Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: ZhkVvvLMv8E7t0fCwgjInkMBLwJyOyaNP/OQNp1cNCg=
Subject key identifier: 37:45:21:B7:04:6F:76:DC:AA:1B:03:5E:6F:65:A5:A3:0E:53:B1:BD
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 019D25F0FC149897330A1DC2D15A17BD1ED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 05D4
Signing time: Wed 25 Mar 2026 17:00:43 +0000
Manifest this update: Wed 25 Mar 2026 17:00:43 +0000
Manifest next update: Thu 26 Mar 2026 17:00:43 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: Mz5bvA5+I3OM6JkpC/gG7uA2WZOBuXpD4BZHBrJoyoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f0:fc:14:98:97:33:0a:1d:c2:d1:5a:17:bd:1e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: Mar 25 17:00:43 2026 GMT
Not After : Mar 26 17:00:43 2026 GMT
Subject: CN=374521b7046f76dcaa1b035e6f65a5a30e53b1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8e:ac:84:04:c2:dd:51:dc:cf:d6:48:20:f8:
64:a3:de:16:fe:bf:f8:81:10:4a:29:a8:da:3a:d9:
3b:34:83:ee:d9:d6:5d:8c:ce:79:b0:38:0a:30:17:
9a:6b:ae:b8:77:9c:9f:b9:0a:e0:34:a5:16:46:e7:
f0:37:60:15:14:78:34:62:94:0d:49:9a:e0:06:38:
73:ce:32:e3:20:eb:48:69:6c:aa:d6:b0:d1:ea:8e:
e4:e0:38:13:42:d5:31:18:01:e4:8b:e7:38:01:00:
55:b0:ae:f8:ac:53:42:2d:58:38:90:bf:46:97:8b:
52:2b:2f:3d:15:34:e3:a7:a9:4f:03:d7:2a:b5:56:
5f:67:d9:7e:60:8d:8a:b4:63:66:a7:54:d5:6b:34:
66:af:30:c7:19:87:66:8a:ff:32:19:ba:88:4a:1a:
13:3a:d5:f2:55:f4:28:c4:4e:25:09:f5:f7:a6:c6:
9c:46:ee:94:45:76:49:2e:1b:25:7e:62:e3:ad:97:
62:27:88:4b:55:2e:d9:0a:48:86:49:c9:9f:b1:70:
5f:64:19:3f:46:07:70:9d:7b:dc:7e:bb:99:55:fd:
d2:ff:d9:02:c1:19:c1:47:5c:03:d7:d5:a7:61:aa:
e8:17:c8:41:83:c9:22:d6:f6:ea:29:b6:64:53:0f:
42:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:45:21:B7:04:6F:76:DC:AA:1B:03:5E:6F:65:A5:A3:0E:53:B1:BD
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:f1:3e:4c:25:cc:9f:fd:44:a5:55:71:19:c5:17:d1:09:c3:
ba:ca:f7:cc:8a:d4:07:2f:02:2e:19:7f:3a:02:c7:d6:c7:8a:
ea:19:89:49:19:f2:9a:c1:4c:5e:41:f2:05:cd:72:cd:de:14:
9a:7f:3d:50:bf:3e:21:41:8b:3d:bb:54:3b:54:3a:8e:1b:ff:
00:9d:6a:6d:02:b3:ad:44:37:07:28:3d:92:07:d3:28:9c:7b:
f4:32:2c:54:14:6c:fa:19:2d:54:ae:d8:c0:06:fd:1b:7b:e0:
73:be:c9:a1:78:7f:99:d8:28:14:4a:73:bd:73:7e:8a:5c:e1:
d7:66:6a:fa:0b:fe:f0:45:03:17:64:ca:22:ba:b2:34:0b:e1:
a6:31:97:64:39:56:cb:ab:ea:9b:ad:d7:b3:9b:85:49:fa:db:
64:5e:12:df:76:e5:6d:cd:cb:82:66:3d:7b:1a:a0:42:6f:f0:
31:eb:ff:2a:55:c1:4f:2e:5e:de:57:19:42:3c:a3:3a:b2:aa:
c8:2a:56:dd:05:7b:52:e9:42:5e:92:f2:95:f4:a3:01:3a:9a:
07:5b:9a:c0:c0:c0:22:0f:43:9c:d5:1b:4e:df:51:3d:35:a8:
e5:ca:12:45:58:e2:4b:10:92:d9:38:2e:36:c0:3d:0a:6c:70:
0a:66:6a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:27 2026 by rpki-client