
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
File: aP4jOevgl_9pirMOW2PswhoqI6s.mft (raw, json)
Hash identifier: VezE1DxiZS+qT5HMFIGOVY3s+7OXHsTEbqnfRPRVST4=
Subject key identifier: 8B:14:3C:10:0D:0D:2B:8D:E3:D5:E0:8C:B3:E9:30:26:7F:37:25:82
Authority key identifier: 68:FE:23:39:EB:E0:97:FF:69:8A:B3:0E:5B:63:EC:C2:1A:2A:23:AB
Certificate issuer: /CN=68fe2339ebe097ff698ab30e5b63ecc21a2a23ab
Certificate serial: 019F41D265951EF144675D5C2AF7A2AEDE81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
Manifest number: 0866
Signing time: Wed 08 Jul 2026 13:02:15 +0000
Manifest this update: Wed 08 Jul 2026 13:02:15 +0000
Manifest next update: Thu 09 Jul 2026 13:02:15 +0000
Files and hashes: 1: aP4jOevgl_9pirMOW2PswhoqI6s.crl (hash: idApooEuK8kpFFSBduDcqSBlO49rpvzeSBekrCuuR24=)
2: qK1qsq6SydRQsph0pcOe7ljWypU.roa (hash: GQsQePKWU4sUFb7047+SEDBy9k0n6p9UubN0V6aD1Oo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 13:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:41:d2:65:95:1e:f1:44:67:5d:5c:2a:f7:a2:ae:de:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fe2339ebe097ff698ab30e5b63ecc21a2a23ab
Validity
Not Before: Jul 8 13:02:15 2026 GMT
Not After : Jul 9 13:02:15 2026 GMT
Subject: CN=8b143c100d0d2b8de3d5e08cb3e930267f372582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:35:78:ac:90:c5:09:76:92:c6:6c:78:d8:80:
fe:7a:0a:82:e3:d2:ba:65:f3:2d:4d:84:d5:c6:a3:
02:77:d3:86:48:5f:38:d6:7b:8c:b0:79:96:62:4f:
7d:9b:38:b1:80:dd:c5:27:53:45:c4:4f:a9:62:46:
63:f0:17:4d:57:12:44:9f:36:2c:63:a0:03:22:58:
62:ea:e5:c4:81:f4:7b:22:dc:a7:5e:d4:e9:be:61:
ff:72:9c:5f:65:f7:94:65:03:ba:45:b3:b7:2a:91:
01:66:f6:0e:c9:c9:0e:7e:3d:57:34:37:e2:f0:29:
24:a0:f0:2c:f5:06:da:0e:f9:3a:71:8d:a7:96:c5:
79:4f:8e:6f:5a:65:21:64:ed:5e:cb:93:54:d7:08:
03:17:4c:28:e5:1f:7b:41:6b:c6:85:54:16:ed:84:
4f:c6:81:dd:71:04:57:50:9a:89:2e:22:49:f5:82:
75:8a:a4:bb:3c:dc:8c:99:54:a8:fc:01:64:48:36:
31:40:9d:b2:01:59:7e:97:a5:3c:9f:27:66:a7:55:
84:b6:89:d0:e3:25:1f:b5:98:53:a2:13:67:d9:98:
74:e4:62:d5:a9:42:a0:12:e0:f8:fc:4e:0b:88:bf:
41:15:02:34:c5:9c:59:42:dd:88:df:51:c3:18:59:
c0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:14:3C:10:0D:0D:2B:8D:E3:D5:E0:8C:B3:E9:30:26:7F:37:25:82
X509v3 Authority Key Identifier:
keyid:68:FE:23:39:EB:E0:97:FF:69:8A:B3:0E:5B:63:EC:C2:1A:2A:23:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:50:f2:fc:54:4f:9b:6a:15:6b:2a:7c:31:a0:a5:3d:62:37:
29:a2:98:20:4a:82:80:b9:e7:bb:66:99:8d:d6:a6:eb:07:dd:
45:d7:29:bb:31:75:62:e2:b9:86:06:38:c9:4d:c2:30:c8:10:
68:f6:c3:33:64:91:14:1a:69:02:a6:22:82:7a:b3:71:f3:ce:
48:bc:ab:72:84:3b:bd:53:be:54:58:74:ae:ca:b3:b2:63:e7:
ac:26:f7:19:f0:88:d1:d9:1d:93:a5:fa:30:49:04:82:6b:99:
cc:40:cd:8f:32:9a:e8:7f:8f:be:04:cc:d9:f6:d6:d0:df:bb:
10:b9:75:8e:d3:77:e8:39:3a:93:f6:78:4b:8f:5a:2b:5c:cd:
0b:86:8d:8e:2c:1f:f6:58:84:37:ea:76:14:4a:c0:97:e9:05:
10:0d:6f:2a:5f:cd:51:1d:29:76:59:3b:3f:b0:d2:7f:a7:31:
f4:14:b8:5e:60:cd:0d:6a:60:15:61:aa:bb:8e:07:64:5b:64:
6a:08:71:e9:5b:c3:21:c4:a3:f5:f1:e1:93:78:e4:32:ac:03:
6e:b2:64:9a:cd:28:2f:e3:66:7c:c7:d8:e9:0c:ab:a2:b4:0f:
e8:fb:5d:c6:44:cf:b2:85:33:66:cb:79:6d:7f:89:03:b8:ec:
b1:19:9e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:29:36 2026 by rpki-client