Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: U9j7pRiIj7huvaI3JlBi21dLHyECzrbgSYB/KXVErWw=
Subject key identifier: F0:D9:26:94:1E:93:23:3A:A0:92:0A:17:B1:78:F9:7C:C5:16:E1:1E
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 019E3229F1E028BD4D2BDF22432ACB130F1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 19:01:10 +0000
Manifest this update: Sat 16 May 2026 19:01:10 +0000
Manifest next update: Sun 17 May 2026 19:01:10 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: DlxPc+/4dyOfxBtFDFAFbq1/0t6DB0wFaNKDYsvfVcE=)
2: eJ3f1i44Rqh5dEICPulbHl4WkkI.roa (hash: kZed20xL2+OJp4rVcGTuqnAX+7hPge7JicJ6LEk/ItE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:29:f1:e0:28:bd:4d:2b:df:22:43:2a:cb:13:0f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: May 16 19:01:10 2026 GMT
Not After : May 17 19:01:10 2026 GMT
Subject: CN=f0d926941e93233aa0920a17b178f97cc516e11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c7:45:aa:98:bb:8b:93:58:56:50:d4:8a:26:
71:94:74:e3:29:66:b1:59:d5:54:13:ec:96:7f:3b:
c7:5e:67:7b:f7:94:07:6b:45:15:36:6e:4c:9d:0b:
22:5b:e8:25:dc:9d:9d:fb:60:ad:69:ab:ef:79:84:
a6:d7:cc:10:a6:a8:3a:af:a8:4d:ee:6f:55:e6:60:
5e:80:f0:4e:c4:2e:3b:51:87:6e:ac:34:8b:37:99:
2f:00:7c:58:4b:ec:1e:93:27:2b:f1:fb:ae:1e:84:
e7:f2:f1:9e:ea:35:46:93:27:91:f5:22:99:7b:c0:
1c:90:d9:e9:c0:d3:3f:7f:c5:36:8b:b3:0f:41:34:
8b:9c:51:cf:1c:42:16:89:c0:3d:5f:da:e9:1a:f5:
aa:ab:77:42:43:ce:fc:db:0c:8c:9b:af:dc:61:50:
84:a4:e9:51:a3:2f:0a:23:38:56:10:68:ff:da:b3:
de:27:1e:12:40:78:2f:c0:63:10:83:46:7a:11:d3:
4b:a6:ec:3c:ce:f0:58:79:41:f7:d9:e4:17:56:a4:
19:81:8b:c4:21:05:36:a1:cc:33:60:80:92:d4:0f:
74:60:8d:d2:f9:cf:cc:1c:61:a0:c0:8e:30:85:44:
1d:7b:66:f7:fa:71:cc:a4:69:1d:a6:4b:33:10:e7:
29:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D9:26:94:1E:93:23:3A:A0:92:0A:17:B1:78:F9:7C:C5:16:E1:1E
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:45:f2:e1:ff:2d:35:56:b5:3b:33:36:ca:56:2e:ae:a9:aa:
3d:ea:a4:f7:6b:c5:23:08:4a:f5:37:f6:8c:b3:d0:42:e7:02:
15:cd:75:f6:75:b3:6f:f8:c6:3d:e7:eb:f1:70:b8:62:32:09:
a2:6c:46:8b:d1:ef:e9:55:8b:e3:b6:65:ed:a5:17:43:c9:1e:
39:48:00:6e:37:9a:f9:32:4c:1a:66:58:7c:0b:02:7e:2c:c5:
47:3a:83:a9:50:33:a1:18:89:b8:3e:86:38:59:69:6d:ab:d6:
7a:a6:4e:ac:ae:41:dc:0e:ae:41:93:c7:dd:b5:1f:b1:aa:ab:
1a:0e:75:93:06:35:f8:54:95:22:5b:f2:c1:ff:1b:f9:c8:b9:
3b:7f:4f:2f:c9:b7:2e:f3:ef:56:c9:8c:4f:a0:60:e6:67:b1:
8a:47:f6:c5:a1:d1:4b:5c:93:ce:09:c1:bd:04:7d:ce:84:44:
fb:c6:bb:2b:81:a1:e1:9e:e3:a6:45:00:53:15:97:6a:3b:b9:
81:b2:b7:f7:02:b3:3d:d0:70:41:bf:2c:b6:c4:64:06:e2:fa:
f7:ab:14:60:f6:cb:cd:c0:66:35:4d:c4:c8:5a:81:ba:7a:a9:
67:ff:8f:ac:e9:68:49:5d:c7:22:05:17:be:1b:6a:08:dd:a4:
b9:cd:26:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:41:24 2026 by rpki-client