Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: HmcwvTNvehM0vB3irAYoxgnmTludN+RN4Y9GMspXiNA=
Subject key identifier: 90:F6:66:CD:36:91:11:DC:18:6C:3C:93:7E:AF:00:DD:24:EB:46:14
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019CACB4EDAEA76972C4BF205FABE92F69D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 04:01:04 +0000
Manifest this update: Mon 02 Mar 2026 04:01:04 +0000
Manifest next update: Tue 03 Mar 2026 04:01:04 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 4S6iJKiz5N4qKT3vi/xebEDFZ4amRYsOBj8gHs2slu0=)
2: JjDhj2srmVAP3AT2q_uafFZ9Ihw.roa (hash: u5PsqVAMH7Yc5b8Mh+/CsUxDWS3RTBQzxJkkDCsiaVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:ed:ae:a7:69:72:c4:bf:20:5f:ab:e9:2f:69:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Mar 2 04:01:04 2026 GMT
Not After : Mar 3 04:01:04 2026 GMT
Subject: CN=90f666cd369111dc186c3c937eaf00dd24eb4614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:17:9e:de:23:b6:19:9f:cd:c2:da:8a:9e:
0e:a7:43:c0:2f:ff:31:9b:4f:5b:d2:28:8d:44:bf:
09:a2:51:88:a8:1e:34:f8:ad:4d:fc:9b:8a:d3:9b:
1a:90:1b:bd:34:f5:d9:c3:a9:45:5a:48:ac:fc:5b:
f3:5a:ba:d8:fa:50:a3:00:7c:07:2c:22:32:80:e2:
88:fc:1b:8a:8c:97:bf:9d:ec:be:87:1c:05:a6:64:
bf:5e:ba:c9:b5:69:e1:0a:be:de:3e:a7:ed:36:ef:
bb:97:c6:de:d2:50:97:3c:41:18:fa:98:46:04:02:
8d:16:f2:64:01:51:c9:5c:c3:88:4f:b1:dd:ec:22:
90:84:01:da:8d:78:d5:e4:8b:bc:9e:d1:00:4e:79:
e2:84:c7:8d:9a:6f:a2:3d:d1:3c:e9:55:2c:f5:53:
f0:69:7c:ac:1d:6e:be:48:e9:26:6b:db:7c:11:93:
66:32:a6:ff:60:83:0c:ab:46:ea:40:83:c4:89:df:
0e:e6:2d:88:87:60:d5:8b:ac:c2:4f:be:a3:c7:81:
a3:b6:a7:9c:63:44:e7:1b:a3:b1:a3:84:bd:85:a2:
ce:8a:14:75:61:ef:a6:53:02:a4:a0:b5:9a:24:49:
11:68:3c:41:d7:86:7e:dc:58:ed:71:3f:02:bb:63:
9d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F6:66:CD:36:91:11:DC:18:6C:3C:93:7E:AF:00:DD:24:EB:46:14
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:72:2b:09:d8:ea:e1:b4:4c:fc:81:1d:ff:4b:2c:f4:1b:c0:
4e:6e:5d:4d:13:f3:fc:73:ac:e6:54:1d:d2:15:5d:ad:7f:30:
ed:27:99:49:60:f2:46:36:0f:ea:4c:79:3c:f1:98:11:f7:ef:
99:e8:34:07:20:7d:a7:58:bf:e7:b2:a0:ea:fc:de:61:99:85:
f2:18:9d:10:42:4c:4d:6e:d6:18:9c:17:e4:0f:eb:6f:f5:c2:
76:9b:1e:17:ae:df:93:44:7d:aa:95:c4:78:b6:45:b2:b9:60:
0d:10:7c:e5:c9:66:b1:a7:a2:79:44:9a:67:a9:ab:d0:c7:af:
5c:ee:77:63:a8:2a:95:a3:25:54:75:c0:84:3f:2a:4e:c2:dc:
97:eb:db:b1:7e:12:11:69:4c:2a:0d:b8:b6:45:04:60:7e:08:
91:52:c8:ca:ab:0b:80:12:e2:47:50:04:ab:e9:c7:46:46:1f:
77:65:e6:a4:8a:61:8f:36:62:c3:67:8f:44:8a:23:a4:98:03:
01:7b:57:f4:9c:68:f8:d9:ee:dc:f4:b1:38:4b:91:11:fb:87:
13:d6:d1:8f:c8:36:8f:fb:3b:24:05:56:f3:35:8e:c1:3b:54:
14:3c:e5:10:14:70:93:7e:95:5c:d6:bc:19:be:f4:82:0e:04:
b6:fa:a4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:49:21 2026 by rpki-client