Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
File: aaUdRFt2erm2YncC5KKzkE0gP3c.mft (raw, json)
Hash identifier: X7pI5X/Yet9+RNLKvkm0R4T/lAeH/3Dw+uO7/zCWKlg=
Subject key identifier: FC:25:B3:00:24:79:D0:1D:B8:62:6A:AE:1A:99:75:31:91:3E:ED:AD
Authority key identifier: 69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
Certificate issuer: /CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Certificate serial: 019CACB552821EF81039E01EE197010D1808
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
Manifest number: 17D9
Signing time: Mon 02 Mar 2026 04:01:29 +0000
Manifest this update: Mon 02 Mar 2026 04:01:29 +0000
Manifest next update: Tue 03 Mar 2026 04:01:29 +0000
Files and hashes: 1: aaUdRFt2erm2YncC5KKzkE0gP3c.crl (hash: mEMJOhEXpK1XAg21BOBnLM6epnDMg3gMFJZM70s8Nlg=)
2: hEk7NXMz_9tjphRF_f-2BiYVxl4.roa (hash: YzdcSrHbAL6AdxaXBrwECMdGtQJ8+zIyV5HDkXK31kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:52:82:1e:f8:10:39:e0:1e:e1:97:01:0d:18:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Validity
Not Before: Mar 2 04:01:29 2026 GMT
Not After : Mar 3 04:01:29 2026 GMT
Subject: CN=fc25b3002479d01db8626aae1a997531913eedad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2f:6f:7f:73:83:fa:dd:cf:1d:5e:f2:4b:34:
82:31:7e:58:62:66:c7:a1:82:18:cf:56:0c:c0:ed:
7f:da:7a:f9:8f:4c:7c:f2:00:76:91:54:e6:44:3a:
cf:96:f9:bf:94:e9:13:91:53:6b:1a:17:9b:f6:ff:
26:c5:55:5b:1c:53:5d:cb:1d:6f:69:4b:57:71:af:
76:ef:26:f6:b2:4e:76:15:28:69:9e:47:4d:0a:65:
28:57:9d:9b:1a:b0:88:7f:2e:5c:34:30:5a:0a:5e:
f0:65:ee:24:62:e7:c9:67:e7:62:66:dd:15:bf:9d:
fe:95:9b:22:6a:19:ed:94:81:c6:c7:ac:86:24:be:
08:aa:7d:98:e2:4b:bf:08:de:9d:f7:8c:e5:27:a2:
37:92:d4:20:7a:de:8a:99:cb:3f:e9:de:23:57:be:
4d:29:d0:9a:24:58:18:e6:4b:e9:b6:76:72:62:09:
94:6b:69:29:1c:e7:2c:1f:12:80:7e:3c:8a:94:46:
80:df:86:76:a4:a9:73:19:4e:20:38:ca:41:73:d5:
ce:23:b2:8c:86:85:bf:11:9d:9e:79:48:ed:00:51:
d8:1f:04:4b:74:92:86:d1:5d:ec:bf:ca:46:f1:c5:
42:4e:51:32:05:ef:3f:ef:44:db:71:d6:47:4f:06:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:25:B3:00:24:79:D0:1D:B8:62:6A:AE:1A:99:75:31:91:3E:ED:AD
X509v3 Authority Key Identifier:
keyid:69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:25:94:d8:6b:b6:b6:70:06:f5:e1:22:cf:ae:41:aa:19:43:
e6:6b:4e:e4:f0:27:db:41:ad:be:ec:93:dd:d9:55:d3:e9:52:
b3:5e:2e:21:c7:56:3d:1c:5e:29:53:cf:8d:02:3a:b2:52:f5:
ef:72:19:37:ae:9b:b1:6b:ed:9a:fc:2a:eb:20:11:7d:39:d4:
92:c2:ba:2f:c3:12:e4:e2:75:be:20:f7:ca:6e:fa:dd:16:e6:
da:8b:51:b9:34:2a:e8:d6:dd:60:50:a5:10:61:18:7a:ca:63:
5c:26:37:99:0e:af:83:78:e1:29:a2:6c:21:0d:46:a4:bf:ae:
2c:ff:81:3e:bf:69:41:54:47:c4:7d:1c:02:a3:5a:9b:73:72:
02:8d:ee:99:80:26:f6:c4:2a:b1:40:7d:19:f8:4d:c0:80:28:
ce:ba:1f:4c:e8:44:2c:35:ab:97:c5:87:c3:58:39:0f:9c:5b:
20:2c:d7:3c:1c:cc:b1:5e:ce:7f:2e:b8:f5:72:30:3a:23:d5:
df:ec:61:fb:10:37:9f:0d:fc:8a:0e:c8:20:d3:79:b8:18:7e:
61:fd:89:9c:84:65:f9:c1:d2:d7:0a:66:13:23:21:4b:ca:13:
77:17:72:67:e5:db:54:00:f9:81:b5:c1:ad:4b:4c:75:54:ce:
3a:f1:89:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:58:41 2026 by rpki-client