Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: HbfrZgUeWl6LXOLoxLXGdZI6Fo6GXLFd3oSBC/7xrG0=
Subject key identifier: 02:4A:9B:4D:BF:FF:B7:20:32:0E:EC:39:47:81:52:C4:30:7A:1C:47
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 019CABD9C2D8C59357405059E9D36ACD2E2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 09B7
Signing time: Mon 02 Mar 2026 00:01:40 +0000
Manifest this update: Mon 02 Mar 2026 00:01:40 +0000
Manifest next update: Tue 03 Mar 2026 00:01:40 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: 2V6nw73e1uUmsjIO21Da8vsa4Q5S8tBXSUw/UTfzrzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:c2:d8:c5:93:57:40:50:59:e9:d3:6a:cd:2e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Mar 2 00:01:40 2026 GMT
Not After : Mar 3 00:01:40 2026 GMT
Subject: CN=024a9b4dbfffb720320eec39478152c4307a1c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:77:51:5f:38:72:cc:8b:93:3f:94:ec:42:
39:16:96:0e:60:24:18:7e:af:d9:91:b2:13:2a:04:
0b:62:3c:8c:35:82:8d:47:d4:70:e1:64:e5:9a:0a:
eb:c0:d8:6f:80:d9:97:ae:59:20:bd:6a:0d:63:f8:
ea:04:50:84:56:1e:e0:0f:66:42:83:09:b3:d3:b2:
97:51:33:e6:d4:81:fd:97:82:8e:97:d1:e8:9b:9b:
00:75:76:f0:21:93:d9:4c:7f:b0:50:fb:08:da:cc:
2d:68:23:81:43:36:45:df:aa:b7:fc:bc:d5:93:5c:
1e:92:e1:66:7d:46:ac:70:88:1f:29:d4:50:b6:b0:
72:7a:a0:b0:e5:87:e6:71:5e:a8:43:ad:e7:96:86:
ef:0a:7c:c0:9b:0c:55:66:be:37:1c:d0:dd:0a:1c:
a0:f0:e2:f3:5c:fc:28:89:51:61:ad:01:41:ec:cb:
71:4a:cc:4a:05:4d:2f:90:55:61:8c:ab:cc:28:3a:
fb:80:4b:10:a0:c9:d5:d6:b8:a2:14:db:9e:88:74:
fd:42:06:38:4a:4d:29:41:d2:05:99:67:62:50:35:
06:62:f8:2d:86:55:63:0f:60:bd:1a:e6:d8:c8:40:
73:9f:1d:9d:96:05:95:0a:30:30:77:ac:da:49:7a:
10:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4A:9B:4D:BF:FF:B7:20:32:0E:EC:39:47:81:52:C4:30:7A:1C:47
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:52:71:b3:e5:f4:82:7f:37:29:e6:78:58:58:f9:74:1e:22:
23:a9:46:50:4f:af:a3:7c:fa:de:61:1d:c0:84:43:dd:58:5a:
2d:44:6f:fe:66:da:74:9d:a4:4c:4b:c0:43:31:81:12:89:85:
53:6d:8a:d9:8d:22:cf:01:d3:80:a8:2d:d2:1f:3b:29:b3:f2:
3d:d4:c6:1c:ae:51:9e:3d:6c:1c:f1:89:66:0a:ad:8e:86:7f:
58:3e:32:71:81:25:1a:91:6e:b3:65:e0:42:db:3f:dd:74:f1:
8b:d4:74:3a:05:d1:7a:cc:09:e6:9e:36:e1:47:6b:82:8a:ce:
43:00:d0:96:2a:9e:57:58:4f:25:ab:ac:09:fd:fd:ee:92:c9:
9f:5b:62:52:52:44:4f:da:76:83:0e:a0:f3:c2:d6:30:64:9f:
c1:fe:85:e2:56:05:ca:54:ec:1b:83:d8:e3:e6:cd:80:f8:b9:
4d:3c:e0:0c:3e:d3:aa:80:76:ca:26:68:20:4b:9c:26:e8:d3:
01:ed:d4:b4:fe:7e:81:48:34:d8:d9:f2:93:eb:e1:fa:a5:ea:
0f:2e:ce:41:cc:1a:8a:76:0d:6f:6e:4f:24:87:87:c7:b8:11:
ac:d9:f0:f3:0a:d8:f6:41:b9:89:a6:77:7d:ce:15:c5:c4:d3:
34:8a:22:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:06:41 2026 by rpki-client