Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
File: AJpjcoKz0KD8pKVU9pNvffQugWU.mft (raw, json)
Hash identifier: 7QZVp6gdXFsLmZ352r7br8eHZlQ8eNxzVMCJww4Q7/c=
Subject key identifier: 85:0B:25:CE:B0:05:7B:C0:D9:7D:24:F3:10:82:68:69:47:2F:C0:7F
Authority key identifier: 00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
Certificate issuer: /CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Certificate serial: 019D37C0DA5D4777954EF672051A7EDDE700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
Manifest number: 0E69
Signing time: Sun 29 Mar 2026 04:01:18 +0000
Manifest this update: Sun 29 Mar 2026 04:01:18 +0000
Manifest next update: Mon 30 Mar 2026 04:01:18 +0000
Files and hashes: 1: AJpjcoKz0KD8pKVU9pNvffQugWU.crl (hash: EqPWdUYllQKaCK07DKla6rZ9KtFhviu+qPs1EqzAuS8=)
2: WaQsZZU2YLYjWKTqh0alZowLSLE.roa (hash: kGjQ24mRi/0YdjnsuS2YWs5ad2+Sfg+BCeumhERZLX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:da:5d:47:77:95:4e:f6:72:05:1a:7e:dd:e7:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Validity
Not Before: Mar 29 04:01:18 2026 GMT
Not After : Mar 30 04:01:18 2026 GMT
Subject: CN=850b25ceb0057bc0d97d24f310826869472fc07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:84:ce:b8:32:72:9c:fb:f9:e8:37:ad:e6:0a:
5b:aa:09:e2:eb:8f:83:db:5b:4a:24:36:4c:95:68:
ba:aa:f7:18:60:cd:58:4a:5f:2a:fc:b5:7d:a7:e1:
54:eb:f6:4e:cf:73:f4:81:2d:00:68:0c:e4:a0:0e:
2a:24:1f:91:ea:7d:74:a8:f0:b4:8a:2a:57:1f:0c:
56:42:05:04:16:22:72:79:90:03:0f:8f:ef:94:70:
06:b9:d9:0d:f1:b5:60:e5:47:9e:66:09:b3:d6:b1:
11:6c:50:53:10:59:50:4a:d5:90:95:71:a3:35:34:
aa:69:c3:7c:c1:bd:42:34:e7:50:65:dc:2f:10:d4:
0c:9a:9f:ac:89:35:c7:82:ef:a4:7f:2c:8e:69:70:
30:42:af:13:dc:63:d3:bb:e3:a6:4e:85:1e:0b:22:
d8:5f:13:16:cc:c2:3f:65:ea:b4:e1:54:5d:11:d4:
6d:34:ae:41:94:73:79:84:24:d2:c4:a9:2c:47:db:
a5:13:1d:13:10:3e:38:a2:c2:af:88:c8:59:f3:ee:
0e:17:60:02:0f:f7:1c:2c:5e:f3:2d:15:82:26:6a:
75:26:27:97:8b:b0:9d:4d:04:39:bf:0c:89:73:a0:
27:67:b2:5b:08:a6:b4:a6:2c:7d:9d:87:49:e7:90:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0B:25:CE:B0:05:7B:C0:D9:7D:24:F3:10:82:68:69:47:2F:C0:7F
X509v3 Authority Key Identifier:
keyid:00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:94:29:14:a8:4c:45:a4:0f:ae:94:a0:df:1b:79:66:05:47:
2a:71:7f:a8:ed:bf:f1:06:65:0d:77:ba:ab:de:55:20:e7:76:
