Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
File: AJJn8-O54eu5eZaQgLDfqyTDYBo.mft (raw, json)
Hash identifier: y64SLweqlZxVTGkPvFK1Bn6S9pYhjM3SQk2lJyedNh0=
Subject key identifier: 6E:B0:AB:CC:5E:FF:F9:DF:68:74:52:50:11:87:D4:38:A1:E0:38:C4
Authority key identifier: 00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
Certificate issuer: /CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Certificate serial: 019EC0DB439509EF3BE5549B90CE339EC1BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
Manifest number: 052D
Signing time: Sat 13 Jun 2026 12:00:55 +0000
Manifest this update: Sat 13 Jun 2026 12:00:55 +0000
Manifest next update: Sun 14 Jun 2026 12:00:55 +0000
Files and hashes: 1: AJJn8-O54eu5eZaQgLDfqyTDYBo.crl (hash: qNKbUH8Vbxx610BKUzTEnO2jOb4qRIc7ttQgsAcm7IY=)
2: d9OmlBe2GpKLvl3u0mUGOFIDWgo.roa (hash: Ba/7rGgRRFa7/HkHrFHCRps9ypeyWifGgSmqxh5y+b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 12:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:43:95:09:ef:3b:e5:54:9b:90:ce:33:9e:c1:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009267f3e3b9e1ebb979969080b0dfab24c3601a
Validity
Not Before: Jun 13 12:00:55 2026 GMT
Not After : Jun 14 12:00:55 2026 GMT
Subject: CN=6eb0abcc5efff9df687452501187d438a1e038c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ff:f4:8f:d7:95:3c:55:2f:7a:73:36:42:bb:
f7:28:cd:91:0a:0f:dc:33:b7:c9:ef:2a:b7:c8:8d:
fd:00:44:4b:ba:41:67:ae:ef:59:2e:6f:4a:fb:2f:
6e:58:a8:1b:8f:49:60:fc:09:d1:8d:a6:d3:80:b2:
0a:65:16:48:71:36:70:2a:ae:31:22:3c:5d:42:6f:
17:34:bf:85:06:b5:a5:06:38:1a:15:4c:9a:98:b1:
6d:f1:09:e9:97:fd:bb:c5:3b:80:6d:be:7e:31:2d:
da:d9:41:4b:27:6b:4b:6a:ea:82:1a:e7:ab:e5:0a:
ea:82:fe:75:a1:71:17:72:87:be:30:73:9f:a6:21:
bd:0f:d5:e8:3c:fa:45:24:ce:23:2a:12:c2:da:60:
de:a5:05:94:0d:c2:14:05:ca:2d:29:8b:0f:d3:d5:
86:01:b1:0b:2e:9f:2f:4c:eb:cd:9d:d6:3f:c9:46:
f6:a4:4a:36:87:c1:cd:03:04:69:37:0e:0f:db:46:
c2:74:06:b2:09:fb:d3:6a:01:2a:e9:49:fe:a0:db:
eb:c2:96:36:bc:0c:91:82:dd:8a:1f:1a:cd:2d:33:
bb:0f:ca:6b:b8:91:90:01:0d:23:34:e8:e7:e4:45:
e8:1c:fc:36:7b:66:c6:1c:ef:1c:46:dd:14:2a:52:
09:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B0:AB:CC:5E:FF:F9:DF:68:74:52:50:11:87:D4:38:A1:E0:38:C4
X509v3 Authority Key Identifier:
keyid:00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:50:78:06:b5:a3:5b:36:de:88:35:a1:ce:3f:73:65:12:b6:
38:fb:40:81:ce:23:f5:33:d5:72:28:5b:1d:b9:c6:f9:87:1f:
28:23:a5:a6:6a:b5:10:14:47:1e:25:0f:6d:c3:a5:4c:57:0f:
21:ec:32:ce:c2:c4:88:94:74:98:e7:cc:a1:04:23:b7:e6:1d:
26:8b:9f:7d:f2:ba:de:65:5f:38:6e:9e:96:8d:34:f6:09:c8:
6c:68:7b:34:36:b1:2a:57:03:b3:59:94:bc:59:d8:4f:14:f0:
b3:72:12:93:37:61:5c:65:f8:b2:0a:8b:8f:d5:39:d1:85:c1:
1d:59:62:4f:ed:c2:2c:71:62:ed:2e:6f:72:e3:5b:6b:61:cc:
0c:8d:ef:a0:2c:2a:ce:cf:11:44:87:4a:65:99:61:59:6f:17:
38:e2:1d:3d:62:8a:de:e6:47:8f:52:2d:22:40:01:39:7a:9f:
44:9b:0a:7e:8c:83:6d:b6:35:cd:c9:33:a9:bc:6b:77:0c:c2:
8d:af:d9:b4:d4:42:90:8f:03:ed:48:f4:d4:a9:66:cd:1b:ad:
71:f2:19:0e:4d:c6:f0:d2:cf:51:86:a6:7a:e9:f0:dd:f1:66:
66:c6:26:f0:bf:00:3b:e2:9b:46:79:76:91:41:0c:9c:80:a0:
3d:e3:b3:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:10:56 2026 by rpki-client