Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
File: aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft (raw, json)
Hash identifier: 1o90qZvCo4RTGh1tuzv9H7Hgelds1A+hUPCZQiN6buw=
Subject key identifier: 58:4A:1F:9A:06:B8:B5:14:2D:08:A0:E0:6E:BA:EB:22:F6:0D:16:AA
Authority key identifier: 68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
Certificate issuer: /CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Certificate serial: 019EC2924F8A3C619E85C71C7D2E66799DA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
Manifest number: 0819
Signing time: Sat 13 Jun 2026 20:00:28 +0000
Manifest this update: Sat 13 Jun 2026 20:00:28 +0000
Manifest next update: Sun 14 Jun 2026 20:00:28 +0000
Files and hashes: 1: 5JP3EEY5bnKcvSQg_d_0jzLOuso.roa (hash: nHWCClQokNNDpIYjG0ERFvivPbSmCZ+n7ir/zAxywpM=)
2: aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl (hash: beanJtjEy/OmL35SwUwjQ1BEPu3RhAry+fOxTe7nSs8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:4f:8a:3c:61:9e:85:c7:1c:7d:2e:66:79:9d:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Validity
Not Before: Jun 13 20:00:28 2026 GMT
Not After : Jun 14 20:00:28 2026 GMT
Subject: CN=584a1f9a06b8b5142d08a0e06ebaeb22f60d16aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a9:fc:7f:bb:d9:64:e2:7e:76:f2:2f:52:ed:
bb:26:3b:a9:66:29:84:8d:a6:e1:9d:94:3b:e7:7f:
81:a0:6b:9e:e3:84:03:30:56:f8:42:39:e2:8a:d5:
b2:67:61:2c:f5:45:f6:37:e1:ea:fe:c7:e4:19:ee:
72:bf:19:01:b5:d3:c0:21:ea:eb:e7:83:2f:38:49:
75:53:04:e1:1d:ce:81:c1:69:66:0c:47:25:25:ae:
17:64:7a:c7:9a:15:29:e8:6b:e8:35:ea:15:db:82:
61:5f:c1:51:ec:d8:89:d1:ca:18:cc:7e:fe:dd:a6:
ad:9b:a6:24:fd:65:76:4c:71:0f:b9:be:83:2a:46:
04:aa:ec:94:da:8c:cd:ed:d7:88:ae:db:9a:52:ae:
74:31:f4:1a:0f:e4:0e:49:2f:b3:ab:88:29:9a:92:
45:cd:63:0e:08:e3:6e:13:ce:a8:6f:37:c5:58:42:
db:4b:f5:7a:86:35:a6:29:c2:49:f3:63:2a:47:70:
e1:31:42:e2:0b:1e:12:55:a2:29:1b:6a:37:d3:08:
70:83:d4:62:90:57:6b:e3:c8:c8:73:d1:1f:e9:43:
6c:f6:01:bb:d5:44:7e:5a:ac:4c:e6:48:2b:21:d7:
0a:c4:8d:78:c4:b9:77:f2:ed:29:5f:1f:a4:a7:97:
7d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4A:1F:9A:06:B8:B5:14:2D:08:A0:E0:6E:BA:EB:22:F6:0D:16:AA
X509v3 Authority Key Identifier:
keyid:68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:ea:f2:20:f2:ba:46:46:4b:cf:23:43:26:79:67:98:03:35:
b1:e1:70:fa:6e:c8:8e:d1:70:57:73:64:57:d0:32:ac:cf:5a:
