Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: pzqVjW/OgRTJ7gum91YScganKo9olo5F9pfG7/1OtbU=
Subject key identifier: 6C:9C:33:A7:8F:EC:09:E2:0C:79:87:0B:05:57:1F:B7:36:E0:CE:57
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 019A56090BFBCB233AA2C7A6BC082EF3F91F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 1711
Signing time: Wed 05 Nov 2025 22:00:24 +0000
Manifest this update: Wed 05 Nov 2025 22:00:24 +0000
Manifest next update: Thu 06 Nov 2025 22:00:24 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: bV1WCxeXXOqEFnoh5xBUhOJ12D2j7iXz0wjaPx1aI+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:09:0b:fb:cb:23:3a:a2:c7:a6:bc:08:2e:f3:f9:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Nov 5 22:00:24 2025 GMT
Not After : Nov 6 22:00:24 2025 GMT
Subject: CN=6c9c33a78fec09e20c79870b05571fb736e0ce57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b1:5f:92:1a:b0:52:8b:1a:a1:19:08:e0:02:
e6:99:7b:51:35:1f:b3:46:4d:0b:b8:65:38:9f:af:
3f:0e:fa:75:51:90:88:b8:d0:b5:7b:89:67:d8:f8:
3d:d6:b2:a1:ba:d4:10:4f:5b:58:ac:7a:03:f2:ed:
a2:18:42:40:00:6f:30:b8:6b:44:e0:bd:7a:5f:e2:
02:c3:20:f6:35:39:2f:e9:17:2a:4f:d7:a4:30:7e:
c7:ec:d2:54:5a:bb:a9:7d:d5:d3:5c:8f:0e:64:e1:
9b:10:22:a4:37:94:fc:d0:1e:be:b2:2e:a2:03:6e:
77:a1:09:4d:b2:a1:3d:c7:81:3a:37:d8:79:d5:2b:
2e:d3:bd:9d:99:3d:1f:b9:88:f4:44:bf:96:93:18:
76:38:db:c2:ec:7f:cf:59:9b:34:b5:b8:df:c7:7b:
aa:be:18:c3:b0:0e:78:f9:99:6a:68:af:c6:66:c4:
a0:37:84:cc:b6:7e:66:78:39:c8:ba:95:81:b3:7a:
b8:f2:b8:2e:d3:3a:7e:74:56:dc:89:87:ac:32:9a:
17:e0:ff:6f:c0:58:cd:76:1e:9a:52:ab:9c:08:a8:
52:b1:e5:08:6c:a5:e8:6a:0e:87:58:f2:9e:1e:56:
7f:67:37:da:11:0a:40:24:82:49:e0:15:0e:9a:00:
37:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:9C:33:A7:8F:EC:09:E2:0C:79:87:0B:05:57:1F:B7:36:E0:CE:57
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:04:f3:f2:6d:b1:e1:16:07:27:8c:2d:5a:33:7d:83:00:29:
e6:e7:0d:0e:11:05:6a:11:a7:24:33:a8:9b:58:f2:04:5d:c4:
45:05:53:4c:fb:49:c9:03:50:ec:88:0d:1c:6f:d9:cb:5b:04:
b3:9e:a1:c5:d9:62:bd:8d:81:26:10:b5:f7:cf:03:42:c6:c4:
c0:ed:d6:da:91:69:ee:a1:c9:ad:ba:05:7e:4e:83:7c:35:fa:
04:49:6c:28:bc:b7:d4:e9:db:bd:56:0f:6b:ed:78:ca:cd:fd:
95:ae:4e:38:db:46:11:d0:5d:02:50:a8:9b:51:4a:0e:4a:15:
df:7e:34:85:b8:ca:03:02:35:cf:22:f6:2b:9d:25:ca:ac:e5:
81:93:4c:31:b0:75:d2:3b:63:3d:5a:54:bd:5f:30:31:80:c7:
a3:63:d2:48:7f:aa:10:07:b4:7e:b5:e0:3d:68:c8:e4:1f:ea:
e9:df:32:21:18:96:c0:43:f6:61:a0:1f:86:2a:59:87:d9:e5:
49:a9:96:d9:30:78:80:8b:2c:59:41:da:fe:13:69:47:0f:7f:
99:ac:f1:01:a9:e4:8e:03:8b:47:0a:6e:56:48:f3:28:83:d1:
49:62:c0:bb:45:42:b6:f5:95:d8:4f:83:33:7e:dc:43:43:0c:
82:ab:de:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 00:36:32 2025 by rpki-client