Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier: 0sj0+LUD/zps5OZl8tQJxWADxV7Vjm96TKB/jb7MpKA=
Subject key identifier: 90:0C:81:20:72:72:B3:69:7A:64:88:82:F3:51:5F:88:11:4C:50:83
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial: 019D27A90D639F0998FD9E2990FA6DEE162D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number: 17DB
Signing time: Thu 26 Mar 2026 01:01:23 +0000
Manifest this update: Thu 26 Mar 2026 01:01:23 +0000
Manifest next update: Fri 27 Mar 2026 01:01:23 +0000
Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: APOe8KM7Muj8iN6dPDWVvGf1jZo0qHa3Thnshk4Ghbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:0d:63:9f:09:98:fd:9e:29:90:fa:6d:ee:16:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Validity
Not Before: Mar 26 01:01:23 2026 GMT
Not After : Mar 27 01:01:23 2026 GMT
Subject: CN=900c81207272b3697a648882f3515f88114c5083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1f:58:97:b6:83:f1:4f:ec:ca:e6:d8:98:ac:
d9:5c:06:1b:2c:b6:d8:3e:93:12:1c:a1:de:62:a8:
a9:b2:73:71:8a:b4:08:56:d8:13:f8:fd:8f:39:b1:
41:b7:f4:b0:65:24:59:c0:b5:24:0a:fc:c0:da:4b:
f6:4d:df:ae:8a:bd:af:f0:a7:b5:eb:3c:34:64:15:
21:ec:f8:6e:cc:ca:a5:7c:8b:62:bc:c5:d3:be:5e:
b4:1e:53:e0:14:a0:d6:68:f9:4f:a9:44:b3:14:4d:
ff:f3:be:16:2b:f7:d5:7a:68:e1:b4:2f:4b:e4:92:
f4:24:cb:04:f6:e8:e1:88:60:7b:28:cc:8c:ce:84:
59:4f:e1:1f:e2:62:2e:eb:c0:51:a4:b6:88:93:02:
d4:0a:94:9a:b8:1a:5e:2b:f4:ec:2a:e8:4b:00:9d:
88:6f:c6:43:22:76:fa:52:c6:f6:e8:da:17:88:69:
17:95:f5:4c:65:fd:f3:0a:d1:b0:6a:29:68:1f:7f:
2e:13:47:1b:17:10:43:31:45:6c:3d:67:32:e3:da:
c7:13:26:b9:73:2f:27:c2:c4:1a:ac:21:9a:71:02:
e9:24:3e:60:4c:d7:d2:76:60:32:84:0e:59:c2:6f:
1b:6e:45:b3:d1:6b:20:2c:35:1b:be:cb:ac:42:3d:
f0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:0C:81:20:72:72:B3:69:7A:64:88:82:F3:51:5F:88:11:4C:50:83
X509v3 Authority Key Identifier:
keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:47:76:14:db:62:42:51:53:f0:44:2e:bf:0b:ae:e0:f1:a8:
86:09:8b:0b:d9:e4:18:32:cd:63:d5:75:29:16:0c:0f:25:ed:
b8:a0:c9:a0:0d:5e:7b:77:d2:6f:d1:0a:55:b8:d4:61:21:d9:
17:9a:3c:be:f6:8d:fc:58:bf:01:ab:99:a7:52:a8:f2:3a:f1:
ff:28:8b:fd:9d:61:bf:cd:6f:0d:7a:04:82:7e:a2:f9:cb:88:
66:5f:03:bf:4b:d1:c6:e5:4a:b0:fe:86:6e:c1:a5:e0:53:bf:
65:15:fe:dd:94:0f:c4:18:14:a3:1a:ba:18:08:d2:0b:58:5c:
8d:f5:f9:aa:2a:fc:6c:6e:24:e7:44:50:32:3c:d7:e5:06:8e:
b8:31:2d:b1:66:d9:46:30:b9:95:e4:91:9e:dc:d9:53:28:73:
61:4a:f2:e6:ac:59:6b:49:c9:cf:a8:2a:1f:ba:60:08:a1:97:
16:92:69:56:3c:78:a0:e8:28:10:15:da:cf:0a:73:bc:ff:f9:
41:11:28:16:0a:1c:6c:86:34:82:53:10:aa:e4:77:2a:33:8d:
80:99:7f:a3:bc:0f:2a:21:ca:0a:e0:75:f0:aa:ca:1d:81:ef:
67:2e:ec:41:59:3d:95:d4:7b:27:9e:a3:28:c9:b2:7f:6c:64:
f2:65:ad:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:54:30 2026 by rpki-client