Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
File: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft (raw, json)
Hash identifier: rgK4Chp3Hea4/l5ji6WiuyN3icjhyOLJtooV0wmlmF8=
Subject key identifier: A8:7D:DE:2D:6F:0E:74:7F:6E:0E:AE:9A:74:1F:87:E9:0B:27:9C:A7
Authority key identifier: 02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
Certificate issuer: /CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Certificate serial: 019CABD935854122C942D8328498D78E708F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
Manifest number: 14B2
Signing time: Mon 02 Mar 2026 00:01:04 +0000
Manifest this update: Mon 02 Mar 2026 00:01:04 +0000
Manifest next update: Tue 03 Mar 2026 00:01:04 +0000
Files and hashes: 1: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl (hash: JkLb3efc99pZ3TvS2UKxk/iOYKvb6LKYNc9VunXC3MM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:35:85:41:22:c9:42:d8:32:84:98:d7:8e:70:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Validity
Not Before: Mar 2 00:01:04 2026 GMT
Not After : Mar 3 00:01:04 2026 GMT
Subject: CN=a87dde2d6f0e747f6e0eae9a741f87e90b279ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:22:8e:8a:06:f6:7e:e7:23:2c:a3:cc:f7:19:
89:ab:f2:b5:2e:2a:0e:23:1c:50:11:a7:24:68:85:
bf:7d:6d:33:95:64:f0:af:dd:cc:12:ef:3a:76:ae:
7e:97:64:1b:3f:8a:6a:7c:26:54:70:fb:ce:87:09:
38:9e:7b:f3:07:84:ac:22:e0:ea:a2:a8:5d:96:a7:
35:cb:2e:87:1f:ae:21:dd:7a:2c:61:76:27:2a:19:
54:51:1c:19:95:b7:88:0d:d9:9f:ad:10:57:df:6a:
71:4d:00:4d:22:00:34:69:0c:96:ad:5a:00:ae:32:
58:86:25:1c:06:ef:ec:c9:f0:be:73:fe:d2:64:f0:
d9:85:78:e0:a8:1e:fe:cb:b9:ed:f2:fd:4c:17:99:
24:13:b2:6e:d7:8f:29:8c:2a:67:3c:08:40:e9:d4:
05:0a:6d:8a:2c:2b:25:6e:a8:b7:94:87:33:d2:63:
68:26:b8:14:83:6c:6c:52:bd:07:34:6b:a7:33:e6:
4c:d7:36:60:df:fe:5a:6b:1d:af:b3:67:19:82:c6:
99:7d:0c:89:aa:09:22:4d:47:9a:f4:8f:7f:9d:c2:
73:86:c4:73:b3:6a:e8:5e:cf:35:ca:e2:63:82:2f:
d1:09:b6:5b:69:cf:e6:f3:47:45:e3:c3:d4:7d:28:
9b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:7D:DE:2D:6F:0E:74:7F:6E:0E:AE:9A:74:1F:87:E9:0B:27:9C:A7
X509v3 Authority Key Identifier:
keyid:02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:37:af:98:a0:ab:28:ca:e5:4f:d1:b7:5c:57:30:bb:b6:fd:
e6:17:99:b8:76:4e:50:c6:93:30:12:e9:fd:dc:29:09:41:83:
e8:9d:d9:aa:16:ee:6c:b6:fb:a3:b0:01:40:2a:9e:e9:73:f8:
60:20:04:f1:2e:c4:e0:1e:e8:0b:e0:dd:da:e0:74:63:8f:ac:
fc:c8:52:f0:cd:f1:8e:16:c4:63:46:30:98:da:f0:c5:75:88:
66:9a:e3:e0:f2:83:21:b9:1a:7f:36:70:17:38:4e:19:e7:f0:
f4:44:f1:b2:da:15:42:ab:b6:bb:42:db:7d:27:36:96:eb:7e:
9f:d9:52:78:60:d3:3e:17:d0:ef:a8:3b:fa:c3:4d:81:99:b0:
43:7d:69:82:f6:e9:9f:7c:09:f0:63:7b:f4:09:63:65:e9:5d:
b8:7d:fb:54:9a:ec:9c:57:2c:8d:7d:c4:7c:a9:32:7a:a8:58:
4a:c4:75:23:54:33:b8:f1:d8:42:fc:33:e9:6a:17:65:da:aa:
ea:bd:81:32:66:92:a0:ba:d3:87:1d:9a:5a:43:7e:a0:f9:3f:
83:1b:6f:76:c8:15:5f:e1:3f:07:ff:ad:79:98:ea:ba:84:b4:
9b:63:c0:6c:85:9f:44:67:7b:2e:1e:35:22:13:eb:d8:a4:77:
36:bf:6c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:44:17 2026 by rpki-client