Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
File: APTMQSzDD7L598N8PjkL7F5iVrA.mft (raw, json)
Hash identifier: 0KEU56JvFjux/NZS4zBdrrveJNj0KE5cYl3/6I+sbp4=
Subject key identifier: 8B:FC:AC:C6:D3:15:D2:90:C9:32:6B:4D:78:03:F5:D0:C7:A6:FB:7C
Authority key identifier: 00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
Certificate issuer: /CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Certificate serial: 019D26CD058C1EDB4100F1D482762B39A9A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
Manifest number: 17B3
Signing time: Wed 25 Mar 2026 21:01:03 +0000
Manifest this update: Wed 25 Mar 2026 21:01:03 +0000
Manifest next update: Thu 26 Mar 2026 21:01:03 +0000
Files and hashes: 1: APTMQSzDD7L598N8PjkL7F5iVrA.crl (hash: xsejnfSkTQ1WNwvKNV1teZhb8R5drAV1pOkfHs5YVVs=)
2: e9d8j5pFRds2eyf7EtWu3Q1x5eg.roa (hash: CdFMDMixOpI+FPixrzk29327d47UICMJvvmv5LgznBY=)
3: kuiIDIypzpnRYSUj7glsmT4M63U.roa (hash: AhvHWn0Zw078JqRJpm27EiFTVl5Aqm3ouDehrx0PfD8=)
4: mxN2TKqQ4XDyt7g59_1xXJ2YiGw.roa (hash: gyYJydWjo49Ti2U/k5vphqLtIT2Tqis569ex6zcT+xk=)
5: s9ZJK2zje_SORtRoUS4vOJ62smg.roa (hash: W215uw89IUKrBniSDQnlmBxm007HZAFFpxBNjy0mZ7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:05:8c:1e:db:41:00:f1:d4:82:76:2b:39:a9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0
Validity
Not Before: Mar 25 21:01:03 2026 GMT
Not After : Mar 26 21:01:03 2026 GMT
Subject: CN=8bfcacc6d315d290c9326b4d7803f5d0c7a6fb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:07:ee:50:99:76:01:54:07:44:6b:b6:75:d1:
0c:8a:3b:d4:78:fe:df:a5:8f:d5:eb:d1:26:eb:a3:
ca:ee:f7:84:01:9e:9e:5d:21:62:85:65:85:7b:95:
fd:c8:17:f5:0b:64:69:26:bd:04:f8:94:56:7d:60:
00:1e:2f:d9:ef:e6:9d:6c:b8:69:65:7f:0e:3e:8f:
1f:45:63:b4:6d:51:07:d6:c9:06:8a:b8:c2:e8:b2:
61:87:5d:06:a7:45:a7:01:ea:3d:5a:27:c5:61:ce:
cd:c1:97:1d:1e:81:01:8b:00:fc:dd:1e:c2:df:82:
21:37:f5:df:a2:7d:79:83:c3:11:2f:96:f4:7c:05:
ea:e7:5d:39:00:69:f8:aa:1b:62:ac:c2:11:1d:66:
5b:25:d7:b5:fc:ea:42:69:97:09:91:41:cc:cd:23:
c8:dd:af:fd:01:4c:54:3d:a4:4d:5b:66:d5:12:63:
d1:01:47:dd:56:a2:bc:27:49:d7:f7:1c:58:f2:2e:
8f:8d:25:7f:a2:44:f4:25:d3:e5:87:61:45:e4:95:
9f:35:7c:20:86:e7:84:90:1e:9f:71:0d:39:fb:d9:
2b:f5:04:89:6c:07:d7:8c:29:d2:0c:d8:90:46:8b:
83:cc:24:8d:e0:80:2d:47:0b:68:3c:fb:39:1e:32:
0f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:FC:AC:C6:D3:15:D2:90:C9:32:6B:4D:78:03:F5:D0:C7:A6:FB:7C
X509v3 Authority Key Identifier:
keyid:00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:8a:b0:1e:43:e3:0d:74:c6:31:bc:1c:11:3e:4b:c4:f5:af:
fc:8e:0a:09:26:06:37:a0:ad:c3:fc:1c:84:0b:d4:78:33:88:
bc:59:63:86:62:f6:95:18:cd:dd:0e:bc:ed:97:9f:83:3e:51:
d7:4e:9c:a0:8d:28:67:81:c8:2f:36:da:66:fb:2e:74:47:86:
1c:67:ff:3a:2a:b7:0c:f9:41:f2:fb:18:17:e5:7e:35:28:58:
77:70:60:8a:a6:91:cf:aa:a1:1b:8d:06:3d:80:af:44:0a:b0:
c4:3a:7f:76:fe:31:26:3c:02:7b:cd:58:70:fc:9d:a2:2c:49:
60:4c:0c:f6:f7:ba:92:bb:34:df:47:85:06:2c:6c:cf:4d:d1:
5d:90:b0:61:3c:0b:a6:96:b3:8d:dc:bf:d0:b0:a4:17:04:ec:
3e:77:c2:1c:18:65:de:d4:c9:a2:e8:a7:ec:11:ab:f5:3c:b5:
81:e6:16:97:25:88:e1:ef:e6:26:7d:ef:e7:62:c0:94:ad:85:
e2:26:00:dd:68:c8:75:bf:e8:29:74:05:d6:54:85:aa:71:df:
f3:7b:ad:ed:e5:e1:16:94:33:d9:a2:56:d7:99:13:28:8b:54:
ae:d7:f8:de:4a:44:a8:67:a6:e8:2f:4d:b0:ea:5b:81:f9:df:
28:04:1f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:44 2026 by rpki-client