Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
File: A-aapu504w79uBm5yxvyHnhub6M.mft (raw, json)
Hash identifier: yXJ3iuW/uPepQ9UlajRyElcwgXauvjyHNid03NhhA6I=
Subject key identifier: B2:07:57:58:0C:E1:15:51:1D:34:4C:BD:10:E8:4F:6E:F9:64:9D:88
Authority key identifier: 03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
Certificate issuer: /CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Certificate serial: 019D28843406399A5F0CB766A7E6B12712DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
Manifest number: 0723
Signing time: Thu 26 Mar 2026 05:00:45 +0000
Manifest this update: Thu 26 Mar 2026 05:00:45 +0000
Manifest next update: Fri 27 Mar 2026 05:00:45 +0000
Files and hashes: 1: A-aapu504w79uBm5yxvyHnhub6M.crl (hash: C1hUFmmL2QUyBccwdE3Iszt7fFhUngMmZCHRR8yzICE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:34:06:39:9a:5f:0c:b7:66:a7:e6:b1:27:12:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Validity
Not Before: Mar 26 05:00:45 2026 GMT
Not After : Mar 27 05:00:45 2026 GMT
Subject: CN=b20757580ce115511d344cbd10e84f6ef9649d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:aa:8f:74:a9:ab:6d:0a:44:fd:00:af:89:87:
45:cd:98:af:72:52:4e:f3:be:c1:d2:bb:43:01:60:
ef:f4:f0:77:be:9d:d5:bc:4b:4c:2f:2c:57:75:ec:
7d:1c:4c:ad:65:5a:71:30:77:fe:91:c0:40:ed:5a:
20:c3:95:94:ce:84:32:8a:ae:8c:01:a0:61:d0:25:
cb:92:27:39:50:9c:d2:b9:5c:25:c0:05:b6:0f:11:
0e:ab:db:2f:f6:b9:d8:75:e9:09:71:0e:28:a8:ad:
05:6e:4a:10:a8:2f:5a:b8:18:49:6e:e5:e5:31:f7:
09:32:6a:b8:0e:53:42:42:6f:ba:b2:8a:f9:b2:be:
08:a2:c2:d1:1e:8a:ea:61:ac:00:2d:20:1a:6f:fe:
21:93:83:c6:7e:07:65:c3:9a:83:c8:49:e6:8b:31:
e0:06:37:33:cf:ac:25:da:8e:d2:ff:d3:1a:1f:f8:
fc:73:54:d7:61:ff:6c:7f:00:cd:eb:3a:94:df:57:
e2:0a:0f:6e:28:02:b7:26:b9:a0:f2:90:c9:51:79:
7b:39:64:8c:9f:a9:15:54:f6:dd:30:00:d3:a6:59:
d4:84:c6:c0:34:e4:87:aa:98:0a:d4:13:8a:f4:b8:
54:0d:ab:14:dd:fd:7a:4e:af:ea:86:8f:33:1f:29:
88:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:07:57:58:0C:E1:15:51:1D:34:4C:BD:10:E8:4F:6E:F9:64:9D:88
X509v3 Authority Key Identifier:
keyid:03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:96:6d:8d:dc:78:e7:79:71:5b:12:9e:86:06:8a:56:72:c5:
a9:26:1f:b0:2a:2b:2e:43:a2:73:c9:9a:b2:c9:cd:1c:b0:42:
71:45:ad:8d:4b:94:18:56:6f:6e:38:ba:ee:ba:13:28:a4:e2:
49:21:5e:c4:c4:6c:39:74:b3:57:38:fc:c0:1c:49:95:05:ca:
cb:0e:ca:47:fa:fa:e8:7f:01:c8:7d:90:27:29:79:bd:89:07:
11:e3:33:a9:41:9b:1c:79:dd:bb:b4:7c:5d:96:bb:2f:17:3e:
df:a4:44:88:44:1f:3f:9f:fe:c8:db:bd:f5:fb:a5:cd:12:36:
b6:0c:8a:f1:6b:5b:d9:52:1a:38:6f:05:f4:66:d9:43:dd:1f:
98:c6:76:af:4b:ee:e7:51:8b:83:50:de:29:2c:ce:4a:7b:10:
7d:aa:a4:f0:fc:46:87:ea:6d:75:7a:89:90:4d:e1:f5:8a:73:
c2:9a:0f:f3:5f:d1:2e:87:9a:16:1e:8a:2e:2f:bc:f5:c1:49:
4c:6c:ba:ac:52:ed:73:8a:2d:ea:a2:d5:d5:b4:53:d8:12:a6:
3d:63:4b:2d:ce:ac:84:d8:94:15:0c:66:3d:21:4b:90:30:39:
b0:23:40:ed:2e:9a:49:6e:cb:f6:4a:ac:c7:a3:c7:63:50:f0:
9d:5d:66:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:42:26 2026 by rpki-client