Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json)
Hash identifier: yUZzBBBcywXawbbGzlFNTNVYK8M9hZ9yXuzsHZiKPhU=
Subject key identifier: A0:50:D3:B5:5A:40:9D:EB:6A:71:CD:13:9D:BB:6E:82:F6:02:FC:BA
Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Certificate serial: 019D27DF9340FCE52F390A939C44BB94531A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
Manifest number: 0A44
Signing time: Thu 26 Mar 2026 02:00:56 +0000
Manifest this update: Thu 26 Mar 2026 02:00:56 +0000
Manifest next update: Fri 27 Mar 2026 02:00:56 +0000
Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: e59UrqdSDBgU+v35AZzwdNyEaAJO0QEVp1k4Thdk62E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:93:40:fc:e5:2f:39:0a:93:9c:44:bb:94:53:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b
Validity
Not Before: Mar 26 02:00:56 2026 GMT
Not After : Mar 27 02:00:56 2026 GMT
Subject: CN=a050d3b55a409deb6a71cd139dbb6e82f602fcba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7e:6b:9e:1e:c3:c6:9d:d4:49:45:e3:af:8e:
e4:c9:f6:ee:85:61:f6:f0:d3:39:60:8e:43:37:26:
b9:a5:5b:d1:a4:95:ab:67:13:47:07:1b:74:f4:59:
fb:0c:d3:8a:d1:74:42:0c:88:32:be:ab:8e:69:54:
ae:fe:d5:30:d4:87:64:3e:89:44:8f:c5:f7:f6:ea:
3d:cd:64:b9:ee:de:5a:3f:21:f6:6f:b4:82:5e:60:
1c:be:85:b2:18:32:76:fd:67:41:ef:c5:d9:5a:84:
3a:07:27:f6:7f:16:30:64:25:73:5f:64:df:28:93:
12:e2:12:2d:a4:93:14:b6:be:ed:3e:19:97:52:d2:
a7:47:9f:04:58:fc:06:17:23:d1:77:01:d5:62:83:
6c:ca:85:01:75:f7:89:36:74:c8:95:95:37:b3:53:
4c:93:8f:53:3f:7a:0e:27:27:06:a4:83:3b:36:94:
85:e2:0f:39:32:8b:50:ac:98:f3:19:d4:c6:1a:a0:
4c:84:36:0f:b1:08:79:d6:49:84:4a:2b:7b:8c:3c:
26:48:ad:4d:42:19:f3:a7:c5:f8:6b:54:e1:d2:1e:
2b:21:c1:d4:53:9d:26:af:31:74:90:24:5e:fc:e3:
93:11:ab:4b:ce:b3:2b:a5:a8:44:36:25:8b:af:a1:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:50:D3:B5:5A:40:9D:EB:6A:71:CD:13:9D:BB:6E:82:F6:02:FC:BA
X509v3 Authority Key Identifier:
keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:d8:10:3d:f5:02:b6:c7:d4:f4:6b:83:51:e6:02:e7:53:a3:
aa:e3:39:05:f7:8d:69:bf:1a:f6:41:2f:51:77:2a:9b:2c:53:
61:53:05:7f:81:4d:88:31:80:e6:20:5b:c5:a6:29:c6:11:a8:
85:37:3e:0b:86:00:d1:f2:8b:2f:db:55:44:21:6f:b1:3b:9d:
53:dc:3e:ef:ce:76:83:b0:c2:33:d7:2c:07:3a:b3:76:40:c6:
8d:54:0c:90:f4:40:28:87:2d:8c:ab:a7:b5:d1:98:64:1c:13:
fd:0d:a6:a5:37:c2:3b:c0:9b:56:00:1b:ce:79:ef:1e:8a:76:
82:5c:af:00:ff:ed:25:f8:5f:87:cb:e8:34:4b:d5:b4:ff:34:
bf:9e:03:c0:40:32:3f:d8:a1:9d:ce:fe:41:27:d0:57:af:13:
d8:af:68:43:a5:27:e2:cc:5a:78:94:af:65:0a:6f:98:36:06:
cd:35:1d:ff:af:62:28:29:54:78:10:70:93:20:f2:d6:ec:29:
50:c3:c2:05:7c:47:9b:9e:0d:bc:a3:aa:9a:48:d4:f3:28:08:
59:00:3d:2b:72:11:18:19:ab:ea:de:d4:f7:5c:c0:e8:fb:0c:
c7:96:b9:bd:43:c0:dc:57:98:68:02:29:df:0c:4d:cf:ad:cb:
91:21:71:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n35NA/OUvOQqTnES7lFMaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZmMzYjA5ZjU2ZjhhN2YxZTZiZTNjOTRmMGYwODhhNDJh
MmNiNWIwHhcNMjYwMzI2MDIwMDU2WhcNMjYwMzI3MDIwMDU2WjAzMTEwLwYDVQQD
EyhhMDUwZDNiNTVhNDA5ZGViNmE3MWNkMTM5ZGJiNmU4MmY2MDJmY2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA135rnh7Dxp3USUXjr47kyfbuhWH2
8NM5YI5DNya5pVvRpJWrZxNHBxt09Fn7DNOK0XRCDIgyvquOaVSu/tUw1IdkPolE
j8X39uo9zWS57t5aPyH2b7SCXmAcvoWyGDJ2/WdB78XZWoQ6Byf2fxYwZCVzX2Tf
KJMS4hItpJMUtr7tPhmXUtKnR58EWPwGFyPRdwHVYoNsyoUBdfeJNnTIlZU3s1NM
k49TP3oOJycGpIM7NpSF4g85MotQrJjzGdTGGqBMhDYPsQh51kmESit7jDwmSK1N
Qhnzp8X4a1Th0h4rIcHUU50mrzF0kCRe/OOTEatLzrMrpahENiWLr6EU6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKBQ07VaQJ3ranHNE527boL2Avy6MB8GA1UdIwQY
MBaAFGj8Own1b4p/HmvjyU8PCIpCostbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zNmI5YjEtNmFiNi00NzBlLWFhNDMt
Yzg1MzRhM2M5NDk4LzEvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8zNmI5YjEtNmFiNi00NzBlLWFhNDMtYzg1MzRhM2M5NDk4
LzEvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY9gQPfUC
tsfU9GuDUeYC51OjquM5BfeNab8a9kEvUXcqmyxTYVMFf4FNiDGA5iBbxaYpxhGo
hTc+C4YA0fKLL9tVRCFvsTudU9w+7852g7DCM9csBzqzdkDGjVQMkPRAKIctjKun
tdGYZBwT/Q2mpTfCO8CbVgAbznnvHop2glyvAP/tJfhfh8voNEvVtP80v54DwEAy
P9ihnc7+QSfQV68T2K9oQ6Un4sxaeJSvZQpvmDYGzTUd/69iKClUeBBwkyDy1uwp
UMPCBXxHm54NvKOqmkjU8ygIWQA9K3IRGBmr6t7U91zA6PsMx5a5vUPA3FeYaAIp
3wxNz63LkSFxbw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:56:34 2026 by rpki-client