7e:b4:f1:53:8c:15:76:34:d3:48:70:94:34:04:0b:b7:e4:ab:
ac:bf:56:7b:f0:e2:36:d5:5e:f3:2d:1a:04:23:d6:56:9c:0d:
d4:fd:03:3f:f7:7c:10:ab:c9:a8:f7:d2:1a:ea:d0:dd:f9:c1:
63:69:7d:10:ee:cb:c7:53:55:8e:5c:25:31:48:8b:17:09:0b:
73:a4:14:ff:68:be:f7:0b:c2:a1:d9:2a:bf:8f:50:54:dd:70:
2e:bc:84:5b:72:cb:87:fd:26:46:da:94:2b:9c:90:e5:1b:3c:
61:98:29:4a:ec:fe:00:97:d7:48:0f:63:54:48:41:f6:cf:04:
e2:fa:f1:f0:ad:3d:32:8e:ec:5c:a4:44:8f:c5:89:56:54:f5:
2b:dc:15:c9:ef:c5:55:8d:56:66:89:5a:ac:e5:bb:ff:ff:61:
9b:b2:c1:70:60:63:c0:4f:fd:5b:16:21:4b:1e:39:a4:2e:60:
44:7d:27:2b:1d:46:75:49:80:ca:cb:2a:b4:c4:ad:45:44:41:
75:b2:f4:bf:b5:79:70:7d:0a:17:81:e4:ec:1b:46:e3:57:4b:
be:b4:bb:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wNpdR3eVTvZyBRp+3ecAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwOWE2MzcyODJiM2QwYTBmY2E0YTU1NGY2OTM2ZjdkZjQy
ZTgxNjUwHhcNMjYwMzI5MDQwMTE4WhcNMjYwMzMwMDQwMTE4WjAzMTEwLwYDVQQD
Eyg4NTBiMjVjZWIwMDU3YmMwZDk3ZDI0ZjMxMDgyNjg2OTQ3MmZjMDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYTOuDJynPv56Det5gpbqgni64+D
21tKJDZMlWi6qvcYYM1YSl8q/LV9p+FU6/ZOz3P0gS0AaAzkoA4qJB+R6n10qPC0
iipXHwxWQgUEFiJyeZADD4/vlHAGudkN8bVg5UeeZgmz1rERbFBTEFlQStWQlXGj
NTSqacN8wb1CNOdQZdwvENQMmp+siTXHgu+kfyyOaXAwQq8T3GPTu+OmToUeCyLY
XxMWzMI/Zeq04VRdEdRtNK5BlHN5hCTSxKksR9ulEx0TED44osKviMhZ8+4OF2AC
D/ccLF7zLRWCJmp1JieXi7CdTQQ5vwyJc6AnZ7JbCKa0pix9nYdJ55CvSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIULJc6wBXvA2X0k8xCCaGlHL8B/MB8GA1UdIwQY
MBaAFACaY3KCs9Cg/KSlVPaTb330LoFlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUpwamNvS3owS0Q4cEtWVTlwTnZmZlF1Z1dVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9kZGMzNDQtNjRjNi00NmM4LWEyNWMt
ZDRlZGMwZWIzZTBhLzEvQUpwamNvS3owS0Q4cEtWVTlwTnZmZlF1Z1dVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi9kZGMzNDQtNjRjNi00NmM4LWEyNWMtZDRlZGMwZWIzZTBh
LzEvQUpwamNvS3owS0Q4cEtWVTlwTnZmZlF1Z1dVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpQpFKhM
RaQPrpSg3xt5ZgVHKnF/qO2/8QZlDXe6q95VIOd2frTxU4wVdjTTSHCUNAQLt+Sr
rL9We/DiNtVe8y0aBCPWVpwN1P0DP/d8EKvJqPfSGurQ3fnBY2l9EO7Lx1NVjlwl
MUiLFwkLc6QU/2i+9wvCodkqv49QVN1wLryEW3LLh/0mRtqUK5yQ5Rs8YZgpSuz+
AJfXSA9jVEhB9s8E4vrx8K09Mo7sXKREj8WJVlT1K9wVye/FVY1WZolarOW7//9h
m7LBcGBjwE/9WxYhSx45pC5gRH0nKx1GdUmAyssqtMStRURBdbL0v7V5cH0KF4Hk
7BtG41dLvrS7nQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:23 2026 by rpki-client