Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
File: 3APMhzX27sAjqfI6BLLpDVOpIVI.mft (raw, json)
Hash identifier: gQ2oei0PeLADcW16Ek1+rveE2L8tJSWnIbanOwhL4hA=
Subject key identifier: 06:76:65:E2:BE:B2:65:6E:18:59:25:5E:CA:22:EE:35:79:E0:32:6A
Authority key identifier: DC:03:CC:87:35:F6:EE:C0:23:A9:F2:3A:04:B2:E9:0D:53:A9:21:52
Certificate issuer: /CN=dc03cc8735f6eec023a9f23a04b2e90d53a92152
Certificate serial: 019D98F511330833677F015AF1195C2AD8A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3APMhzX27sAjqfI6BLLpDVOpIVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
Manifest number: 0952
Signing time: Fri 17 Apr 2026 01:01:30 +0000
Manifest this update: Fri 17 Apr 2026 01:01:30 +0000
Manifest next update: Sat 18 Apr 2026 01:01:30 +0000
Files and hashes: 1: 3APMhzX27sAjqfI6BLLpDVOpIVI.crl (hash: M9fJvr3ZCwV9ET0t+q0A8vVTvOxizfmZ4qQqPl4TkRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3APMhzX27sAjqfI6BLLpDVOpIVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:11:33:08:33:67:7f:01:5a:f1:19:5c:2a:d8:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03cc8735f6eec023a9f23a04b2e90d53a92152
Validity
Not Before: Apr 17 01:01:30 2026 GMT
Not After : Apr 18 01:01:30 2026 GMT
Subject: CN=067665e2beb2656e1859255eca22ee3579e0326a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cf:5a:a8:2f:5a:d9:e7:9d:85:d3:d1:0f:ea:
d3:cd:29:dc:ca:8d:e7:d4:10:e8:cd:4f:58:89:86:
04:d0:bf:15:ad:cc:d2:c2:7d:81:18:6a:bf:3b:64:
2a:88:d7:c6:4c:19:09:a0:6d:d3:84:30:13:bc:04:
06:7b:7b:31:cc:cc:c5:0f:0b:b6:44:a2:34:f2:b9:
60:48:c3:a8:c0:27:1b:7e:08:8d:88:74:83:9b:c2:
aa:04:a2:13:53:97:7f:59:0c:e3:25:f6:f6:5e:31:
7a:02:33:c2:73:b7:8f:64:cb:6b:05:7b:9b:66:e3:
f8:3b:47:a8:21:53:f7:1d:ec:5b:c4:92:c3:7f:60:
20:fe:97:b6:ed:53:79:af:e3:46:cb:a9:ba:8a:f0:
f0:0a:73:9d:9f:fb:9a:7c:61:cc:9c:4c:20:63:0e:
c6:fb:01:0a:3e:83:aa:19:3a:1e:cc:74:77:aa:12:
e7:53:40:d1:ea:24:79:15:e6:e3:35:8e:9f:57:57:
cf:3b:39:0c:09:64:78:c1:0a:3a:02:21:dc:2c:41:
e5:cd:96:e3:ac:b1:84:61:7c:ed:04:6e:a7:45:a6:
9f:b6:86:66:7d:a1:6a:dd:53:0e:90:7f:df:87:e9:
a8:94:1e:b9:75:a2:75:6d:f9:53:7c:09:dc:a5:dd:
d4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:76:65:E2:BE:B2:65:6E:18:59:25:5E:CA:22:EE:35:79:E0:32:6A
X509v3 Authority Key Identifier:
keyid:DC:03:CC:87:35:F6:EE:C0:23:A9:F2:3A:04:B2:E9:0D:53:A9:21:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3APMhzX27sAjqfI6BLLpDVOpIVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b5662a-61a5-48a9-877b-c4453afb2933/1/3APMhzX27sAjqfI6BLLpDVOpIVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d4:61:30:6f:51:c1:d6:e1:5c:2d:6b:7a:5a:a8:97:aa:8e:
