Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: WXMR1laKIruVfrAcYJJvAXQZu9tY7Xngk6QAiioXGWs=
Subject key identifier: 56:6E:96:D6:02:B1:51:CE:63:9C:3D:86:23:F4:2C:6D:58:77:2B:F7
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019D9C2D509E9ECC656A00EB2AE0CBF5F623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 16:01:48 +0000
Manifest this update: Fri 17 Apr 2026 16:01:48 +0000
Manifest next update: Sat 18 Apr 2026 16:01:48 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 3KYp/sfagf0GrIkSkSP1LbpMDJyPdhGNqdUusPdUFT4=)
2: JjDhj2srmVAP3AT2q_uafFZ9Ihw.roa (hash: u5PsqVAMH7Yc5b8Mh+/CsUxDWS3RTBQzxJkkDCsiaVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2d:50:9e:9e:cc:65:6a:00:eb:2a:e0:cb:f5:f6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Apr 17 16:01:48 2026 GMT
Not After : Apr 18 16:01:48 2026 GMT
Subject: CN=566e96d602b151ce639c3d8623f42c6d58772bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:20:e8:48:1a:60:b2:74:65:f8:4a:af:db:ff:
57:3b:83:2c:8d:bf:ae:0a:c4:d8:ec:59:87:f5:da:
54:30:34:4c:1c:26:db:4d:6f:ee:14:ae:17:03:93:
5e:f4:da:38:06:fd:fa:34:e2:ba:0d:11:8b:04:10:
f6:df:10:3d:07:94:cd:a5:4c:16:bd:6c:70:e0:c6:
d8:85:4a:30:55:88:d7:03:39:14:70:d6:5b:0c:fd:
f2:97:3a:ad:82:7f:b8:3e:74:45:99:06:bb:01:89:
a7:6f:41:13:6a:c9:f0:f2:5d:d4:aa:e0:bd:ff:4c:
ac:ef:89:7a:09:18:93:bc:29:c2:5f:16:d3:b4:4a:
12:54:41:b7:aa:6b:ae:20:77:d1:c4:8a:61:a4:4c:
5c:c3:ec:92:e9:e5:57:ec:36:24:6a:e8:48:7f:c8:
4b:df:9c:a8:a6:15:02:b8:1f:7d:a6:b0:22:e5:56:
32:b6:17:77:d5:96:eb:06:32:f2:e9:73:22:e6:4f:
38:b0:3d:a6:4d:38:73:9e:5e:fa:52:5e:4c:71:79:
5e:92:37:67:79:f3:c3:2e:94:4b:b2:09:43:02:2f:
70:76:60:dd:84:0e:f9:45:26:24:8a:60:a2:78:72:
36:a0:2b:33:e2:ed:75:a2:cd:fc:4a:1a:30:29:92:
1d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6E:96:D6:02:B1:51:CE:63:9C:3D:86:23:F4:2C:6D:58:77:2B:F7
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:92:8a:92:a0:05:9f:51:a2:eb:b3:3d:28:d3:6d:ca:2b:e7:
7f:35:5f:a0:60:f5:9b:c2:dd:73:f3:0e:5e:68:09:be:8c:3d:
a7:b1:66:33:1d:60:f6:f9:4a:96:0c:f4:18:ac:2a:47:40:7d:
b1:f4:1a:f6:f8:5e:44:6b:e6:ff:f2:fd:4a:46:88:02:b0:78:
92:d3:fa:56:c3:0f:6f:bf:d9:be:65:77:07:10:a3:c1:50:ae:
ee:e1:03:e2:8e:10:29:f8:a2:7c:5e:62:25:0d:87:8d:0d:40:
66:46:d7:0f:18:4e:f4:ac:38:0d:b0:81:fe:f8:a0:df:66:ba:
fb:94:81:b8:f3:5e:11:d8:01:83:cf:9e:2d:7d:77:11:0b:b3:
5b:dc:97:d4:a5:18:c2:77:bf:5f:a4:3c:f7:fb:5d:5b:66:d3:
3c:06:8c:02:ab:a7:a3:48:5e:ab:24:fd:fc:77:2b:e0:e3:db:
6f:e8:6a:7c:48:c0:52:44:e0:74:dc:6b:d0:d9:4f:58:dd:88:
a9:1d:6e:e7:cc:0d:cc:38:ca:d1:cb:d8:4d:db:9a:e6:92:72:
e0:6f:95:e4:9e:ed:7e:1a:27:c0:a1:f3:5f:7c:a8:d5:52:a9:
18:36:8e:46:aa:14:b5:a5:a7:36:9a:16:42:85:7b:4a:a1:4a:
ce:a6:92:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:04:06 2026 by rpki-client