Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
File: APkIwDKKjpc_pArFL8M359PE_tA.mft (raw, json)
Hash identifier: nIBLanD7fh9k0PtF6vMIjayzDF7rOGgV2h7WRmy9xDQ=
Subject key identifier: DA:2C:AD:9E:9E:0B:42:C0:E4:AB:60:7D:B5:A1:C0:8B:54:4C:98:79
Authority key identifier: 00:F9:08:C0:32:8A:8E:97:3F:A4:0A:C5:2F:C3:37:E7:D3:C4:FE:D0
Certificate issuer: /CN=00f908c0328a8e973fa40ac52fc337e7d3c4fed0
Certificate serial: 019D98F480589C21E7491D666734F9D1EFE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 01:00:53 +0000
Manifest this update: Fri 17 Apr 2026 01:00:53 +0000
Manifest next update: Sat 18 Apr 2026 01:00:53 +0000
Files and hashes: 1: APkIwDKKjpc_pArFL8M359PE_tA.crl (hash: FCURMT21j6o9OVWzVAehWaCZbbjY5h+ACibkj0toKQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:80:58:9c:21:e7:49:1d:66:67:34:f9:d1:ef:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f908c0328a8e973fa40ac52fc337e7d3c4fed0
Validity
Not Before: Apr 17 01:00:53 2026 GMT
Not After : Apr 18 01:00:53 2026 GMT
Subject: CN=da2cad9e9e0b42c0e4ab607db5a1c08b544c9879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:a5:4b:b8:2c:b7:2f:b2:eb:4b:67:44:53:
32:98:d4:6b:e2:10:e0:4a:57:53:13:82:c6:28:ae:
2f:7c:7a:ac:78:69:d9:82:d7:4b:e4:3d:92:1f:b9:
b7:86:6c:2b:15:c7:fb:8d:8e:25:ab:d4:86:df:f0:
39:3f:c1:9c:fa:38:99:90:73:d2:69:88:79:98:a2:
64:d1:84:d3:eb:da:c5:5a:71:ac:a1:55:70:24:cb:
ed:e5:4a:87:d9:39:cd:68:ee:69:37:eb:93:b1:bd:
5b:55:43:a1:f7:b4:d9:ac:e4:87:03:a5:9b:cc:f1:
70:a6:10:57:9d:9b:0a:ce:4b:ce:59:d4:d2:84:d6:
7e:d7:d4:b0:54:31:9c:5f:7e:56:9c:35:96:9f:40:
01:06:3a:1a:0d:6c:80:5e:22:10:3b:a7:b7:ee:87:
f6:83:0f:1e:c6:38:b8:05:51:98:46:0d:9c:f9:12:
87:16:f9:5f:ea:91:35:c5:d6:75:b4:a1:ef:3f:7b:
36:e0:f1:a4:3a:a4:21:e0:34:5f:2e:2b:62:9b:2d:
b1:2b:fc:0b:d5:ce:10:00:ac:0b:23:59:ba:01:27:
b7:95:f0:b2:06:d4:fc:ad:a1:97:21:11:75:11:22:
93:9d:3a:bc:38:9f:58:17:c8:5a:0f:85:e6:77:fd:
69:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:2C:AD:9E:9E:0B:42:C0:E4:AB:60:7D:B5:A1:C0:8B:54:4C:98:79
X509v3 Authority Key Identifier:
keyid:00:F9:08:C0:32:8A:8E:97:3F:A4:0A:C5:2F:C3:37:E7:D3:C4:FE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:58:81:7c:82:75:39:8a:c0:cd:a6:70:09:d0:26:8c:e3:63:
99:aa:61:a5:f2:34:51:ea:61:dd:fc:91:49:a2:a2:49:c5:a1:
07:e9:e1:aa:53:d2:08:7f:0f:5f:e7:8e:40:44:95:30:ae:16:
62:d9:0d:39:dc:5b:c0:b3:98:e7:fa:12:32:dc:79:a2:43:8a:
15:4e:47:2c:c5:5e:35:80:3a:de:ca:f2:a2:89:3a:89:bc:cf:
84:25:ab:91:d6:87:37:82:a5:b1:18:f3:e3:29:3a:05:15:aa:
c4:81:a4:4d:f4:63:6c:04:45:17:0f:1b:c7:61:32:a9:f9:32:
25:f6:fc:8b:ba:83:e3:5d:33:5c:81:8c:c3:01:d1:42:19:d3:
03:00:70:d7:e2:7e:9d:69:74:20:de:8d:16:6d:6c:b4:2c:f0:
67:bb:17:1f:7b:d7:6f:67:b1:fb:92:2d:be:9a:b3:8b:5e:9e:
ea:66:54:07:80:eb:3f:d5:1d:e4:06:a8:de:c3:fe:3b:7f:6f:
4c:b4:ff:1a:63:86:4a:15:65:41:bf:ef:7c:3f:d0:f2:ac:05:
5c:be:e9:55:d5:51:58:43:d6:b8:9e:bd:f7:cc:86:cd:24:c7:
3b:07:65:1c:d3:31:9a:02:28:8b:71:5f:3f:28:d6:2c:19:29:
07:dc:74:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:49:51 2026 by rpki-client