f6:71:bb:11:92:de:30:00:7b:46:6a:80:96:56:8e:9d:66:3a:
5c:01:65:c3:a4:4c:70:1a:71:a1:03:bf:70:bd:17:f9:aa:4f:
69:11:51:c0:71:95:59:ae:3f:f7:ee:a2:b7:25:78:a0:37:62:
cd:ff:88:66:23:50:4f:8b:21:65:ac:da:06:38:82:f2:8b:e6:
2b:47:1e:07:17:eb:bb:36:03:d6:72:60:e3:39:f9:1f:ec:71:
8b:5f:3f:d8:21:8a:36:fb:ac:e8:b0:61:4b:e5:be:59:a9:19:
b4:e7:c7:6f:db:3d:ef:18:e7:c8:f8:54:d1:2c:20:79:4f:93:
35:b7:82:75:17:29:7f:42:04:0a:70:f0:24:68:40:c4:a6:d4:
29:e5:ac:e5:05:04:74:30:e7:e2:ec:4c:a4:bb:c3:71:e2:94:
db:ce:5f:4b:0f:1e:ea:4c:e4:39:4d:f2:88:32:a9:b3:73:5d:
03:95:69:04:5e:c8:28:1d:25:de:d7:4a:a6:f5:90:e7:eb:59:
16:17:98:03:a6:a0:10:99:69:a5:4e:2c:42:e6:87:4a:77:a3:
12:70:aa:a5:33:fe:5d:bc:8e:1c:8f:bb:47:f3:89:29:35:d9:
54:50:dc:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9REzCDNnfwFa8RlcKtipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMDNjYzg3MzVmNmVlYzAyM2E5ZjIzYTA0YjJlOTBkNTNh
OTIxNTIwHhcNMjYwNDE3MDEwMTMwWhcNMjYwNDE4MDEwMTMwWjAzMTEwLwYDVQQD
EygwNjc2NjVlMmJlYjI2NTZlMTg1OTI1NWVjYTIyZWUzNTc5ZTAzMjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm89aqC9a2eedhdPRD+rTzSncyo3n
1BDozU9YiYYE0L8VrczSwn2BGGq/O2QqiNfGTBkJoG3ThDATvAQGe3sxzMzFDwu2
RKI08rlgSMOowCcbfgiNiHSDm8KqBKITU5d/WQzjJfb2XjF6AjPCc7ePZMtrBXub
ZuP4O0eoIVP3HexbxJLDf2Ag/pe27VN5r+NGy6m6ivDwCnOdn/uafGHMnEwgYw7G
+wEKPoOqGToezHR3qhLnU0DR6iR5FebjNY6fV1fPOzkMCWR4wQo6AiHcLEHlzZbj
rLGEYXztBG6nRaaftoZmfaFq3VMOkH/fh+molB65daJ1bflTfAncpd3UdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZ2ZeK+smVuGFklXsoi7jV54DJqMB8GA1UdIwQY
MBaAFNwDzIc19u7AI6nyOgSy6Q1TqSFSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0FQTWh6WDI3c0FqcWZJNkJMTHBEVk9wSVZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iNTY2MmEtNjFhNS00OGE5LTg3N2It
YzQ0NTNhZmIyOTMzLzEvM0FQTWh6WDI3c0FqcWZJNkJMTHBEVk9wSVZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9iNTY2MmEtNjFhNS00OGE5LTg3N2ItYzQ0NTNhZmIyOTMz
LzEvM0FQTWh6WDI3c0FqcWZJNkJMTHBEVk9wSVZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR9RhMG9R
wdbhXC1relqol6qO9nG7EZLeMAB7RmqAllaOnWY6XAFlw6RMcBpxoQO/cL0X+apP
aRFRwHGVWa4/9+6ityV4oDdizf+IZiNQT4shZazaBjiC8ovmK0ceBxfruzYD1nJg
4zn5H+xxi18/2CGKNvus6LBhS+W+WakZtOfHb9s97xjnyPhU0SwgeU+TNbeCdRcp
f0IECnDwJGhAxKbUKeWs5QUEdDDn4uxMpLvDceKU285fSw8e6kzkOU3yiDKps3Nd
A5VpBF7IKB0l3tdKpvWQ5+tZFheYA6agEJlppU4sQuaHSnejEnCqpTP+XbyOHI+7
R/OJKTXZVFDcYA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:14:56 2026 by rpki-client