Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/62d5a8-6669-403f-b00f-7aca98638958/1/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.mft
File: Aj0FQiEIUMvGY5Y4z3__vPuvHlc.mft (raw, json)
Hash identifier: ojpy8J02lYG24GOFwyplAnDioWpCVXxQ7fA2mj7H/yw=
Subject key identifier: BA:C8:B1:90:37:A0:26:16:92:A9:89:72:2E:A7:C8:4B:4B:F3:03:CD
Authority key identifier: 02:3D:05:42:21:08:50:CB:C6:63:96:38:CF:7F:FF:BC:FB:AF:1E:57
Certificate issuer: /CN=023d0542210850cbc6639638cf7fffbcfbaf1e57
Certificate serial: 019E202353EFFE7B1C1EE5D75A9BB73F91B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/62d5a8-6669-403f-b00f-7aca98638958/1/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.mft
Manifest number: FA
Signing time: Wed 13 May 2026 07:00:46 +0000
Manifest this update: Wed 13 May 2026 07:00:46 +0000
Manifest next update: Thu 14 May 2026 07:00:46 +0000
Files and hashes: 1: Aj0FQiEIUMvGY5Y4z3__vPuvHlc.crl (hash: fdlABRg/Lf1NaYK9kMx/6uFbxBWSqg8tHkWCWSNLUVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/62d5a8-6669-403f-b00f-7aca98638958/1/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/62d5a8-6669-403f-b00f-7aca98638958/1/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:53:ef:fe:7b:1c:1e:e5:d7:5a:9b:b7:3f:91:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023d0542210850cbc6639638cf7fffbcfbaf1e57
Validity
Not Before: May 13 07:00:46 2026 GMT
Not After : May 14 07:00:46 2026 GMT
Subject: CN=bac8b19037a0261692a989722ea7c84b4bf303cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:37:7f:e2:da:42:19:dc:d9:4f:10:0b:33:
dd:e9:57:18:fd:7a:56:fe:d2:d9:1c:b6:7e:9d:d2:
80:24:8f:a5:b4:34:b9:a7:d9:7b:2c:70:e0:91:4e:
43:8d:10:5e:4a:0c:2c:30:00:2b:0a:e2:85:38:a7:
1f:db:f1:c8:89:ea:be:d0:9a:e8:c8:88:a4:fb:06:
0f:75:64:a2:0a:18:3c:d7:0d:18:57:80:7f:75:7c:
10:e6:25:22:a3:f9:82:f4:85:7a:1f:c1:a6:3b:a6:
36:7d:27:75:6d:a9:69:c8:fa:0b:75:64:e1:db:cc:
eb:b4:ff:48:4d:a3:86:b3:aa:66:2d:c7:45:c9:f4:
a2:4f:48:e0:eb:51:c1:57:09:ca:94:2c:45:c8:b4:
c1:9f:84:47:6e:48:57:cf:6f:68:44:fc:58:e4:c1:
d0:57:77:8d:a2:d3:b6:d6:4f:9b:e3:9a:ec:ca:d6:
40:87:4c:5b:f5:68:eb:6c:4e:be:d7:9a:8b:a1:c4:
bc:6f:12:39:af:70:fa:3a:af:97:04:38:ef:7e:c0:
0b:ee:ba:bf:35:d3:86:96:e6:20:ed:19:1a:3e:49:
57:41:c5:a2:5a:90:dc:74:0a:eb:37:b8:97:3a:8a:
a4:60:ce:df:0e:73:f2:cf:74:f7:21:aa:3c:c4:7b:
46:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C8:B1:90:37:A0:26:16:92:A9:89:72:2E:A7:C8:4B:4B:F3:03:CD
X509v3 Authority Key Identifier:
keyid:02:3D:05:42:21:08:50:CB:C6:63:96:38:CF:7F:FF:BC:FB:AF:1E:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/62d5a8-6669-403f-b00f-7aca98638958/1/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/62d5a8-6669-403f-b00f-7aca98638958/1/Aj0FQiEIUMvGY5Y4z3__vPuvHlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:e4:d5:e9:28:9b:af:63:4c:dc:1d:70:4d:52:43:f2:3d:d1:
ef:21:e7:43:6e:9b:27:90:e3:a6:b0:ae:04:91:7e:a2:6d:c6:
2e:27:0d:da:19:a0:4e:85:d8:29:6f:b8:0e:ff:d6:bd:33:40:
dc:1a:b3:fb:34:80:b4:76:48:38:f3:8d:44:89:b0:48:57:36:
b2:aa:53:a1:3b:53:2b:74:6b:38:71:3d:2f:b6:ab:f7:c9:8a:
68:1f:de:6c:61:00:d3:b5:b9:b4:75:68:fd:5c:ee:88:72:71:
b1:95:87:9d:86:8e:62:7c:c7:f3:92:a2:fe:d0:04:c7:60:3e:
ad:32:f6:0c:b8:61:ea:69:e4:4c:ae:9b:27:9f:f6:ec:31:cf:
56:d4:33:70:7e:08:cc:6d:b0:8b:16:e9:fc:2b:76:25:23:10:
7a:56:f3:b7:37:c2:33:f7:21:0f:47:08:45:a6:c3:b2:36:2a:
cc:08:6a:f8:f0:18:ef:70:21:d8:39:0a:0e:58:e4:bd:ba:93:
82:8b:06:96:56:9f:d1:6a:ce:ca:24:51:20:bd:a5:42:23:64:
63:62:fd:1e:33:a1:cd:a9:2c:5d:82:ef:89:48:92:1a:bc:5e:
46:75:15:44:b6:55:e5:21:ae:67:70:43:41:df:3a:ec:ee:78:
a9:d0:87:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:58:01 2026 by rpki-client