Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: 5VKOYjgVwpifKly82UxAS22cMFoN2wMTUTXmi9W3PQo=
Subject key identifier: DD:C8:BE:87:0A:8D:61:8B:29:EF:91:49:32:35:12:B0:D7:E7:83:4E
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 019E1EDA72D4ACB64DABE85BA11927B6A7BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 01:01:33 +0000
Manifest this update: Wed 13 May 2026 01:01:33 +0000
Manifest next update: Thu 14 May 2026 01:01:33 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: hM6WKmGN3WpQcF/24ZP7+fcqC4I+BE2KVnO9mtZ8SIM=)
2: eJ3f1i44Rqh5dEICPulbHl4WkkI.roa (hash: kZed20xL2+OJp4rVcGTuqnAX+7hPge7JicJ6LEk/ItE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:72:d4:ac:b6:4d:ab:e8:5b:a1:19:27:b6:a7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: May 13 01:01:33 2026 GMT
Not After : May 14 01:01:33 2026 GMT
Subject: CN=ddc8be870a8d618b29ef9149323512b0d7e7834e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b7:a7:77:a7:19:66:cb:2b:6c:5a:a5:f6:91:
8f:b1:56:86:d3:82:9e:3d:ce:1e:88:3e:80:f2:3d:
ce:12:96:e4:60:10:aa:b0:4c:f1:f4:49:15:f1:82:
7d:bf:ff:e7:06:a2:28:63:c5:a7:c0:68:1c:a0:43:
f4:79:ff:7f:87:e5:b5:8b:20:c9:4f:ff:3f:dc:d4:
57:8e:34:b9:4d:1a:de:86:0c:d6:b7:f0:14:2b:37:
6e:d2:2e:66:4e:db:39:23:ec:34:c7:51:6b:b5:f9:
11:32:9f:37:41:81:fa:8e:d0:64:d9:e5:21:e8:c3:
ef:25:98:17:16:5f:b0:99:2d:9c:f0:03:ea:3c:6c:
92:5f:41:03:f2:46:36:c6:1a:4f:11:0b:40:0e:7d:
06:25:5e:ca:42:e3:f1:3d:f7:3b:66:fd:18:23:d4:
eb:53:6c:05:63:e9:04:9d:45:47:d5:70:d2:77:04:
a4:23:4d:cd:66:23:c0:c4:06:3e:95:06:11:69:ab:
2b:da:5f:19:1d:50:36:9f:68:33:d0:04:8e:ff:18:
c4:17:73:5a:cb:6a:44:c0:a1:99:53:1f:c9:93:5e:
3c:0b:06:bf:66:c4:c1:c0:a5:2f:af:62:15:ca:b1:
d4:b7:d6:f6:79:45:8b:b1:87:f4:95:dd:8a:54:21:
83:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C8:BE:87:0A:8D:61:8B:29:EF:91:49:32:35:12:B0:D7:E7:83:4E
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:a8:0f:bd:a1:69:31:b1:06:a7:ff:27:fa:b1:dc:1c:a0:a8:
7c:e8:84:0f:e6:ca:ec:a8:ab:4d:af:e4:ef:22:e1:e5:19:25:
87:34:e9:18:32:68:d0:43:7e:f6:6a:4f:33:1d:d2:f7:e8:76:
30:5b:ea:54:37:0e:f4:b3:14:56:4a:d6:c3:87:0b:63:e2:04:
ea:48:0d:12:64:71:de:74:89:60:99:8c:c5:bf:67:9a:22:76:
52:51:18:5b:9a:41:5e:b4:ef:4d:7c:d0:42:1d:12:4d:ac:94:
dd:ac:91:d8:61:c0:b4:f0:fa:e8:ff:d5:60:38:b9:9e:3f:64:
90:06:aa:b6:e2:2d:22:02:19:24:9a:8a:3d:b3:9b:71:30:eb:
21:c4:36:e7:32:c7:f8:5a:ae:9a:db:70:4d:2a:23:e9:b3:3d:
b3:52:77:1e:63:66:56:90:20:76:8a:52:dc:6d:5f:ca:5c:7e:
55:47:1c:0a:dc:eb:eb:e2:0c:f2:eb:2a:d5:45:f7:fb:14:e9:
41:8e:0c:c7:26:52:ac:c2:aa:20:61:d4:a1:98:b7:2a:b3:f3:
83:04:53:a6:1e:37:88:82:8e:09:f4:7f:cd:c4:42:f8:16:59:
ec:c1:d3:15:95:00:28:0b:e9:01:00:fa:8b:e5:21:a2:47:ed:
fd:43:e9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:32:54 2026 by rpki-client