Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
File: AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft (raw, json)
Hash identifier: sO3RecpYwmWMUUZlseh2bZtSM9DGZii/4jls1/4cVD8=
Subject key identifier: F6:F0:10:CB:CE:E9:BE:D4:0A:ED:5D:70:DD:27:FF:3C:8A:C0:1C:55
Authority key identifier: 00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
Certificate issuer: /CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Certificate serial: 019E1D596915AB2C40511ED0BD7874D00678
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
Manifest number: 11C8
Signing time: Tue 12 May 2026 18:00:59 +0000
Manifest this update: Tue 12 May 2026 18:00:59 +0000
Manifest next update: Wed 13 May 2026 18:00:59 +0000
Files and hashes: 1: AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl (hash: BGtX3HJBcBgkxk3oN8YB/ruV24DRmGNMMxIpjiLVQaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:69:15:ab:2c:40:51:1e:d0:bd:78:74:d0:06:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Validity
Not Before: May 12 18:00:59 2026 GMT
Not After : May 13 18:00:59 2026 GMT
Subject: CN=f6f010cbcee9bed40aed5d70dd27ff3c8ac01c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:d3:3e:61:fd:c9:3e:49:90:83:16:96:7b:
13:dd:d7:01:6c:db:ed:18:d6:bc:45:84:d0:dd:bd:
cf:83:67:d0:b3:cb:35:5a:49:46:f1:cb:99:28:7c:
4f:13:2b:34:ec:d9:a7:43:91:42:28:fd:1f:70:f7:
d2:c6:a6:00:a3:b9:90:b1:46:e4:ef:53:96:9a:f3:
c5:c6:40:72:50:51:03:3f:c0:5c:f3:ca:b8:cf:e4:
42:14:79:fc:a5:e8:3b:f3:81:3a:1e:4c:34:86:00:
2d:9c:19:d1:93:ce:21:71:53:b2:cc:96:48:9d:2c:
8b:02:d0:64:00:a1:5a:55:1d:86:c9:4f:c5:3b:56:
b6:b4:bc:ac:f0:e5:7b:8a:b2:fc:72:f4:18:e4:27:
ac:20:23:97:fd:bd:04:4f:8c:29:2f:1f:2b:cf:d1:
40:8a:09:1e:82:12:55:b2:ab:f6:64:00:9d:74:51:
ff:9e:42:dd:39:36:a3:74:00:b2:25:48:71:c4:f0:
e1:e5:cb:ef:05:27:2f:60:39:f5:86:5f:aa:81:6c:
cc:1c:ab:81:3c:27:7c:eb:38:58:0f:d0:10:84:1c:
0a:fe:e7:bb:56:df:dd:11:2f:06:c9:38:e9:8f:23:
63:36:e8:40:b7:8d:f8:72:97:f2:94:a1:24:93:3c:
3f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F0:10:CB:CE:E9:BE:D4:0A:ED:5D:70:DD:27:FF:3C:8A:C0:1C:55
X509v3 Authority Key Identifier:
keyid:00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:87:d4:25:82:50:95:14:5b:5b:9d:5d:d8:2b:41:83:5c:48:
7f:13:13:b2:a2:b8:8a:09:dd:c2:e6:15:5d:c6:7b:83:5a:93:
13:c0:f3:dd:f5:ca:e8:32:8f:d1:e9:31:81:78:2e:55:b6:3f:
4d:fd:f3:bf:8e:72:4d:74:3c:0b:44:3b:7e:26:34:4f:e8:6e:
fb:84:d6:1b:ba:9a:ce:55:a1:55:8d:9c:96:2e:ca:cb:73:88:
0d:65:e8:12:5f:5d:b8:33:23:a7:0d:2a:22:75:e5:9e:05:07:
1b:3c:21:ce:0d:30:0b:42:e7:86:07:cc:5e:09:01:78:91:0a:
69:0f:e3:5c:f9:96:6f:80:dd:9b:ac:68:5b:49:df:5a:55:f8:
fd:5e:2c:6a:71:91:cf:89:ed:79:be:1e:94:73:c5:8f:50:36:
8f:16:ae:68:3d:fb:98:e9:02:71:5f:c2:16:ba:9d:fc:95:01:
66:e8:2d:4c:57:65:5c:f7:80:d5:ee:f5:0d:cb:b3:1d:61:b3:
17:75:89:5b:d1:c5:e3:f6:79:76:74:6e:8f:06:37:fb:00:74:
03:d7:0d:be:ad:a3:e5:12:ae:70:34:dd:cd:da:f9:b5:b6:df:
47:2f:a7:44:f3:69:47:16:fb:b5:c7:54:8a:33:04:8a:c8:b0:
88:a5:c7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:56:58 2026 by rpki-client