Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: SEOIKOf20g0pAWi2X4/AOdDxzRy79vbGutZHvkFbiRY=
Subject key identifier: DF:47:1E:35:DE:BD:9C:79:D0:24:02:3D:E7:D0:FA:40:BF:7F:D1:D4
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 019CAA21F494DC1BF9DF044F822DAE539893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 16:01:17 +0000
Manifest this update: Sun 01 Mar 2026 16:01:17 +0000
Manifest next update: Mon 02 Mar 2026 16:01:17 +0000
Files and hashes: 1: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: Jq4kr7UI2pFquAvb7UoFoybEFVWPqLmHlsZECMHsNi4=)
2: DiLBDAdX2Rn6IbzlG165KKHARDw.roa (hash: efTlYN5L+Bk95Nj1I+etEzgtXBHg5cg9mNZu0CNmkQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:f4:94:dc:1b:f9:df:04:4f:82:2d:ae:53:98:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Mar 1 16:01:17 2026 GMT
Not After : Mar 2 16:01:17 2026 GMT
Subject: CN=df471e35debd9c79d024023de7d0fa40bf7fd1d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:ff:40:ba:4d:a0:13:95:7c:5e:c1:b6:f3:
e8:90:6f:8b:98:d5:08:2b:7f:19:c6:07:9d:2a:47:
2f:91:4a:28:40:ec:11:ce:7e:78:9b:d9:11:58:9b:
4d:f8:11:4a:33:12:c9:84:f8:44:ee:f7:9c:94:7a:
d2:eb:82:9d:ab:ec:5e:c2:bf:8d:b0:d1:5b:f7:b2:
47:7c:27:e5:bf:a8:f4:9d:6f:33:e0:08:d0:96:f3:
c8:34:46:a0:93:37:af:fe:55:96:4a:0f:75:3c:62:
e2:13:d6:c2:9a:88:59:77:3c:24:78:cf:2b:a2:54:
2e:9f:52:49:b8:c4:da:b5:4c:b6:39:82:60:35:a0:
34:a7:47:48:9c:72:2f:14:93:b4:11:b6:7e:12:94:
a7:6c:dc:7d:16:24:de:24:26:bd:93:df:6a:3f:88:
c9:c0:57:e1:9e:34:44:31:9e:28:12:e5:3c:9b:87:
ca:42:7f:09:67:7c:6f:88:a5:58:a5:63:01:fd:7d:
66:37:82:53:67:f9:72:5e:3f:c8:aa:b8:2b:bb:04:
c2:d6:92:e0:d9:bb:52:59:53:05:cd:0a:3b:fb:55:
5b:6b:5e:d3:8d:ec:9d:1d:1e:a7:94:a1:8e:89:65:
10:cf:0f:10:50:d5:03:93:04:4c:b7:db:a7:12:a1:
7f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:47:1E:35:DE:BD:9C:79:D0:24:02:3D:E7:D0:FA:40:BF:7F:D1:D4
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:c8:f7:54:04:da:cd:63:1c:69:e6:21:4e:1a:72:4a:21:23:
4e:5b:94:93:00:22:a6:f6:2e:ca:80:49:ff:82:9b:7c:3f:01:
69:73:8f:21:17:da:4f:72:6b:f8:54:61:43:e4:f5:4a:a7:1a:
ad:9f:7f:2b:e7:ac:eb:cd:52:0b:35:d1:f9:88:79:8e:81:b7:
b4:04:86:54:8f:34:73:8e:f8:02:28:7a:08:3f:de:65:9a:d7:
b5:b2:c6:8c:8f:6c:d8:3d:17:15:6d:6e:77:e4:28:cd:87:14:
4b:6d:17:9d:5f:ae:5e:4c:28:6e:79:fe:a8:67:f1:36:94:8a:
7f:e3:17:5b:85:20:1f:36:0e:35:5d:09:11:5b:d0:94:eb:25:
bc:8d:fb:12:85:61:0e:c5:ba:f9:d5:32:c5:e0:c7:41:72:34:
31:36:e0:3d:05:39:09:fb:95:3a:c1:18:55:8f:b6:c3:13:b5:
1d:48:37:36:a0:24:55:80:4e:03:d7:02:90:ab:56:26:88:39:
ff:12:a0:86:8d:ce:90:3c:ee:02:f0:6a:f8:c1:1c:d7:0a:2d:
d1:61:c5:58:20:72:6e:ea:d4:41:22:d9:4a:78:80:e5:09:89:
df:01:ba:dc:8b:1e:eb:d2:93:cd:ca:7f:7d:95:2d:3c:39:51:
45:46:08:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:15:19 2026 by rpki-client