Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: UwX86wt3AWcA04xJ3mNMz9az8MLX5KeukKTfydqa2NM=
Subject key identifier: FC:C9:33:37:72:77:E1:8A:97:0F:C8:73:7E:C6:32:60:5D:3D:74:C0
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019E1D90E57320642C1BD12FA94646534066
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 19:01:35 +0000
Manifest this update: Tue 12 May 2026 19:01:35 +0000
Manifest next update: Wed 13 May 2026 19:01:35 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: AhPvQJW+Sj9baGn5GBrdCj+e1WW34CiB79nwLeCb1Hg=)
2: JjDhj2srmVAP3AT2q_uafFZ9Ihw.roa (hash: u5PsqVAMH7Yc5b8Mh+/CsUxDWS3RTBQzxJkkDCsiaVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:e5:73:20:64:2c:1b:d1:2f:a9:46:46:53:40:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: May 12 19:01:35 2026 GMT
Not After : May 13 19:01:35 2026 GMT
Subject: CN=fcc933377277e18a970fc8737ec632605d3d74c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:f7:9d:92:ee:53:78:d6:e7:7f:31:f2:9a:
c9:84:b5:67:10:0d:8b:74:76:39:1e:ec:f3:31:57:
d2:44:dd:8a:57:3d:7c:e5:a3:a9:63:2f:53:18:bb:
83:5b:83:5b:f0:56:f5:72:04:11:f1:55:42:62:ca:
33:d0:cb:e4:bd:52:0c:e0:6a:e2:fd:c0:84:68:ce:
6d:98:67:50:a7:97:a0:84:bd:de:f1:2d:50:02:1c:
f1:e6:4e:fc:69:56:98:a6:b5:8c:bf:61:dd:5d:fd:
2b:46:42:21:f2:66:25:d2:64:fd:2f:ba:09:5e:cc:
ca:01:7c:78:a1:69:2f:0d:18:e4:9d:8f:3d:1c:bf:
32:6e:aa:95:ae:4d:f1:f5:fa:a0:b9:70:af:a6:34:
9c:d0:b3:2b:e5:a2:7d:37:c7:aa:5e:24:24:9d:5e:
bd:88:c4:fc:41:bc:f5:6a:32:14:1d:50:09:c1:5a:
c0:ad:e2:8f:33:d8:72:0a:8a:40:6b:85:23:20:6f:
3c:b5:f2:d1:40:8a:2f:22:04:65:94:b5:65:83:15:
00:ef:4a:4a:39:e9:87:da:79:08:91:72:1b:e7:f2:
d1:9b:1e:86:fc:b5:7e:9d:b0:2b:67:d0:37:8c:6a:
7b:66:56:4e:7e:5b:73:3d:42:ea:a2:d3:16:b8:02:
28:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C9:33:37:72:77:E1:8A:97:0F:C8:73:7E:C6:32:60:5D:3D:74:C0
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ae:d8:04:5d:70:3c:a2:53:d0:87:0e:85:44:1c:37:50:78:
a2:16:96:63:f9:11:a2:9a:f5:e1:94:2a:ea:17:c6:e6:f4:33:
a7:84:08:dc:9c:8d:77:d1:01:b7:82:e8:9a:e1:eb:1b:1c:aa:
19:2f:4a:89:f7:d2:ac:b4:65:26:6d:82:aa:7e:c4:e9:4e:a3:
72:76:53:df:c1:a1:43:e7:d4:e6:44:74:f1:93:fc:bd:87:db:
7d:78:43:b7:a5:b2:a2:5e:4f:f5:64:7b:c9:ad:0b:3f:44:c5:
ce:b2:e7:d9:af:22:ac:d9:dc:10:53:73:50:a6:d2:bb:ce:93:
2a:77:cc:fe:ef:ee:f5:52:2b:76:22:05:65:e3:cc:2b:2d:bc:
77:bb:d6:31:df:26:e7:ae:0b:22:ce:7c:a0:52:72:54:aa:03:
9d:2d:eb:9f:f3:b9:ff:06:28:22:5d:b8:f5:88:2b:a8:46:bc:
4a:ab:f1:c6:70:d9:b9:2b:ec:cb:e2:43:d2:f3:73:c1:63:a7:
82:9f:ee:6b:28:21:43:14:9f:6c:ac:3e:f9:9b:dd:6e:3a:4e:
9a:ff:4d:3e:90:60:de:29:72:b4:5f:e5:8f:e7:84:d8:f1:6a:
fa:7b:85:99:df:26:f4:e8:72:9d:63:6e:30:1f:85:8e:1b:dd:
49:94:42:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkOVzIGQsG9EvqUZGU0BmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3
ZTBiY2YwHhcNMjYwNTEyMTkwMTM1WhcNMjYwNTEzMTkwMTM1WjAzMTEwLwYDVQQD
EyhmY2M5MzMzNzcyNzdlMThhOTcwZmM4NzM3ZWM2MzI2MDVkM2Q3NGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3H3nZLuU3jW538x8prJhLVnEA2L
dHY5HuzzMVfSRN2KVz185aOpYy9TGLuDW4Nb8Fb1cgQR8VVCYsoz0MvkvVIM4Gri
/cCEaM5tmGdQp5eghL3e8S1QAhzx5k78aVaYprWMv2HdXf0rRkIh8mYl0mT9L7oJ
XszKAXx4oWkvDRjknY89HL8ybqqVrk3x9fqguXCvpjSc0LMr5aJ9N8eqXiQknV69
iMT8Qbz1ajIUHVAJwVrAreKPM9hyCopAa4UjIG88tfLRQIovIgRllLVlgxUA70pK
OemH2nkIkXIb5/LRmx6G/LV+nbArZ9A3jGp7ZlZOfltzPULqotMWuAIoEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPzJMzdyd+GKlw/Ic37GMmBdPXTAMB8GA1UdIwQY
MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt
Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3
LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH67YBF1w
PKJT0IcOhUQcN1B4ohaWY/kRopr14ZQq6hfG5vQzp4QI3JyNd9EBt4LomuHrGxyq
GS9KiffSrLRlJm2Cqn7E6U6jcnZT38GhQ+fU5kR08ZP8vYfbfXhDt6Wyol5P9WR7
ya0LP0TFzrLn2a8irNncEFNzUKbSu86TKnfM/u/u9VIrdiIFZePMKy28d7vWMd8m
564LIs58oFJyVKoDnS3rn/O5/wYoIl249YgrqEa8SqvxxnDZuSvsy+JD0vNzwWOn
gp/uayghQxSfbKw++ZvdbjpOmv9NPpBg3ilytF/lj+eE2PFq+nuFmd8m9OhynWNu
MB+FjhvdSZRCTQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:15:54 2026 by rpki-client