Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
File: AquPiJLQHdTIQHJMu6uQwMpglDI.mft (raw, json)
Hash identifier: GJDA0U29AySN3aq7Xo0gWp9sxjr1xn28jNPAnfCt0HQ=
Subject key identifier: 33:7F:20:07:9B:2B:FC:D6:C3:96:F7:D3:C0:51:E2:00:B5:E1:DC:EB
Authority key identifier: 02:AB:8F:88:92:D0:1D:D4:C8:40:72:4C:BB:AB:90:C0:CA:60:94:32
Certificate issuer: /CN=02ab8f8892d01dd4c840724cbbab90c0ca609432
Certificate serial: 019D98F46F30D6499FC036EF57A7171CF3E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AquPiJLQHdTIQHJMu6uQwMpglDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
Manifest number: 18BC
Signing time: Fri 17 Apr 2026 01:00:49 +0000
Manifest this update: Fri 17 Apr 2026 01:00:49 +0000
Manifest next update: Sat 18 Apr 2026 01:00:49 +0000
Files and hashes: 1: AquPiJLQHdTIQHJMu6uQwMpglDI.crl (hash: VjzWrQepVYmrM4xpVs0qCtBHRszeFvI5VfVM4ZK/1Ao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AquPiJLQHdTIQHJMu6uQwMpglDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:6f:30:d6:49:9f:c0:36:ef:57:a7:17:1c:f3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02ab8f8892d01dd4c840724cbbab90c0ca609432
Validity
Not Before: Apr 17 01:00:49 2026 GMT
Not After : Apr 18 01:00:49 2026 GMT
Subject: CN=337f20079b2bfcd6c396f7d3c051e200b5e1dceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8e:d1:a6:64:4f:c1:e7:ab:e6:27:d1:f8:ff:
13:3b:06:e8:2c:bd:85:c1:be:72:14:e3:9c:78:9f:
63:26:3e:70:c0:0e:fd:7c:33:62:c2:c8:26:8d:1f:
62:40:ad:bb:a2:1a:28:68:27:c3:d9:01:cc:ac:82:
ea:53:41:ef:a8:e5:ba:f9:d9:8b:16:d7:2c:d3:e5:
12:0f:2a:dd:08:a2:ff:cf:c7:5e:0f:13:8f:e4:bf:
7b:8d:08:95:ef:60:4e:15:31:8e:b8:d0:3e:9b:91:
56:1e:31:6d:00:bf:5d:e6:c0:b3:59:fd:ad:78:e8:
13:8e:ab:a6:54:93:6f:06:4f:fa:47:e9:f2:97:97:
80:37:3f:de:e4:44:c4:8d:90:aa:83:ce:23:67:f1:
04:33:01:30:de:fa:5a:b3:88:93:1a:07:a4:5c:47:
3e:b5:af:4a:f8:ae:26:67:34:11:4d:f7:d8:ee:c8:
f5:0d:7d:a4:36:a8:68:2d:41:de:0b:01:fd:08:eb:
b1:60:65:96:ab:2c:5d:d2:48:81:09:fb:1d:83:f7:
bf:ea:a9:6b:9a:a3:fa:fe:6f:ad:22:a8:26:60:51:
8c:6f:1b:ff:32:ae:cb:8d:4f:d8:20:6a:af:2f:97:
91:19:10:79:ff:ef:13:fa:37:f9:25:13:6a:b6:9e:
0e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7F:20:07:9B:2B:FC:D6:C3:96:F7:D3:C0:51:E2:00:B5:E1:DC:EB
X509v3 Authority Key Identifier:
keyid:02:AB:8F:88:92:D0:1D:D4:C8:40:72:4C:BB:AB:90:C0:CA:60:94:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AquPiJLQHdTIQHJMu6uQwMpglDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:60:dc:1c:0e:50:52:48:16:2e:65:70:d2:db:f4:9e:50:65:
c3:34:7c:ea:66:cf:9a:c7:0c:0a:af:ab:99:48:d9:96:15:9e:
87:19:2c:df:4e:e3:99:97:67:39:6e:9c:fe:11:c1:78:fe:e2:
45:22:18:c8:d7:cf:17:c8:ee:f7:8d:a6:f6:00:51:59:b8:10:
5d:e0:26:d2:80:f0:19:75:ca:28:5f:a4:34:60:b7:51:b3:7d:
f7:35:d6:c1:37:55:62:9f:c5:b6:d1:bd:ca:56:ed:52:15:c5:
66:de:af:00:5a:ca:f2:d6:b3:cb:d8:99:86:76:5a:60:e6:01:
03:fd:00:09:67:11:4d:e4:ad:a7:38:bf:9f:19:66:56:84:07:
cb:11:da:f4:fe:30:ef:be:82:7d:78:58:56:01:d7:ee:d7:e0:
34:30:6b:06:c7:42:a1:14:99:74:08:85:df:7e:06:23:09:ca:
ab:98:81:d6:62:eb:13:eb:30:78:db:07:41:9a:c8:7d:30:c9:
fc:95:60:60:00:88:07:00:0b:a0:06:12:47:77:24:8a:51:fc:
07:22:bc:77:f0:81:0a:cb:ae:d0:ab:62:4e:69:e3:94:46:fb:
2b:b7:95:fa:32:9d:90:78:3d:b0:4a:b6:f0:8f:bd:f6:fa:ff:
19:b5:71:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:06:16 2026 by rpki-client