Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
File: AhaSppUBf7XEv4wjgHjzA9j78Ic.mft (raw, json)
Hash identifier: FCR/NDzR7QUGMdBR/qIRnt8R5Knl5i8oz63sMR9RQmY=
Subject key identifier: 11:25:0B:23:1D:2C:D0:28:F8:51:19:8F:22:50:24:DA:44:C1:50:6C
Authority key identifier: 02:16:92:A6:95:01:7F:B5:C4:BF:8C:23:80:78:F3:03:D8:FB:F0:87
Certificate issuer: /CN=021692a695017fb5c4bf8c238078f303d8fbf087
Certificate serial: 019CA97D72D93ADCC74F981AFA898367EC46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
Manifest number: 1841
Signing time: Sun 01 Mar 2026 13:01:36 +0000
Manifest this update: Sun 01 Mar 2026 13:01:36 +0000
Manifest next update: Mon 02 Mar 2026 13:01:36 +0000
Files and hashes: 1: AhaSppUBf7XEv4wjgHjzA9j78Ic.crl (hash: 46bmdBKIwW1jJDf2QkJlmUMyfUgjSFPHbTwCnm4CBU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:72:d9:3a:dc:c7:4f:98:1a:fa:89:83:67:ec:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=021692a695017fb5c4bf8c238078f303d8fbf087
Validity
Not Before: Mar 1 13:01:36 2026 GMT
Not After : Mar 2 13:01:36 2026 GMT
Subject: CN=11250b231d2cd028f851198f225024da44c1506c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:95:df:09:7c:69:9b:22:06:98:ce:fb:79:65:
ed:79:3d:63:e7:4d:38:61:a9:ab:62:7a:42:7b:f0:
56:87:df:ba:e3:27:d0:0e:fb:d4:9c:1b:be:70:b6:
79:bd:af:76:e5:f3:0a:06:03:a5:80:36:40:e2:a0:
2e:c1:69:40:22:40:84:11:c3:7f:4a:44:95:bf:17:
d0:b7:b0:37:65:a8:38:d0:a2:55:58:37:b7:88:89:
97:21:b9:19:aa:60:98:9f:d8:0c:d6:d4:c3:bc:d9:
ae:45:e6:4f:76:17:92:7b:57:c9:5c:3e:87:e4:4c:
4e:1a:55:5c:90:91:48:6e:3b:ab:3e:3f:2f:99:25:
e9:56:07:b9:7a:ba:30:0e:43:05:1e:3b:b0:99:07:
4a:4e:74:6e:4d:48:99:1a:44:3e:5e:cd:fc:ce:ba:
e8:e3:3b:04:9f:a0:71:e4:49:f2:09:2c:8e:08:4c:
1d:e5:80:e5:11:b2:6d:7e:1b:da:77:b1:d8:90:2c:
3f:17:ac:7e:81:f6:0c:bb:17:1d:66:65:b9:3f:80:
58:f5:3d:f2:1d:8b:e7:4a:d7:84:93:35:c9:d8:ec:
5d:2c:a2:46:29:d9:45:d7:64:15:f3:2e:3c:42:7d:
77:78:13:d1:4a:f1:1b:44:cd:02:fe:3e:33:16:df:
f9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:25:0B:23:1D:2C:D0:28:F8:51:19:8F:22:50:24:DA:44:C1:50:6C
X509v3 Authority Key Identifier:
keyid:02:16:92:A6:95:01:7F:B5:C4:BF:8C:23:80:78:F3:03:D8:FB:F0:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:e5:8d:b9:7e:b1:37:81:7b:20:17:78:fa:d4:9a:9f:ec:7d:
7e:cd:26:24:d2:3e:0f:b6:59:a0:69:96:33:41:04:a6:e7:89:
71:21:23:09:2d:bf:52:b0:eb:24:37:a1:31:0e:86:03:c3:e4:
c0:54:f2:e2:4a:5a:73:24:5a:5c:79:68:4a:e6:69:1e:68:63:
c9:4c:15:15:66:1b:cd:6a:a0:e0:7c:5b:b9:5d:07:cd:5f:b5:
64:a8:02:f6:99:bb:fc:41:06:d8:0c:65:1f:9a:c8:a1:9e:4f:
27:24:29:1f:a7:61:25:52:50:a7:f1:7c:aa:be:fe:10:a2:49:
94:dd:dd:2c:65:0e:db:3d:3f:84:9a:a5:2a:9a:5d:f0:87:a8:
c7:96:11:ed:6c:5c:73:82:f5:58:40:11:5c:5f:d9:7b:d8:04:
46:cb:6c:ee:01:e2:6c:91:be:d3:7c:47:ae:5c:65:5f:06:62:
5f:67:f1:86:60:31:7b:12:5d:e7:27:38:d1:84:c8:b2:18:f2:
68:37:9d:97:6f:58:e7:4b:df:a9:a3:58:28:44:dd:70:92:b9:
00:cb:20:df:96:05:2e:57:7e:20:26:f5:4a:37:24:5c:e3:cb:
13:2a:e6:73:c0:0e:b6:b9:d6:a9:fe:be:99:2d:d1:b6:a8:8b:
bb:5a:d9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:12 2026 by rpki-client