Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: kEaQui1Nzpq84W82YG6NUbWFkh0HU8qzyBNgY2j4RfU=
Subject key identifier: 4D:9F:F8:CF:B0:2C:E9:F5:33:3F:31:C2:1D:99:EF:38:46:CE:55:70
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019D284DEBE1F488B38F5FF04D6C917A065E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 04:01:28 +0000
Manifest this update: Thu 26 Mar 2026 04:01:28 +0000
Manifest next update: Fri 27 Mar 2026 04:01:28 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: xglJM73VrMbjbCzhFgqdzN+C0NQT049qanwMZPvrDJA=)
2: JjDhj2srmVAP3AT2q_uafFZ9Ihw.roa (hash: u5PsqVAMH7Yc5b8Mh+/CsUxDWS3RTBQzxJkkDCsiaVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:eb:e1:f4:88:b3:8f:5f:f0:4d:6c:91:7a:06:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Mar 26 04:01:28 2026 GMT
Not After : Mar 27 04:01:28 2026 GMT
Subject: CN=4d9ff8cfb02ce9f5333f31c21d99ef3846ce5570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:64:3c:8e:94:80:af:61:48:05:fd:d5:c3:
00:ba:a4:d1:f0:46:2c:69:f0:c2:bc:fd:93:aa:0a:
e0:e2:61:a9:0b:f1:8f:e1:0e:d4:5c:e4:bd:c6:2e:
dc:b4:9e:82:8e:29:05:a4:c1:c8:9d:f3:93:c7:a7:
d5:04:e3:9e:73:8d:02:65:2c:d3:34:43:16:a8:3c:
d9:29:a0:12:33:8f:2f:5e:72:13:2a:e8:15:c0:05:
e2:3b:88:19:04:c6:08:06:65:e6:51:7e:7b:fa:e0:
d0:1b:e2:b9:37:4f:9b:17:84:a1:e9:99:9a:1b:77:
52:38:35:88:73:e7:59:af:ee:0b:26:be:56:2f:cf:
82:0d:da:27:a5:49:a9:36:56:d1:82:0e:1c:d7:b2:
31:2b:1b:ac:90:d6:ce:24:9f:14:8c:04:78:79:a3:
be:d9:e2:91:a3:76:48:e2:51:2b:fe:3e:2e:aa:f5:
2e:5f:f7:14:61:5e:a9:47:f4:57:83:02:67:49:e5:
cb:99:5c:99:cb:c9:2d:c7:28:99:92:0b:4a:e6:9a:
06:2d:93:43:4c:94:f3:50:61:e4:8e:5e:96:a4:e6:
73:be:9c:43:c2:18:35:56:4d:c0:a7:4a:cf:cb:05:
cd:1c:52:d0:5b:98:4f:48:fd:40:88:c4:a8:80:1e:
03:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9F:F8:CF:B0:2C:E9:F5:33:3F:31:C2:1D:99:EF:38:46:CE:55:70
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:45:f9:91:7d:78:bf:1d:1e:aa:44:1c:28:18:a9:91:fe:07:
e0:2b:84:4e:95:f9:91:cb:f9:b1:d3:da:6d:29:fb:35:b7:19:
be:9d:b7:aa:eb:86:61:07:cc:e8:54:03:b2:db:55:5c:32:e9:
db:61:2c:c0:2c:61:18:b1:b7:6e:8b:3b:e9:49:10:97:c0:b3:
ec:07:4f:f6:d0:4f:ab:6b:21:5b:e1:d6:06:02:00:ff:79:ec:
85:b0:c6:7c:f5:1c:08:6f:d6:ec:16:43:22:f1:32:f8:d0:82:
74:34:7d:75:e2:2f:a7:14:1f:d0:a7:39:8a:ef:3d:35:d0:3a:
8a:89:7c:86:ce:a8:ce:f0:42:e8:25:9f:98:e3:14:81:80:0c:
db:bb:5c:c2:56:f2:11:6d:49:75:9e:17:6a:47:b6:c8:d1:52:
2b:b6:06:db:9d:f5:97:50:1b:a9:53:7f:e7:a0:55:b9:46:90:
2b:25:90:31:0e:9c:bf:99:4f:07:04:d2:e4:91:33:91:c0:7f:
fa:2e:ac:3f:dd:01:b1:a0:c4:fd:e1:48:d3:cf:63:df:1d:77:
12:28:22:e2:5e:77:ee:2b:68:c7:47:31:b8:6f:3f:4d:64:fb:
4d:34:f9:98:54:c9:c2:a9:fa:fa:1a:ca:f8:be:09:f2:11:62:
2e:ff:a0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:51:07 2026 by rpki-client