Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
File: aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft (raw, json)
Hash identifier: TsnP/DgWxznbLKKGBmZXLPWn5lKT8zQM2hubiL3FJTs=
Subject key identifier: 98:43:31:84:B8:58:18:00:A9:59:21:14:2B:92:FD:4E:1D:5D:0F:C5
Authority key identifier: 68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
Certificate issuer: /CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Certificate serial: 019D992AF440C9357B381F51978BE11F1DAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
Manifest number: 077F
Signing time: Fri 17 Apr 2026 02:00:22 +0000
Manifest this update: Fri 17 Apr 2026 02:00:22 +0000
Manifest next update: Sat 18 Apr 2026 02:00:22 +0000
Files and hashes: 1: 5JP3EEY5bnKcvSQg_d_0jzLOuso.roa (hash: nHWCClQokNNDpIYjG0ERFvivPbSmCZ+n7ir/zAxywpM=)
2: aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl (hash: QRXjrxXX/X3WSFunO3FpfvfmRYYIn9Znm+zcV2yJKJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2a:f4:40:c9:35:7b:38:1f:51:97:8b:e1:1f:1d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Validity
Not Before: Apr 17 02:00:22 2026 GMT
Not After : Apr 18 02:00:22 2026 GMT
Subject: CN=98433184b8581800a95921142b92fd4e1d5d0fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2d:d9:c8:fc:24:d7:ae:20:ce:76:b3:58:d0:
80:8d:23:39:f9:4a:27:d2:7d:b4:93:c3:aa:9c:c4:
c6:67:9d:c3:39:ba:fc:f9:e1:3b:53:7a:26:51:65:
b3:23:b9:b2:40:85:5c:9b:fc:ad:82:ce:a3:8a:4d:
09:db:bf:8b:46:28:2f:e4:8b:c0:8a:df:68:78:a7:
eb:9c:59:1d:9f:4a:71:8b:4a:47:c5:9a:64:5d:30:
02:8a:c2:e3:df:89:20:4f:ee:4c:b7:d4:55:95:53:
03:e8:df:9a:1b:6a:18:66:d8:22:ab:8c:b7:54:3a:
52:15:19:5c:96:05:59:e2:7e:bf:5c:63:1e:00:a7:
8b:40:7b:a7:4f:49:46:30:06:b7:42:55:9c:17:cf:
eb:a6:2b:fb:fb:5d:99:f3:fb:e2:2c:41:f6:b3:be:
c5:1e:30:83:e3:ea:8c:d4:80:bd:fb:d9:60:c2:98:
53:ad:55:77:8c:2c:89:9f:c6:e6:5b:b2:78:25:78:
4c:e9:d1:3f:77:40:83:1c:a9:0d:08:73:d1:b2:8e:
10:df:9f:e9:cb:41:5b:19:16:f0:42:2b:2b:5d:12:
6c:d8:62:13:07:e8:05:f4:12:2a:bc:90:0f:22:94:
b9:d0:57:a3:3f:f1:40:37:9d:98:bd:96:bb:43:00:
88:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:43:31:84:B8:58:18:00:A9:59:21:14:2B:92:FD:4E:1D:5D:0F:C5
X509v3 Authority Key Identifier:
keyid:68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:68:9b:5b:e3:40:ed:f9:12:60:4c:1e:79:8c:f5:08:b1:89:
c4:d9:6b:af:04:68:ef:98:93:63:51:5f:78:ce:9c:e0:7f:ef:
b1:67:a8:76:51:91:0a:6d:4d:09:fe:2e:43:dd:06:a7:d8:bf:
58:b3:07:6a:68:e8:7d:bd:7c:fa:6b:0e:1a:bf:6e:68:2d:92:
26:e6:14:9e:3a:54:c4:be:15:ab:4b:0f:77:8c:e4:fb:0c:61:
ae:98:85:15:09:b0:2b:53:c5:33:1d:2f:d7:6b:04:32:77:a0:
13:14:1d:62:e5:02:3d:e4:0d:82:95:dc:f8:6a:3e:2e:00:2f:
f5:5e:02:31:49:9a:07:ab:2b:98:c3:e8:71:6f:d2:46:be:b2:
5e:49:cf:79:cc:61:ae:34:fc:9a:ec:54:ee:7b:47:6a:51:1c:
fb:0c:b6:d4:27:d6:56:aa:8c:91:5b:49:34:e1:8b:e1:ba:b0:
2e:c7:1f:df:58:1b:ae:03:1c:fb:ab:b2:72:db:5c:53:65:99:
fe:08:b9:73:54:8e:71:ed:59:72:5e:44:86:42:f4:1c:38:e6:
43:c5:e2:c1:13:c9:1f:36:82:26:da:72:39:6a:ea:ff:e0:b6:
52:43:7a:ae:ba:e5:c5:67:fe:78:f2:64:bf:db:8a:ac:f6:b4:
d2:79:b3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:08:14 2026 by rpki-client