Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: MD7R3Z94M4MVJRP4HKX11jS5l+LRr4pDHk5OqUm3c78=
Subject key identifier: F9:A6:D1:21:29:6E:A3:6C:3C:79:30:CD:CA:5E:43:33:6F:31:B5:CC
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 019CABD9CA2211489DDF686B0E2E405236C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0D38
Signing time: Mon 02 Mar 2026 00:01:42 +0000
Manifest this update: Mon 02 Mar 2026 00:01:42 +0000
Manifest next update: Tue 03 Mar 2026 00:01:42 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: wnoJqXHb9y0A/eRRxqOhAij0JGJLoZG+jbiPg4Qtas0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:ca:22:11:48:9d:df:68:6b:0e:2e:40:52:36:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Mar 2 00:01:42 2026 GMT
Not After : Mar 3 00:01:42 2026 GMT
Subject: CN=f9a6d121296ea36c3c7930cdca5e43336f31b5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:97:6c:b9:59:5e:e4:a8:b0:68:21:59:45:9e:
ff:7a:c9:b9:97:d0:79:b0:4b:74:69:6b:4d:5f:c0:
a6:8d:6a:6a:ad:30:25:5d:58:f4:7c:08:21:ac:18:
b4:6d:e1:c7:ff:e3:06:63:e1:8e:cb:3d:d0:01:19:
d3:b2:b3:8c:a5:b4:e2:85:27:92:26:54:05:47:69:
67:c3:64:6b:09:d9:cc:d8:30:f8:b0:d9:1d:53:b1:
15:99:8a:03:24:e3:bd:de:e6:26:5a:5b:cc:c8:7c:
b6:26:e1:8e:a5:95:e4:3f:38:71:17:02:5f:09:56:
89:f3:f9:13:8e:07:b9:23:2d:d3:8d:63:fc:7e:26:
8f:b9:36:9e:e0:fb:00:98:d5:53:2e:c6:d6:2a:02:
4c:6e:35:95:3c:c7:a6:f7:da:c2:a0:17:40:d4:08:
48:71:66:91:f7:aa:f5:f7:10:06:73:8d:6c:0e:0d:
c7:e6:a2:89:03:fd:57:bf:fa:3c:77:58:68:53:be:
7d:0e:df:4f:ac:77:49:cc:4d:a5:f0:7c:6c:21:ac:
67:6f:66:7b:b5:38:07:9b:15:d8:76:56:39:74:cd:
a4:20:ed:42:02:7b:f2:37:ab:b9:cb:88:1b:68:72:
97:ac:44:ef:01:aa:65:9b:2e:df:7e:52:ae:4b:16:
55:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A6:D1:21:29:6E:A3:6C:3C:79:30:CD:CA:5E:43:33:6F:31:B5:CC
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c8:75:4f:87:93:a9:5e:2b:a3:34:d0:a8:0c:36:4b:67:36:
1d:e1:8a:98:66:61:d3:aa:ea:a7:04:67:4f:9c:e8:e9:a7:eb:
04:ab:2c:c5:10:ef:8d:81:eb:c7:ca:96:72:c0:79:40:b2:b0:
a5:35:51:05:b8:16:f7:95:e1:75:05:15:7a:65:63:55:d0:d2:
ac:16:fb:4c:25:52:7c:8f:c6:7b:5b:9d:ca:d9:f9:61:cf:03:
f2:eb:11:1f:c8:a9:b4:1c:95:4b:21:79:26:92:e9:4b:ab:58:
41:69:f2:ef:bd:9c:a8:d6:6e:14:e5:4d:b6:51:82:52:b5:82:
6e:5a:2d:71:e5:30:02:71:6e:74:cd:18:74:55:df:e4:ca:ec:
32:11:b6:b7:8b:3a:c0:b7:e0:91:3b:76:ee:88:e4:a7:52:ca:
42:53:41:7f:46:19:fd:6f:42:00:ae:cc:23:a2:69:43:5a:00:
70:e1:06:a2:d2:48:05:da:71:46:84:72:68:7f:87:d4:07:ba:
cd:54:0b:17:74:80:35:06:d5:e4:23:33:8a:bd:ca:0c:41:6a:
ef:af:f2:41:87:c1:0f:77:c7:27:59:da:cb:c6:53:b6:97:45:
25:e1:55:6c:06:89:04:bc:15:ab:1d:14:94:cb:ec:ca:8a:8d:
a5:42:0c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:46:17 2026 by rpki-client