Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: 2RUnDCH7cwYSt2KFtw2Ab1PYnJYiobg1FOjBxBvTFaQ=
Subject key identifier: 84:26:B1:AD:A9:B2:13:15:02:BA:69:D8:B3:EB:86:7D:75:F6:E7:7C
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 019D28849BC2C35B5F774E3470DFE829884F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 084A
Signing time: Thu 26 Mar 2026 05:01:12 +0000
Manifest this update: Thu 26 Mar 2026 05:01:12 +0000
Manifest next update: Fri 27 Mar 2026 05:01:12 +0000
Files and hashes: 1: Jk9ilYHmL8kSaIq3l2BZVPIGTwk.roa (hash: gQhROHe9syjBhq1z8TMAwj4HKTkzYppUUMDy4zn8kMo=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: eqSrPN4IkFwClKyikO5TCnfcXIrUHZnD45002XW9P7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:9b:c2:c3:5b:5f:77:4e:34:70:df:e8:29:88:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Mar 26 05:01:12 2026 GMT
Not After : Mar 27 05:01:12 2026 GMT
Subject: CN=8426b1ada9b2131502ba69d8b3eb867d75f6e77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:ed:05:24:4b:3c:8a:65:fa:68:3c:40:6d:
18:98:0a:3d:c3:01:64:64:29:23:cc:58:b5:72:ad:
e0:dc:a0:63:57:e2:fa:c3:49:e8:7c:fc:b6:d0:c2:
9e:67:6f:00:d2:09:00:9f:41:4a:be:9e:0e:02:0f:
71:87:2f:c8:c0:ca:15:12:8d:3b:ff:80:1f:68:5c:
4e:b5:b0:eb:f3:ca:f7:95:ea:13:26:68:2f:d9:c9:
61:d5:4a:24:9e:c4:64:08:12:bb:59:99:7b:65:0f:
82:67:2d:7d:94:9e:a1:85:26:18:18:0a:53:a4:d4:
11:b0:e9:83:4c:a9:88:d7:9e:89:3a:e2:30:2c:0c:
6e:59:08:bc:95:22:7c:89:dd:d6:79:93:40:7b:db:
d9:16:32:8f:79:cb:84:8b:6f:58:c0:5e:b9:85:37:
c9:e8:91:0d:2f:49:fe:4d:04:94:0a:c1:07:9b:9d:
87:ce:3e:ab:41:40:df:cb:27:dd:be:11:98:3c:50:
84:31:26:25:0b:65:e9:64:20:8b:0f:2c:fd:c5:7c:
c6:b4:ae:11:08:90:06:03:52:ee:36:a5:f0:95:f9:
59:a0:3b:5b:8b:16:a5:0b:26:cd:92:b9:3e:02:52:
33:30:16:10:84:23:1e:77:c2:40:da:ac:17:07:c7:
94:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:26:B1:AD:A9:B2:13:15:02:BA:69:D8:B3:EB:86:7D:75:F6:E7:7C
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:c4:3f:1b:67:db:0a:a0:02:65:45:fe:99:48:a1:2f:49:f2:
61:49:cb:5c:6c:dd:b3:49:1e:20:c9:f4:03:24:62:b5:7d:12:
ea:08:13:c1:ee:70:e3:7b:9d:07:d8:0b:46:6a:ae:a7:02:99:
0e:be:fd:ca:c6:43:11:be:ef:09:83:23:14:85:26:26:d0:4a:
eb:eb:5b:94:cf:a5:18:dd:3f:32:96:9a:21:d7:30:28:77:3e:
8c:3b:d1:ee:36:c1:29:b6:41:e9:5b:5a:10:25:59:68:cb:74:
91:0e:91:b4:c4:d6:d7:7e:c9:64:1c:59:c3:71:e0:5d:6e:97:
dd:01:49:cd:1a:c9:64:a5:3e:26:23:12:84:fe:a7:3d:95:00:
2b:d4:13:0d:f1:ce:16:39:48:44:85:2b:c7:31:2a:b6:f4:28:
4a:fe:dd:4b:03:9e:a0:c4:0e:4e:5f:30:87:40:8f:e7:c4:64:
98:92:a6:4f:56:ff:59:45:2f:12:d9:2b:31:ab:9c:ca:d8:b5:
db:61:ea:29:d0:2d:1b:89:7c:7c:4a:12:1a:95:9e:25:a2:08:
b6:65:36:fc:5c:9e:08:d7:ef:49:a6:0a:05:96:bb:2b:48:04:
50:c2:f0:bc:b0:03:6d:4e:7c:4c:e4:e4:db:51:25:62:3b:c2:
c8:a1:ae:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:01 2026 by rpki-client