Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
File: r-iiApeGib2NX15X_MG_64Z8Mio.mft (raw, json)
Hash identifier: pXSmDivdkwvBFlbS9UQwrpTy4TuRb1oLetdP4e/Bi/w=
Subject key identifier: 5C:88:69:69:9C:21:DF:D3:AB:CE:FD:67:CB:E2:0C:37:90:4D:07:A7
Authority key identifier: AF:E8:A2:02:97:86:89:BD:8D:5F:5E:57:FC:C1:BF:EB:86:7C:32:2A
Certificate issuer: /CN=afe8a202978689bd8d5f5e57fcc1bfeb867c322a
Certificate serial: 019EB87D1048EDA7A44A2C08DFF9EEC870DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
Manifest number: 1952
Signing time: Thu 11 Jun 2026 21:01:04 +0000
Manifest this update: Thu 11 Jun 2026 21:01:04 +0000
Manifest next update: Fri 12 Jun 2026 21:01:04 +0000
Files and hashes: 1: r-iiApeGib2NX15X_MG_64Z8Mio.crl (hash: EDGUUEks0oQwk2nHMze0MSCAD5eH1L6V/ylp34dsdRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7d:10:48:ed:a7:a4:4a:2c:08:df:f9:ee:c8:70:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afe8a202978689bd8d5f5e57fcc1bfeb867c322a
Validity
Not Before: Jun 11 21:01:04 2026 GMT
Not After : Jun 12 21:01:04 2026 GMT
Subject: CN=5c8869699c21dfd3abcefd67cbe20c37904d07a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0f:e9:a8:51:24:ef:bb:ad:b2:20:b1:be:73:
c9:27:6f:a5:5c:15:e8:ee:e1:30:9c:77:98:6a:80:
c3:24:9f:00:b5:4c:37:64:28:c8:06:d2:e2:a1:de:
4d:1d:5f:c5:ac:b4:20:93:c9:06:06:db:b2:df:2c:
46:e6:a9:4a:ce:a9:12:c2:d8:ce:59:6f:02:f5:90:
be:3d:48:b7:49:31:89:69:c4:33:3b:79:bf:b0:88:
08:ea:cf:cc:14:cd:91:3f:c4:20:27:eb:17:4f:d8:
c8:5a:51:66:ab:40:f2:f1:bd:81:2b:32:e7:08:98:
f3:97:41:0e:cf:2f:ad:87:6d:2f:01:d6:d2:64:0d:
12:9d:0e:f2:d6:f3:f6:0d:ee:b0:d1:66:e2:b8:95:
b1:ae:76:78:93:52:2b:fe:d3:00:ff:b4:77:ed:13:
00:28:c8:e1:cf:17:c5:5e:ef:7a:a5:b5:59:8a:f2:
bf:61:ea:50:c7:b2:84:15:78:bf:f1:7f:59:a2:d4:
bf:e9:fe:dc:d0:8c:50:6e:05:51:4e:76:ba:e4:fa:
13:5a:54:01:3f:74:d8:40:9c:0e:de:01:8f:05:93:
8a:df:08:24:47:a6:f3:98:73:2b:80:18:53:32:8e:
04:df:ae:b1:fd:80:86:f7:5b:72:a7:c5:59:ef:a5:
42:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:88:69:69:9C:21:DF:D3:AB:CE:FD:67:CB:E2:0C:37:90:4D:07:A7
X509v3 Authority Key Identifier:
keyid:AF:E8:A2:02:97:86:89:BD:8D:5F:5E:57:FC:C1:BF:EB:86:7C:32:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:28:00:c5:20:8e:d7:fc:1f:2a:5f:66:75:6a:a2:76:cb:6e:
47:db:1d:ca:a9:e7:ee:f8:d7:f2:bb:bc:fe:21:f5:62:0c:45:
