Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: +A0pT+LmyeHhHIUdfgu+PL31hIgLkHi7oYLRyrc6FPI=
Subject key identifier: 0D:07:30:27:E5:B9:03:23:CA:B9:3D:E5:71:A3:9F:46:2E:2B:39:4E
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019D39AF0B7D1F6752C135789FAC8E7A7851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 13:01:06 +0000
Manifest this update: Sun 29 Mar 2026 13:01:06 +0000
Manifest next update: Mon 30 Mar 2026 13:01:06 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: DVcpFEFFWEk0TPrMxRtgp9Wti/ARHXzlQNbAjCPxtjI=)
2: JjDhj2srmVAP3AT2q_uafFZ9Ihw.roa (hash: u5PsqVAMH7Yc5b8Mh+/CsUxDWS3RTBQzxJkkDCsiaVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:0b:7d:1f:67:52:c1:35:78:9f:ac:8e:7a:78:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Mar 29 13:01:06 2026 GMT
Not After : Mar 30 13:01:06 2026 GMT
Subject: CN=0d073027e5b90323cab93de571a39f462e2b394e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:30:ec:65:89:5f:6a:a7:ad:0e:47:0f:04:0d:
5c:f7:f2:7f:dc:bb:5c:0e:4c:aa:1c:b1:02:1b:66:
c4:4d:0a:65:d8:9b:d4:ce:e1:9f:f5:a9:ec:fa:70:
b3:56:ed:2e:02:cb:ec:02:fe:65:81:ed:94:9c:30:
42:4f:cd:6e:2f:5f:ce:24:e9:9a:ed:43:79:32:30:
55:6b:d7:f6:97:7b:01:e0:e3:64:36:12:43:63:68:
2f:3f:ab:f3:59:51:1b:c4:ac:86:ea:75:00:eb:f3:
8f:01:db:63:9d:25:c3:a1:39:a8:ad:b1:05:eb:58:
0f:d4:49:6d:dc:ce:76:ba:ca:7c:2b:b0:9d:18:bf:
1a:ec:05:7c:19:af:40:21:90:00:b4:10:6f:c2:e3:
13:c2:43:49:4b:bc:d5:53:94:c0:b8:4c:8d:0a:24:
84:4b:87:d8:4e:ff:f5:12:b4:36:53:fe:ed:b8:6d:
4a:f3:7e:c2:8e:a7:fb:bf:37:b0:12:44:7d:44:f6:
e6:e1:7c:e2:59:9b:61:62:38:c7:06:0f:3e:cc:0d:
99:87:cb:00:eb:21:79:aa:98:30:3c:f8:c9:5e:bd:
75:ab:ec:5a:64:a9:c4:56:7e:07:c1:e2:ee:3a:6c:
1e:66:86:e4:6b:4e:24:a8:f8:be:9b:ae:61:6d:68:
d1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:07:30:27:E5:B9:03:23:CA:B9:3D:E5:71:A3:9F:46:2E:2B:39:4E
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:d9:fc:b6:b2:57:48:70:c1:f4:99:c5:07:6d:31:c7:b3:92:
69:f0:3b:e8:09:83:19:23:b6:a7:23:60:4a:4c:e0:f5:69:df:
01:ef:a8:36:87:6f:90:f8:3d:97:20:41:fa:37:9a:21:35:7c:
b7:2b:68:ce:46:1c:89:55:b8:04:db:86:e5:5c:f9:24:c5:fe:
e1:f0:35:1c:56:e3:3a:9c:29:d2:57:76:f8:6e:0c:74:da:18:
ca:43:9f:09:6a:a0:fd:75:25:15:08:7d:c8:eb:9a:ff:f6:59:
77:c6:10:8f:fb:db:b3:36:3d:67:6e:7f:24:21:69:14:2e:2c:
37:58:dd:6a:d5:f5:47:43:fd:f7:1b:ed:cb:f4:30:7b:b2:28:
ce:1a:26:2e:c9:16:f9:50:95:5e:20:0f:08:ad:6c:59:a5:9b:
c1:c4:e7:c0:32:07:d1:e8:ff:34:03:00:3a:ba:33:85:28:f4:
89:b6:77:21:0c:09:f5:b8:37:8d:35:f5:76:eb:2c:37:88:85:
a0:1e:a5:e5:19:76:b4:f4:ca:41:6f:af:38:43:e8:a7:4b:bc:
17:5b:54:11:65:a2:c7:14:3c:d2:3b:93:79:07:12:37:0d:de:
0d:d3:2c:53:7e:dc:1b:3f:09:64:f7:28:15:12:40:5a:f9:2e:
4c:61:e4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:01:46 2026 by rpki-client