Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: joI8BLVWbtMUdpRHPrq2cEQ8S7XPwzcKOHZxXNTs55E=
Subject key identifier: 6D:BB:29:AC:99:03:8C:09:67:32:D0:8B:68:46:7D:26:F7:27:31:98
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 019D97AB1430FF9C12EDB571EBBB615C9CDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 18C1
Signing time: Thu 16 Apr 2026 19:01:04 +0000
Manifest this update: Thu 16 Apr 2026 19:01:04 +0000
Manifest next update: Fri 17 Apr 2026 19:01:04 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: LK8oR1hwvvIl+aJiFRd3648zcxlHQy2H1J+I6cD6x+0=)
2: eJ3f1i44Rqh5dEICPulbHl4WkkI.roa (hash: kZed20xL2+OJp4rVcGTuqnAX+7hPge7JicJ6LEk/ItE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 19:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:ab:14:30:ff:9c:12:ed:b5:71:eb:bb:61:5c:9c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Apr 16 19:01:04 2026 GMT
Not After : Apr 17 19:01:04 2026 GMT
Subject: CN=6dbb29ac99038c096732d08b68467d26f7273198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0f:68:48:d7:66:49:e2:ce:9b:a5:e1:2e:25:
93:55:12:3e:1f:0e:d7:a3:89:f5:00:b2:57:73:fa:
58:26:f5:d6:be:ab:f0:8f:e8:bb:b7:84:8f:43:2b:
ef:82:40:c8:1d:c6:d0:85:e8:56:86:26:b2:e2:7c:
67:cf:3c:8a:40:ef:03:af:10:ad:31:d7:f6:6b:f0:
a6:ea:a9:e8:eb:68:b9:56:f3:46:dc:5f:c5:5e:3d:
ea:b1:51:17:a1:2b:46:86:1e:ff:b1:83:b0:c0:31:
3f:5d:fd:04:2a:32:10:c5:90:15:14:1b:32:c2:42:
1e:dd:d6:7d:7b:90:e7:2e:ea:37:e9:72:fe:98:e4:
7d:f6:98:6d:9d:08:14:84:45:ab:d1:5f:49:85:5b:
1c:a9:e7:bc:48:2a:95:60:f7:66:b1:63:d2:3c:af:
3a:8b:50:4c:b2:47:a3:65:85:8b:cd:63:55:b1:4a:
e9:bb:26:d3:eb:85:21:06:f5:67:95:8b:f3:7b:9f:
46:db:a6:53:61:d3:5b:04:8b:72:54:58:0f:6b:bd:
e6:cc:9a:59:00:d6:10:6a:7a:f6:3f:61:64:8a:56:
5e:ed:16:b1:14:81:45:f9:56:45:03:65:56:c8:58:
e5:81:b2:74:27:5c:bd:58:18:b9:1f:ed:11:3f:af:
3f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BB:29:AC:99:03:8C:09:67:32:D0:8B:68:46:7D:26:F7:27:31:98
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ba:aa:73:ec:87:96:0e:39:9c:ba:6e:58:d5:17:99:dc:de:
71:6c:68:75:d5:61:74:a7:1d:79:9c:47:a0:30:b1:cc:6d:6b:
e6:af:b7:9c:19:1e:12:37:07:06:25:bc:5a:5b:ad:e7:90:6e:
f3:4c:7f:2b:81:ee:bc:2a:9e:21:7f:40:44:87:43:c5:ea:fd:
3c:30:6c:f9:53:e3:f6:1a:ae:be:2b:8b:15:0a:8c:05:60:af:
f3:fb:1b:ed:93:bd:78:28:78:96:2f:a7:f2:42:31:a6:f7:5e:
d4:5e:cc:d0:6c:60:19:6f:44:a2:7a:56:62:4e:ae:4f:d6:e9:
53:4f:cf:22:1a:86:9b:08:2f:5f:a2:a4:8e:2d:3d:74:9e:62:
5d:d8:d2:2a:e3:e0:d0:00:03:fb:7a:b9:c6:ec:f4:a6:e5:7f:
e2:41:52:3b:b7:3e:e2:fc:21:04:72:31:69:45:be:1e:72:20:
b7:a1:da:65:76:78:c9:29:65:b0:58:ff:22:d0:c1:92:23:d4:
68:4e:85:a4:a9:f0:a7:bb:88:39:6e:68:92:02:d4:ec:59:a3:
4a:3f:85:a6:d1:5a:fe:33:65:5e:5f:d8:04:53:05:84:2a:e4:
c5:a0:39:02:1d:2a:fa:f3:95:5b:1b:5a:5b:32:5a:f9:f4:7c:
f8:5a:fc:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2XqxQw/5wS7bVx67thXJzfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZjYwNjgzYjM3NzI1NzQyN2RiYmY2ZWNlMzVlMmM1ODVh
M2IwMWQwHhcNMjYwNDE2MTkwMTA0WhcNMjYwNDE3MTkwMTA0WjAzMTEwLwYDVQQD
Eyg2ZGJiMjlhYzk5MDM4YzA5NjczMmQwOGI2ODQ2N2QyNmY3MjczMTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ9oSNdmSeLOm6XhLiWTVRI+Hw7X
o4n1ALJXc/pYJvXWvqvwj+i7t4SPQyvvgkDIHcbQhehWhiay4nxnzzyKQO8DrxCt
Mdf2a/Cm6qno62i5VvNG3F/FXj3qsVEXoStGhh7/sYOwwDE/Xf0EKjIQxZAVFBsy
wkIe3dZ9e5DnLuo36XL+mOR99phtnQgUhEWr0V9JhVscqee8SCqVYPdmsWPSPK86
i1BMskejZYWLzWNVsUrpuybT64UhBvVnlYvze59G26ZTYdNbBItyVFgPa73mzJpZ
ANYQanr2P2FkilZe7RaxFIFF+VZFA2VWyFjlgbJ0J1y9WBi5H+0RP68/VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG27KayZA4wJZzLQi2hGfSb3JzGYMB8GA1UdIwQY
MBaAFGj2BoOzdyV0J9u/bs414sWFo7AdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8yZWI5NjktODYzYS00NjJkLTlmOWQt
MzU0NzQwMzZhOWQ3LzEvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8yZWI5NjktODYzYS00NjJkLTlmOWQtMzU0NzQwMzZhOWQ3
LzEvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAobqqc+yH
lg45nLpuWNUXmdzecWxoddVhdKcdeZxHoDCxzG1r5q+3nBkeEjcHBiW8Wlut55Bu
80x/K4HuvCqeIX9ARIdDxer9PDBs+VPj9hquviuLFQqMBWCv8/sb7ZO9eCh4li+n
8kIxpvde1F7M0GxgGW9EonpWYk6uT9bpU0/PIhqGmwgvX6Kkji09dJ5iXdjSKuPg
0AAD+3q5xuz0puV/4kFSO7c+4vwhBHIxaUW+HnIgt6HaZXZ4ySllsFj/ItDBkiPU
aE6FpKnwp7uIOW5okgLU7FmjSj+FptFa/jNlXl/YBFMFhCrkxaA5Ah0q+vOVWxta
WzJa+fR8+Fr8bw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 03:54:39 2026 by rpki-client