Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: oTXMW7/TwKjTMfxZQqZOKDPNomgVoxIJ2m38XRlIFGE=
Subject key identifier: 9D:EB:4D:F8:FB:C4:D5:9F:29:C3:DD:F6:00:84:F2:55:36:30:7B:ED
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 019DA52F1B65CFEBB97E0ABD2D624AF38353
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0AFB
Signing time: Sun 19 Apr 2026 10:00:20 +0000
Manifest this update: Sun 19 Apr 2026 10:00:20 +0000
Manifest next update: Mon 20 Apr 2026 10:00:20 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: EeKzHVvnYk7wauzQHv0TcT+rr97vUfZDagh5ug4yHaw=)
2: y8-TomRf2SfXgjAfIqDbASYx4Kw.roa (hash: uG779XP+SowZScRgyybF2Yr7PqJO6NR4pXnq6h4jggk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:1b:65:cf:eb:b9:7e:0a:bd:2d:62:4a:f3:83:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Apr 19 10:00:20 2026 GMT
Not After : Apr 20 10:00:20 2026 GMT
Subject: CN=9deb4df8fbc4d59f29c3ddf60084f25536307bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ce:9f:28:bf:64:71:53:c6:70:86:83:7f:93:
9f:61:a7:ac:4e:fd:87:ca:f3:d1:c8:18:96:83:0e:
5e:34:6d:fc:00:79:3e:c3:64:27:ab:90:bf:66:c2:
7a:b8:34:d8:bb:36:e6:26:96:36:2a:60:1d:fe:6a:
4c:bb:91:6d:5f:85:32:be:cf:1d:15:d9:6c:d5:00:
52:5a:33:24:66:3a:08:c1:f0:73:9a:67:b4:4e:a0:
22:6a:69:3d:cf:66:58:93:6c:ba:bf:80:1c:67:72:
b7:a3:97:51:96:0f:08:71:79:84:85:a4:12:5e:6c:
df:ba:34:f1:dd:1c:6f:15:dd:cf:8b:9a:2b:d4:d1:
c6:61:61:40:77:02:67:90:3b:fa:24:48:b7:31:af:
a5:71:c6:68:b4:a2:68:cd:ea:f3:26:21:90:60:ea:
ae:44:72:aa:9d:3e:53:af:31:78:7a:bc:c0:29:7c:
02:e3:a0:a8:03:a6:1c:a6:9f:33:04:f7:77:3c:5c:
94:bb:f0:53:f2:e3:de:68:47:db:df:4f:c2:f4:71:
d7:59:81:73:6d:a4:e3:63:2c:ab:9d:79:2e:ef:d8:
76:ec:0f:1a:79:20:a1:6f:e9:43:1c:21:34:37:81:
7c:be:8e:9c:70:ce:82:fe:d2:60:ae:7c:dc:e3:bf:
db:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:EB:4D:F8:FB:C4:D5:9F:29:C3:DD:F6:00:84:F2:55:36:30:7B:ED
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b8:d5:03:57:df:2c:34:07:18:71:5a:fa:dc:12:49:be:0d:
14:4b:fe:20:75:f8:28:b1:cb:ea:5b:f4:c7:53:6a:d5:2d:d1:
94:cd:7c:52:e2:6d:8c:ed:45:b2:34:e6:36:7a:b1:9c:4d:d2:
40:0d:d3:3e:d9:78:31:ff:60:97:d6:e4:87:3e:17:45:d8:e1:
26:27:a6:e0:d6:5b:eb:3c:71:24:e8:cc:47:89:08:82:c9:96:
27:a7:ef:82:37:e7:64:ad:5e:24:c9:64:41:20:88:5a:9a:fe:
ab:85:1b:57:74:c4:33:ac:17:4e:ca:52:12:fd:1d:0a:0a:9c:
3b:e2:9a:27:e2:b3:83:d1:6f:2e:77:2c:48:e7:c0:f8:88:8d:
65:78:7a:61:c6:41:52:9c:cf:28:5a:4d:49:ca:95:f0:4f:ba:
b2:18:48:e8:47:98:85:28:8b:27:d3:77:d0:74:7b:77:11:98:
ca:c9:60:e4:75:c3:b3:fc:5b:c0:e7:97:39:71:c2:bd:02:d5:
b6:99:52:57:ac:65:36:a2:e7:b2:85:1f:b2:58:8d:fe:26:9f:
b5:8d:f2:a9:32:4e:33:26:3b:ce:d4:92:e5:c0:33:53:7d:33:
20:b8:6a:91:89:a4:fe:fc:b8:fd:d3:66:61:84:82:55:87:20:
6c:7a:9c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:20:06 2026 by rpki-client