Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
File: AonuzqJ5QTJX2JCMJVaKvrivhnc.mft (raw, json)
Hash identifier: sUMTc/xU8d3YarQb54j2keOaVEcpIgGwuZQpoq12Qjc=
Subject key identifier: C6:E6:28:78:6C:B2:7C:D9:67:79:9C:7D:C6:87:4D:F3:02:AA:C9:C0
Authority key identifier: 02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
Certificate issuer: /CN=0289eecea279413257d8908c25568abeb8af8677
Certificate serial: 019CAFB61392855EB1927BAB8852FCBD549F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
Manifest number: 0DBF
Signing time: Mon 02 Mar 2026 18:01:11 +0000
Manifest this update: Mon 02 Mar 2026 18:01:11 +0000
Manifest next update: Tue 03 Mar 2026 18:01:11 +0000
Files and hashes: 1: AonuzqJ5QTJX2JCMJVaKvrivhnc.crl (hash: AMIWKEWRRLg8XbMTqBX6AYAlr2s25HERo4Jfvk0W+Ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b6:13:92:85:5e:b1:92:7b:ab:88:52:fc:bd:54:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0289eecea279413257d8908c25568abeb8af8677
Validity
Not Before: Mar 2 18:01:11 2026 GMT
Not After : Mar 3 18:01:11 2026 GMT
Subject: CN=c6e628786cb27cd967799c7dc6874df302aac9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:04:ad:4a:a3:b1:d9:bf:56:3e:ca:65:17:
e2:18:cd:24:7b:cb:b4:ef:90:db:a0:54:5f:43:5e:
57:c6:6f:40:45:13:46:4f:a7:58:f6:ba:e2:0a:f3:
d8:ab:c4:44:9e:39:4f:65:3d:92:be:89:b5:9c:1f:
d2:9a:bd:95:f4:dd:a7:72:0b:f5:1c:c4:e7:15:12:
d7:dd:10:1f:90:17:72:6f:36:e8:7a:eb:5d:1d:f2:
49:dd:b4:b7:38:64:88:4a:df:e2:b3:17:87:02:79:
17:7a:ca:11:ad:76:20:92:6a:9f:83:68:34:8e:82:
0d:1a:59:6a:12:6e:cd:0e:fc:83:28:ce:df:d4:9f:
c1:b2:b3:55:49:4e:a8:b2:02:36:20:23:94:6a:b4:
72:5c:1a:4f:2d:06:e4:e3:fd:9f:b1:83:31:e8:20:
ad:19:ef:c5:90:b1:53:6e:8e:60:bc:6f:1d:ae:c3:
21:87:51:2f:60:62:88:02:05:dd:2f:12:1e:e5:68:
f7:0a:d8:4a:ea:e6:0e:eb:46:2c:67:84:fd:f5:3c:
39:15:3c:8a:e1:78:84:e6:e3:c5:07:fc:98:ed:c7:
04:20:9b:90:6c:b9:87:81:79:79:40:8f:ed:dc:8f:
81:ae:0d:f8:f8:32:6d:6a:9b:fe:ba:c4:01:65:36:
f7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E6:28:78:6C:B2:7C:D9:67:79:9C:7D:C6:87:4D:F3:02:AA:C9:C0
X509v3 Authority Key Identifier:
keyid:02:89:EE:CE:A2:79:41:32:57:D8:90:8C:25:56:8A:BE:B8:AF:86:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AonuzqJ5QTJX2JCMJVaKvrivhnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/22b88b-1fbf-40f4-ada5-270929d05192/1/AonuzqJ5QTJX2JCMJVaKvrivhnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:f3:06:ef:3a:12:6b:b8:b0:17:2e:e5:5e:da:38:6a:98:d9:
6d:0e:48:c0:2f:8b:ee:a5:b8:38:06:f9:95:7e:79:37:82:94:
fa:64:ac:7c:57:ab:f9:06:e2:23:db:32:12:54:42:b5:1a:2d:
2e:d6:c4:bc:66:d9:09:ba:36:de:f1:63:88:59:0e:1f:3e:19:
48:36:1b:9a:84:48:39:24:f4:35:3e:94:30:92:b0:08:3f:99:
d4:4d:56:a2:02:81:07:44:05:0d:ef:18:28:9c:38:5c:70:8a:
62:eb:1a:55:52:e1:79:b5:96:10:18:38:f5:6e:87:73:37:60:
99:14:31:9a:9a:a4:05:77:10:6f:dc:5b:7d:47:0f:7f:4c:77:
c2:96:e1:d0:81:df:3d:62:d9:99:ad:8d:ce:57:11:3c:87:f1:
c5:fa:77:37:1f:17:7c:4b:9a:55:b0:b7:4b:cc:d1:08:0a:2b:
58:5d:09:33:10:5c:f0:6d:5b:da:94:12:54:68:1b:8f:17:bb:
3f:18:00:56:f1:d6:a5:9a:05:b2:1b:ad:b3:7f:6f:7d:d1:a4:
3d:dd:5c:aa:fd:97:ae:19:57:f9:74:17:c9:67:5a:5b:e3:f4:
31:76:fd:9b:58:5a:55:2e:4a:9d:b6:bf:64:82:2d:82:de:ee:
7a:ae:4b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:13:37 2026 by rpki-client