d1:a1:83:e7:14:ad:fc:e8:07:24:b5:26:38:9c:34:e1:a7:0f:
b8:28:2a:7d:8a:9e:7d:27:6a:33:29:02:0d:d1:f6:52:3c:38:
0d:84:14:d5:d8:7a:93:2f:dc:d3:0b:66:4f:75:b7:43:64:ad:
0f:bc:c0:aa:bb:22:0b:77:36:c8:a4:3d:b7:bf:aa:f6:97:bf:
3c:92:fd:ab:bf:61:03:2e:0e:73:ef:65:04:f0:7d:c7:fe:a3:
4d:89:fd:94:63:66:36:f9:d1:55:89:2f:5a:be:69:79:7d:bc:
59:d5:04:d5:19:33:3e:2d:96:b3:37:29:c0:14:95:8a:75:29:
2b:a4:df:d4:63:56:63:04:09:c5:ae:c3:e9:94:f4:4a:93:35:
7d:ff:e5:8f:8f:e4:f0:62:dd:ff:85:29:42:42:d1:db:3c:d9:
6b:8b:f9:32:c4:64:e7:9e:c4:ad:5f:85:04:8a:9b:d4:e5:1d:
1e:aa:44:8b:23:6a:6c:f7:71:bd:a6:14:1e:f1:fa:6c:21:85:
3d:3a:2a:0d:71:42:a4:c8:d1:61:1f:0a:09:79:2b:f5:35:ec:
a6:7c:c4:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Ckk+KPGGehcccfS5meZ2jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZjgzZTJhMzQxNDVhZDQ3ZTBjYzJiM2M3OWZjNjMxMmJh
ZTJjNzEwHhcNMjYwNjEzMjAwMDI4WhcNMjYwNjE0MjAwMDI4WjAzMTEwLwYDVQQD
Eyg1ODRhMWY5YTA2YjhiNTE0MmQwOGEwZTA2ZWJhZWIyMmY2MGQxNmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6n8f7vZZOJ+dvIvUu27JjupZimE
jabhnZQ753+BoGue44QDMFb4QjniitWyZ2Es9UX2N+Hq/sfkGe5yvxkBtdPAIerr
54MvOEl1UwThHc6BwWlmDEclJa4XZHrHmhUp6GvoNeoV24JhX8FR7NiJ0coYzH7+
3aatm6Yk/WV2THEPub6DKkYEquyU2ozN7deIrtuaUq50MfQaD+QOSS+zq4gpmpJF
zWMOCONuE86obzfFWELbS/V6hjWmKcJJ82MqR3DhMULiCx4SVaIpG2o30whwg9Ri
kFdr48jIc9Ef6UNs9gG71UR+WqxM5kgrIdcKxI14xLl38u0pXx+kp5d9XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhKH5oGuLUULQig4G666yL2DRaqMB8GA1UdIwQY
MBaAFGj4Pio0FFrUfgzCs8efxjErrixxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVBnLUtqUVVXdFItRE1Leng1X0dNU3V1TEhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81ZTlmOTAtYTZiMC00ZmQ4LWI4ZGQt
NzkyODAyYzQzOTI1LzEvYVBnLUtqUVVXdFItRE1Leng1X0dNU3V1TEhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy81ZTlmOTAtYTZiMC00ZmQ4LWI4ZGQtNzkyODAyYzQzOTI1
LzEvYVBnLUtqUVVXdFItRE1Leng1X0dNU3V1TEhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlOryIPK6
RkZLzyNDJnlnmAM1seFw+m7IjtFwV3NkV9AyrM9a0aGD5xSt/OgHJLUmOJw04acP
uCgqfYqefSdqMykCDdH2Ujw4DYQU1dh6ky/c0wtmT3W3Q2StD7zAqrsiC3c2yKQ9
t7+q9pe/PJL9q79hAy4Oc+9lBPB9x/6jTYn9lGNmNvnRVYkvWr5peX28WdUE1Rkz
Pi2WszcpwBSVinUpK6Tf1GNWYwQJxa7D6ZT0SpM1ff/lj4/k8GLd/4UpQkLR2zzZ
a4v5MsRk557ErV+FBIqb1OUdHqpEiyNqbPdxvaYUHvH6bCGFPToqDXFCpMjRYR8K
CXkr9TXspnzENA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 23:18:50 2026 by rpki-client