a:65:f6:d2:50:af:3f:cb:8d:31:2a:
c4:2c:1e:63:b3:26:53:9c:63:05:25:3a:98:c2:52:
2c:fb:11:fb:3c:cb:be:74:b7:cb:d5:0c:7b:57:7f:
44:0b:5e:85:79:ac:e9:4d:9f:b5:d6:71:d6:7d:18:
7e:33:47:5b:70:12:93:c2:e6:ce:9e:9a:48:f1:3b:
69:23:e0:5a:5b:e4:7a:fc:3c:0d:16:cc:73:59:41:
5a:4b:b1:6e:1f:3d:6b:11:7a:1a:80:88:4e:d5:1f:
d3:be:89:19:90:08:ae:9a:95:c3:03:aa:58:51:31:
87:5a:fb:5a:8d:14:13:68:22:e2:f9:85:75:11:3b:
17:f1:de:da:6d:ce:aa:df:49:17:85:0d:8f:60:be:
99:6e:45:9c:98:b6:02:8d:46:6d:3d:65:7f:81:51:
da:4d:06:70:b1:33:93:a0:71:fe:53:40:5b:7a:ae:
a0:d0:32:2e:45:7b:2d:17:df:c7:c4:34:26:c2:1d:
92:12:a1:fd:0d:81:5c:d3:35:ac:8c:99:d5:6f:59:
3e:4f:78:fe:9d:3c:98:dd:1f:5b:b2:2b:e1:a5:1f:
45:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:82:16:C1:67:21:A7:A2:1E:51:27:36:A4:5F:C7:7B:CC:B0:07:B8
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:67:c3:cc:c4:d9:1e:20:e1:46:c7:a2:8d:84:d3:8b:0b:7a:
8e:8e:44:6d:96:d7:d0:0d:cf:77:99:8d:ae:48:d8:de:90:48:
71:08:b9:81:fb:04:d7:06:30:20:e6:19:6e:c4:fc:d6:d7:01:
7c:e2:d4:b1:aa:d0:11:26:55:c7:07:b8:cc:77:54:eb:11:47:
59:cd:19:87:78:08:55:42:d6:ee:88:e6:4c:80:b7:4b:1f:0d:
25:7f:82:72:f1:f9:5c:f1:d5:80:0c:2a:d0:ae:26:6e:2a:f7:
cb:2f:9e:f2:bc:80:df:19:cd:5e:ee:18:8c:f4:97:1b:18:44:
52:33:a1:3c:43:dd:a2:9a:c1:aa:4e:39:44:7f:0e:a5:9e:45:
6b:3d:35:44:ad:56:e6:f4:31:b3:0d:65:c8:12:23:3f:ce:9c:
1b:af:54:77:c7:2d:ea:3f:00:60:49:14:aa:e1:c4:ec:d2:95:
2e:ab:0b:ba:0a:7d:87:4d:ad:d9:a3:6f:85:df:5e:3f:4e:80:
0b:40:40:f9:9b:01:e3:51:00:64:cf:26:56:2b:82:11:b9:18:
70:fb:00:35:dd:c8:2b:2c:ee:4c:23:83:37:20:85:0e:f2:99:
be:ba:60:75:15:38:cd:39:e1:6a:f3:17:33:42:7e:9a:ec:a1:
2a:bf:a7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:57:21 2026 by rpki-client