Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
File: AJpjcoKz0KD8pKVU9pNvffQugWU.mft (raw, json)
Hash identifier: f/hFkulzuEn0oNVjrEIjmu6srhQDqA2yskfgFN5kD2o=
Subject key identifier: 96:01:E7:7C:FB:3E:89:D6:DD:77:63:8D:EB:21:05:55:A2:CC:91:33
Authority key identifier: 00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
Certificate issuer: /CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Certificate serial: 019E30E0FC698C103073D6EFFF6CDC691F3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
Manifest number: 0EEA
Signing time: Sat 16 May 2026 13:01:51 +0000
Manifest this update: Sat 16 May 2026 13:01:51 +0000
Manifest next update: Sun 17 May 2026 13:01:51 +0000
Files and hashes: 1: AJpjcoKz0KD8pKVU9pNvffQugWU.crl (hash: chedmbj30xifcZi8jG2+QWYZy4/CBLAdrSBN9oeWfx4=)
2: WaQsZZU2YLYjWKTqh0alZowLSLE.roa (hash: kGjQ24mRi/0YdjnsuS2YWs5ad2+Sfg+BCeumhERZLX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:fc:69:8c:10:30:73:d6:ef:ff:6c:dc:69:1f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Validity
Not Before: May 16 13:01:51 2026 GMT
Not After : May 17 13:01:51 2026 GMT
Subject: CN=9601e77cfb3e89d6dd77638deb210555a2cc9133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b0:56:01:81:1a:61:3c:8f:91:ff:55:29:e9:
ef:13:2a:7e:37:f6:4f:88:6f:6b:f0:6a:87:67:68:
4e:36:bc:d7:db:e4:1b:cd:b8:dd:37:ab:68:f8:e7:
f5:39:d7:5d:a6:21:f2:a5:c6:37:5a:84:a0:75:dc:
74:b0:77:15:cd:b1:2d:b2:32:2d:4e:e5:e9:c2:66:
5c:23:23:f5:24:82:1b:37:f2:a7:a7:38:f7:b1:05:
59:84:6a:dd:bc:53:25:97:b5:9f:3e:73:55:94:08:
b8:dd:59:c4:29:ac:6e:20:9b:a5:7c:ca:89:c5:8f:
b3:b0:98:40:9f:bb:65:98:6b:ea:7b:65:96:20:a8:
01:72:5f:0f:d3:ba:70:81:22:08:08:e4:36:79:91:
ea:81:c1:0e:8f:58:9b:ee:04:12:f4:1d:4f:33:51:
84:73:de:61:40:84:65:7c:0f:54:6c:35:1c:c5:07:
c8:78:1f:db:22:94:c5:25:b6:2d:b0:a0:7b:6f:e3:
96:f7:5f:46:4a:fe:9b:0b:8b:62:ef:e7:81:e8:96:
27:5e:ca:89:6d:ee:ed:55:30:5e:52:e0:f5:3e:dc:
d5:3f:61:ea:b3:ac:5e:41:62:44:b2:b6:2f:ea:0b:
5b:92:a6:7c:b7:31:13:0b:b6:b2:50:eb:b5:08:17:
cb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:01:E7:7C:FB:3E:89:D6:DD:77:63:8D:EB:21:05:55:A2:CC:91:33
X509v3 Authority Key Identifier:
keyid:00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:d0:76:7a:ad:c7:15:91:cc:fc:f6:ad:a4:68:f5:19:61:ef:
fd:b5:2c:7d:43:4d:b2:88:ff:2a:ee:64:de:b9:db:99:95:4c:
34:20:8c:12:26:7a:a3:5c:3d:be:cd:93:93:f3:12:b5:ba:a2:
d7:3b:1b:d2:71:20:98:8d:b3:1a:c9:d1:e9:c0:0d:e9:d8:b9:
f5:55:a3:f5:70:89:eb:15:be:81:e4:f1:ce:3b:73:13:55:d6:
88:84:e4:c5:eb:a6:e0:e2:b4:20:0c:87:b2:6d:d1:45:92:f8:
80:96:d4:0d:bf:8a:b6:b4:58:fb:25:05:ea:af:df:12:84:62:
83:00:d9:8a:de:6f:69:1c:71:8c:29:18:d2:9b:41:b5:12:a5:
5f:63:0f:d0:12:b3:60:b1:1c:b8:27:65:4a:9f:96:59:0e:ac:
4a:8f:62:29:72:a1:2d:01:49:49:3a:7d:bf:72:9f:be:08:b1:
32:fa:a0:f3:6c:55:43:59:12:d1:4f:04:c9:a4:bd:70:69:d7:
89:d5:df:51:c9:71:45:1e:73:42:a1:f8:05:1c:78:0f:88:77:
9b:91:31:91:10:bf:62:51:a6:70:1f:e5:9b:a2:3c:11:32:65:
da:7e:3f:5c:61:69:11:b1:f3:36:d1:65:08:da:d4:65:77:1a:
39:5e:e3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:29 2026 by rpki-client