Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
File: ap2Z4esn7Hq76TViechBGkEw_co.mft (raw, json)
Hash identifier: LxRF9Lcvv3DEEibxRsNCJYe34X+OC7IG7/nwGSahAaY=
Subject key identifier: 61:6E:E5:A0:A4:28:38:04:0A:04:04:C0:FB:5E:22:9E:FC:A0:22:02
Authority key identifier: 6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
Certificate issuer: /CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Certificate serial: 019D2771FC477B14F4CFD6A2F8C2B6C8F36F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
Manifest number: 0EFC
Signing time: Thu 26 Mar 2026 00:01:14 +0000
Manifest this update: Thu 26 Mar 2026 00:01:14 +0000
Manifest next update: Fri 27 Mar 2026 00:01:14 +0000
Files and hashes: 1: ap2Z4esn7Hq76TViechBGkEw_co.crl (hash: VjzHzvc1KOAu6aajdDSEgQ3B9NOXvKpTcsu9VWMW6As=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:fc:47:7b:14:f4:cf:d6:a2:f8:c2:b6:c8:f3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Validity
Not Before: Mar 26 00:01:14 2026 GMT
Not After : Mar 27 00:01:14 2026 GMT
Subject: CN=616ee5a0a42838040a0404c0fb5e229efca02202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7b:63:83:33:2a:0e:e3:7c:ca:7e:05:9d:0d:
62:42:54:f3:6c:5b:fc:e8:f6:44:75:82:00:4c:80:
b8:9f:36:bc:7d:bb:c9:44:bf:dd:9f:c4:b5:72:61:
ab:9e:69:5c:3a:19:6e:11:55:98:91:7b:c3:88:8d:
11:cb:b1:cf:f5:e8:25:ca:fc:52:87:b6:90:49:80:
8c:7d:ba:5d:bf:2f:55:f9:63:6d:bd:c9:d3:f2:03:
99:47:36:b5:28:79:0c:ee:8c:73:dd:8a:49:cd:9e:
7e:95:05:37:26:3d:e3:f6:51:76:d2:69:22:bb:20:
ad:44:60:2b:3c:a7:40:0d:e4:0c:f5:88:b8:64:17:
6b:cb:0a:4c:6b:81:a7:d0:c0:75:19:7c:29:93:7f:
ed:a0:d7:06:ec:3c:9f:f4:44:34:10:f3:ef:cd:ec:
b1:11:eb:6a:47:6d:a9:3c:ea:ba:91:d0:78:f4:98:
ac:f4:13:ed:ba:71:4c:94:d8:77:5c:8b:6b:8c:05:
fe:99:41:e6:4e:75:5a:a3:1e:db:61:be:85:38:4d:
17:cf:d0:f2:7b:20:6d:1c:c1:30:9c:4d:42:70:1b:
f2:a5:d1:d9:ad:3d:15:7d:14:13:51:d4:31:21:20:
6f:96:9f:90:fd:74:95:92:c4:59:64:50:5c:96:6d:
df:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6E:E5:A0:A4:28:38:04:0A:04:04:C0:FB:5E:22:9E:FC:A0:22:02
X509v3 Authority Key Identifier:
keyid:6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:f9:e7:13:30:91:47:72:1f:ad:cc:5d:18:bd:bb:50:f8:7b:
a7:fa:1d:83:0b:87:5b:be:fe:d6:d1:04:62:7d:29:e9:f0:33:
54:af:58:2b:d0:ee:6c:33:a2:e7:96:ed:a5:05:1c:71:91:bb:
e3:f1:80:a6:d2:1d:a6:2d:60:59:50:fa:ae:e4:03:aa:3b:c6:
21:04:94:67:2e:0f:75:f9:7e:ff:b8:16:9c:f3:20:41:78:f2:
51:fc:b7:6a:87:3f:f8:89:26:08:91:dd:8b:bf:9d:aa:7b:2b:
4c:38:b1:17:25:b0:75:eb:dc:44:1c:aa:66:b7:90:c4:5d:5b:
7e:bf:c9:74:83:34:8b:19:59:fe:ff:77:49:5a:e8:06:ce:b2:
b4:2b:21:83:47:5a:9e:5c:8f:dc:0f:c3:8f:3f:f1:6c:9f:03:
3e:47:1a:ea:93:80:71:c2:f6:66:5e:3a:ee:d6:3a:ca:04:b2:
ac:f0:c8:ca:13:b7:31:93:21:1f:66:ab:eb:ce:99:b1:55:2e:
0d:f4:3b:13:9e:2c:8d:e8:7b:3f:37:84:94:eb:7f:c9:db:d7:
ef:01:3b:cd:a3:50:3e:24:75:9a:f2:90:0a:b6:b1:38:bd:36:
c9:eb:5a:00:6e:d2:5d:d7:3b:b8:78:29:ef:c8:e7:50:1b:59:
56:1b:39:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:28 2026 by rpki-client