Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
File: AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft (raw, json)
Hash identifier: 4k/bD5SrhfU6q8GLIfTn6efqE113uOkXQAbYWUXmyaU=
Subject key identifier: 8B:12:D6:0B:03:21:8D:4D:A3:AD:8C:57:42:45:68:31:17:B9:9E:CC
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 019D992B89CBB7FE644920E1D9D9CA13D355
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
Manifest number: 18E3
Signing time: Fri 17 Apr 2026 02:01:00 +0000
Manifest this update: Fri 17 Apr 2026 02:01:00 +0000
Manifest next update: Sat 18 Apr 2026 02:01:00 +0000
Files and hashes: 1: 3lE-OFcZg5HBfiXy0gupENM3iyk.roa (hash: bLLbFDCXQ+hwG1ZI2hchMxCwkBA94qpajMIUIPVAa8Q=)
2: 3yN1WaImxLytELQ8orv8zRs2JTc.roa (hash: xMQ9DHu/OHk2/N1Hs4FxQtyh2D3+E7jpj/gCToK104o=)
3: 6tH2d7DuA0R1l2Pidcpu6hElWDI.roa (hash: CfNi98riUNvkPkY0puJ/adG9NQhrM30w+euigtAJ/Sw=)
4: AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl (hash: LFK0TAzNi8+0GDfD1CupDEEVyr7BjSzhS4s9hUvVCvo=)
5: TzbPsDZ-cxzqjv8-LwUqnZiNDVA.roa (hash: Fw/wCqm5ct+1+LFhxRHPMU/lUojt4L4OVaEyFt+zO+s=)
6: ddUJNLSqBtnSmNldI4m1ICrrXaA.roa (hash: 3+OVO0aN+wd5+fw851/RNy2HHQdglPinsg8QGb8dxQo=)
7: eJhW9z5ku9_qhNiO6iw_ATXoEHw.roa (hash: EPkgNIk6bKUUZeeYQssHTaftEyd1+IqUJt3qVX40j0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:89:cb:b7:fe:64:49:20:e1:d9:d9:ca:13:d3:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Apr 17 02:01:00 2026 GMT
Not After : Apr 18 02:01:00 2026 GMT
Subject: CN=8b12d60b03218d4da3ad8c574245683117b99ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c4:6c:7c:b1:bc:e9:fb:2d:d5:03:16:56:eb:
2e:15:73:f1:e4:e2:d2:44:5b:df:aa:63:67:de:0c:
a2:df:7b:97:9c:41:5c:c2:8f:94:80:cc:c0:5a:86:
99:50:ec:45:57:aa:50:1b:4c:c3:8e:ab:ab:aa:31:
f9:e7:13:68:8b:42:81:2f:3d:7f:25:0e:ed:19:4f:
2c:67:69:5f:f2:91:87:7b:00:da:68:02:9f:c6:f2:
9d:6c:4a:a3:35:6b:da:e9:c4:77:db:a6:d5:0d:3c:
5b:4c:0a:51:b3:b8:dc:d1:a6:31:a0:f6:34:b6:4e:
a9:53:1a:56:86:9b:c8:57:60:79:01:28:13:90:b3:
3d:bd:ad:0e:8a:3c:c1:12:2f:2e:16:4f:2c:63:6e:
13:5b:3c:02:84:56:5c:2d:ba:3d:d0:cf:fa:9f:6b:
2c:ff:58:73:dd:b8:ed:f7:c3:8d:0d:78:05:db:ff:
46:b8:00:3f:19:42:02:76:98:c8:c6:cb:c6:2f:b7:
bc:ae:63:c9:fa:3d:8f:09:50:94:65:b3:a5:d9:c4:
74:0b:5a:36:a5:50:69:99:b4:de:4e:c0:00:2e:bf:
ed:c3:11:d4:ae:31:ca:1f:91:fb:d7:91:ae:e2:f9:
53:e8:be:55:b5:69:2f:dd:89:8f:c6:c3:57:83:1e:
4a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:12:D6:0B:03:21:8D:4D:A3:AD:8C:57:42:45:68:31:17:B9:9E:CC
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:82:90:d8:21:96:3d:a5:4e:12:3e:23:d0:8b:d0:3f:35:8b:
ae:65:0f:5e:62:0d:87:60:84:6d:9e:61:5f:41:14:1d:40:7c:
14:df:cf:b1:d2:ef:02:b1:30:fb:ea:95:04:69:a6:ee:78:9e:
21:a9:9c:35:5f:92:bc:3c:59:23:d2:25:ef:cd:58:49:94:48:
c1:2a:88:62:9a:ae:ee:84:57:20:6c:d3:45:73:c8:ae:93:49:
6c:a2:e3:a8:b0:1b:6e:9d:99:80:96:c7:a3:99:b0:cb:fb:ab:
8b:cd:8c:5e:66:f9:c6:c8:68:b0:f2:aa:41:ea:4b:b3:bd:b8:
f3:ce:f7:b1:1f:61:eb:27:58:bd:b4:06:3a:05:5e:e5:15:8e:
da:bd:54:14:ce:b3:ef:9d:01:01:ae:1e:0c:fe:ee:59:e2:22:
4b:65:77:71:27:55:76:3a:b7:df:d1:18:15:67:dc:a6:00:2d:
9e:47:6b:9d:e1:4b:24:8c:d9:bf:19:ae:63:b4:f0:d9:63:ae:
55:e7:d3:33:01:d6:f6:e5:b7:be:aa:4e:29:c4:20:20:7c:17:
02:6c:91:3f:e4:43:8f:d3:96:f2:0b:60:2e:f0:14:8a:d3:9d:
51:7a:01:97:cc:27:95:7a:1c:fc:58:f2:77:ab:b2:c8:af:98:
b9:cd:e2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:16:11 2026 by rpki-client