Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
File: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft (raw, json)
Hash identifier: OEp9VBxsrEI0oFw4KeI7z6VDrAQAp3zQAprtzKNWcPk=
Subject key identifier: 4F:84:04:3B:23:A8:45:D5:E0:20:63:CA:75:F1:1A:B4:96:AB:5B:58
Authority key identifier: 02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
Certificate issuer: /CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Certificate serial: 019DA4F8A0816FC5649D15BA11D43C4270CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
Manifest number: 1533
Signing time: Sun 19 Apr 2026 09:00:50 +0000
Manifest this update: Sun 19 Apr 2026 09:00:50 +0000
Manifest next update: Mon 20 Apr 2026 09:00:50 +0000
Files and hashes: 1: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl (hash: pL/S25LZUDdvSyeGKQVSKnhT9LPCg3I3k3ue/BjLcoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:a0:81:6f:c5:64:9d:15:ba:11:d4:3c:42:70:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Validity
Not Before: Apr 19 09:00:50 2026 GMT
Not After : Apr 20 09:00:50 2026 GMT
Subject: CN=4f84043b23a845d5e02063ca75f11ab496ab5b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:c8:a1:39:b9:5f:84:ae:c8:0e:26:bd:91:f5:
de:b1:15:c9:6c:ee:6a:f2:4f:39:97:c2:32:98:f3:
33:e2:fa:47:73:ea:45:c1:36:bb:eb:9f:71:99:51:
30:41:60:5e:10:0f:6e:ce:2a:9a:a4:2b:4c:e9:cc:
1c:b2:9f:f7:ce:e6:a1:54:b9:80:d4:36:18:d4:cf:
53:58:f2:50:5e:0c:7b:39:81:d1:1a:b6:d4:df:45:
a2:98:a8:d4:e4:a6:b5:5a:49:50:db:9d:83:e5:83:
78:78:be:7a:f3:3e:9e:8d:a2:84:e2:67:cf:c2:7a:
e2:b6:ce:b0:f9:1f:0f:6d:e8:a7:a7:07:65:83:bb:
6e:32:89:2a:dd:ec:a7:7d:ec:93:b4:04:13:7a:35:
7e:16:17:28:2f:fd:8e:c9:ee:51:ca:a9:9b:da:d6:
7c:01:0d:0f:1c:11:c6:80:f6:69:bb:f5:59:46:51:
12:02:84:25:4a:53:2e:5c:ca:0a:a4:52:a0:a0:ca:
47:67:77:73:52:3c:cc:43:6e:b2:b3:62:34:21:64:
ac:db:0d:fc:53:0a:6e:a6:48:d9:56:b9:ca:44:d3:
d5:80:19:37:8f:ca:3d:75:9b:d4:91:6f:05:b5:f7:
d5:8e:4f:0c:8c:f6:a4:a9:07:44:3e:0e:de:72:38:
4b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:84:04:3B:23:A8:45:D5:E0:20:63:CA:75:F1:1A:B4:96:AB:5B:58
X509v3 Authority Key Identifier:
keyid:02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:a2:25:37:36:9c:58:04:06:48:d6:9b:29:51:bf:09:41:54:
ce:cf:db:3d:cd:28:93:20:bd:37:df:a5:f8:d5:66:ae:af:64:
78:17:2a:53:2a:04:c2:4e:15:c4:08:56:bf:37:69:50:89:d1:
e9:3b:38:2f:43:91:d4:c1:3a:5e:f8:5a:80:4a:0d:75:ad:8e:
ca:d1:5c:4b:81:18:fd:6b:14:7d:6e:45:db:b5:5c:e1:74:bd:
04:bd:57:e9:1d:57:89:58:fb:38:31:87:53:35:88:5d:2c:b4:
4f:0e:fb:88:21:a2:3c:40:b2:33:81:b2:f4:19:10:48:b4:b8:
73:56:d2:c9:17:98:e8:47:59:42:b2:c2:50:d3:19:be:e5:b2:
d8:49:0f:9b:de:39:57:aa:0b:de:b2:db:ad:70:a6:7d:ed:4b:
c2:fd:e4:bd:d9:f2:23:f5:65:92:55:dc:f5:b6:a9:28:79:4d:
89:51:b6:bb:21:1c:e8:a3:b9:42:c3:25:10:a9:ad:c6:00:1e:
79:4f:4d:0c:25:89:ff:45:e2:4f:46:ac:68:fd:37:6f:d8:5a:
fe:57:f9:38:79:8b:66:bf:48:e3:0d:d3:65:72:21:e9:0d:ae:
ae:0b:e3:05:63:b9:4a:bd:22:8f:fe:50:3c:d9:dc:fc:21:96:
a5:a6:eb:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:32:15 2026 by rpki-client