Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: lT0V68oxsnmCz5dCEG7+4ccyx/uCP8Qv/qIROb0CwSk=
Subject key identifier: 7F:09:A8:FD:39:8F:39:C4:28:C0:9B:39:A8:B4:B1:44:1B:59:50:B7
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 019D9999128E4EC025D4E350B16BD75EA287
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 04:00:38 +0000
Manifest this update: Fri 17 Apr 2026 04:00:38 +0000
Manifest next update: Sat 18 Apr 2026 04:00:38 +0000
Files and hashes: 1: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: gYnihF9U1IDxf74ygWeP8ppTWeo+R+45E8GgUTAVnVg=)
2: DiLBDAdX2Rn6IbzlG165KKHARDw.roa (hash: efTlYN5L+Bk95Nj1I+etEzgtXBHg5cg9mNZu0CNmkQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:12:8e:4e:c0:25:d4:e3:50:b1:6b:d7:5e:a2:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Apr 17 04:00:38 2026 GMT
Not After : Apr 18 04:00:38 2026 GMT
Subject: CN=7f09a8fd398f39c428c09b39a8b4b1441b5950b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:51:5b:2b:2f:29:30:21:26:c0:61:46:ee:c4:
87:59:5a:dd:a2:07:93:f8:01:70:0a:f9:e4:de:3f:
0a:0b:d6:04:f1:f5:7c:90:7d:c2:19:6c:d3:92:af:
dc:a9:9e:50:b4:2f:cf:c7:82:73:90:45:42:ca:52:
d0:89:84:ad:37:32:40:d9:18:54:de:4e:a7:f5:d9:
d3:21:f3:9e:a5:ae:56:ae:ae:6a:ca:e3:a3:cf:3e:
1e:7b:32:3d:e0:52:69:4b:b9:d3:b7:0e:be:e0:70:
4f:a4:19:e0:5f:d8:aa:30:e7:cb:5d:a0:0f:ac:08:
c6:31:83:49:1b:f5:95:d0:87:6a:18:9e:1a:99:f2:
92:0e:7e:c9:b4:d4:18:3a:de:f6:3e:84:3c:c6:b5:
34:5a:d4:4c:3b:28:a6:0c:e4:0d:35:4c:19:7c:b8:
d5:71:6c:8a:6d:8d:47:2f:36:4e:81:c1:45:88:41:
1d:7f:94:4f:06:80:3f:24:9f:f5:e9:b2:d1:f8:07:
4e:8a:5d:02:12:7e:ae:41:90:5a:34:ee:ae:3a:02:
69:50:27:75:27:57:18:e8:3c:70:6e:34:0f:6d:cf:
4c:2d:90:20:ae:48:79:6f:7b:9b:97:94:f8:54:a7:
a3:07:d6:b8:19:02:e5:4e:38:7b:16:02:e4:7b:80:
f6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:09:A8:FD:39:8F:39:C4:28:C0:9B:39:A8:B4:B1:44:1B:59:50:B7
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e3:70:3b:fc:7d:8c:e2:ef:b1:8f:1b:9e:91:c6:70:28:ce:
30:09:a1:3f:18:8a:3a:0b:9e:72:bb:eb:9d:65:f6:c6:5d:f4:
ba:cf:02:3f:fa:96:13:34:0f:a1:16:83:f4:67:11:e3:04:26:
91:0a:ee:7a:f2:da:cf:74:48:67:4a:04:60:2a:47:7b:1e:5e:
a5:e8:b8:48:89:d8:31:d8:be:0b:fd:87:ec:05:ae:5a:5b:76:
63:6e:44:f2:23:1f:c6:36:6e:f1:60:e7:14:54:60:b9:60:eb:
56:cc:a8:05:13:05:16:af:01:1c:fe:c2:dc:9d:8a:e6:61:39:
90:7d:95:34:5b:87:c2:c8:a4:05:07:5f:18:2f:da:ab:26:da:
da:74:86:34:23:d7:e4:ec:9b:2b:e0:97:c0:fc:f6:ef:d1:69:
f8:7d:f9:b9:d4:3e:79:c8:c8:c4:8c:6b:8a:82:08:3f:a5:38:
0c:78:7e:a8:7b:51:3c:df:1f:08:f1:a0:86:9b:d8:cd:3a:51:
e7:9e:c4:9d:47:93:6c:15:c8:2a:c2:ff:4f:ae:26:1e:5e:9c:
82:7e:11:00:5d:93:c9:e6:f8:04:5f:26:15:52:2f:83:18:de:
e3:b3:44:9c:45:d0:03:36:fe:67:36:ca:8c:0b:f3:db:f6:8a:
a1:d3:e8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:05:02 2026 by rpki-client