7e:5a:d1:3a:68:e5:55:db:77:b1:9d:b9:b6:16:d9:55:b6:19:
15:c7:23:fa:9e:d4:42:60:56:7b:df:4b:31:4d:9a:ae:25:39:
99:52:21:d1:1c:47:8a:4d:8b:f0:3c:e4:45:c9:86:ea:3f:a8:
34:55:46:83:34:71:28:4d:05:7a:a6:80:14:f9:1c:5c:94:0f:
e5:79:c8:bb:8e:9b:af:e3:46:27:c3:f3:5b:11:91:82:1d:cb:
94:ff:22:1d:16:8a:c3:60:30:e1:5b:01:46:a7:3d:c2:4e:bf:
c7:70:c3:0a:36:56:48:61:fc:a8:96:e1:9c:ce:bb:d2:ca:91:
62:75:39:a2:ec:a5:c1:d2:a6:4d:0c:0c:a6:7e:ef:61:a9:9f:
08:a0:64:98:53:82:e1:9f:fb:b6:a5:e2:8e:22:91:b2:75:8d:
a6:a4:a8:3e:9f:35:8d:cb:5f:ce:fe:39:9c:01:b8:e8:a9:6f:
fe:38:a8:9d:74:9a:d6:84:42:75:d0:1f:bc:91:55:36:13:55:
0d:de:4b:cb:f5:52:a0:0f:4f:18:ae:45:d5:85:61:6c:05:0d:
fb:2b:df:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64fRBI7aekSiwI3/nuyHDbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZThhMjAyOTc4Njg5YmQ4ZDVmNWU1N2ZjYzFiZmViODY3
YzMyMmEwHhcNMjYwNjExMjEwMTA0WhcNMjYwNjEyMjEwMTA0WjAzMTEwLwYDVQQD
Eyg1Yzg4Njk2OTljMjFkZmQzYWJjZWZkNjdjYmUyMGMzNzkwNGQwN2E3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7g/pqFEk77utsiCxvnPJJ2+lXBXo
7uEwnHeYaoDDJJ8AtUw3ZCjIBtLiod5NHV/FrLQgk8kGBtuy3yxG5qlKzqkSwtjO
WW8C9ZC+PUi3STGJacQzO3m/sIgI6s/MFM2RP8QgJ+sXT9jIWlFmq0Dy8b2BKzLn
CJjzl0EOzy+th20vAdbSZA0SnQ7y1vP2De6w0WbiuJWxrnZ4k1Ir/tMA/7R37RMA
KMjhzxfFXu96pbVZivK/YepQx7KEFXi/8X9ZotS/6f7c0IxQbgVRTna65PoTWlQB
P3TYQJwO3gGPBZOK3wgkR6bzmHMrgBhTMo4E366x/YCG91typ8VZ76VCPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFyIaWmcId/Tq879Z8viDDeQTQenMB8GA1UdIwQY
MBaAFK/oogKXhom9jV9eV/zBv+uGfDIqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvci1paUFwZUdpYjJOWDE1WF9NR182NFo4TWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9mOTA3YWEtMmFjZC00ZGM3LTlmMGQt
ZDdiMDg5NDhmN2M3LzEvci1paUFwZUdpYjJOWDE1WF9NR182NFo4TWlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9mOTA3YWEtMmFjZC00ZGM3LTlmMGQtZDdiMDg5NDhmN2M3
LzEvci1paUFwZUdpYjJOWDE1WF9NR182NFo4TWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApSgAxSCO
1/wfKl9mdWqidstuR9sdyqnn7vjX8ru8/iH1YgxFflrROmjlVdt3sZ25thbZVbYZ
Fccj+p7UQmBWe99LMU2ariU5mVIh0RxHik2L8DzkRcmG6j+oNFVGgzRxKE0FeqaA
FPkcXJQP5XnIu46br+NGJ8PzWxGRgh3LlP8iHRaKw2Aw4VsBRqc9wk6/x3DDCjZW
SGH8qJbhnM670sqRYnU5ouylwdKmTQwMpn7vYamfCKBkmFOC4Z/7tqXijiKRsnWN
pqSoPp81jctfzv45nAG46Klv/jionXSa1oRCddAfvJFVNhNVDd5Ly/VSoA9PGK5F
1YVhbAUN+yvfvQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 03:53:24 2026 by rpki-client