Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: Zjn9sK1a+ISUenpO/CDWmQ7wOMve/S9NJH3p0cMo368=
Subject key identifier: 93:0A:68:A4:B5:0B:4F:17:24:3A:7D:0B:63:86:D9:B0:ED:47:0F:DB
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019DA3413DA7CE849EBAE8364B21A12A87AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 18C8
Signing time: Sun 19 Apr 2026 01:00:54 +0000
Manifest this update: Sun 19 Apr 2026 01:00:54 +0000
Manifest next update: Mon 20 Apr 2026 01:00:54 +0000
Files and hashes: 1: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: vUG/xjzZ0eHLoljSrV895f/sZ78RIBxuqaYW4nPre+8=)
2: xMiDA7uuRCcWzBnQjMU1cUXcoLc.roa (hash: 5dmso3IrpYxSnMbNzob1ZQb189IzqVbbdnmbtENfrFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:3d:a7:ce:84:9e:ba:e8:36:4b:21:a1:2a:87:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Apr 19 01:00:54 2026 GMT
Not After : Apr 20 01:00:54 2026 GMT
Subject: CN=930a68a4b50b4f17243a7d0b6386d9b0ed470fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:11:ba:28:de:a2:24:4f:71:c0:d0:0c:9b:fe:
46:cc:3d:99:cc:06:82:28:16:d3:28:5f:35:90:fd:
9a:82:34:67:0e:dd:e4:07:72:0b:96:8e:a8:92:b6:
8f:71:9c:dd:79:00:ad:64:e1:3b:dc:3c:7b:fc:4b:
aa:82:e1:73:02:ea:fc:5e:6d:4e:e4:5f:1f:c0:57:
85:a7:a6:ef:ec:a1:74:d1:c4:04:44:d8:64:3b:c1:
88:99:56:82:60:45:1d:20:7f:2d:d0:a2:40:0a:07:
b3:06:db:f6:0b:46:e3:1b:8e:79:a1:73:84:07:ec:
1b:99:c5:5a:58:a0:ab:2a:2d:78:53:06:98:dd:5d:
75:96:74:97:07:03:f6:ba:2a:50:91:68:82:61:15:
29:1c:00:84:3f:b7:85:f3:6c:92:76:a7:4b:16:f3:
d3:74:cf:88:c9:df:0d:d7:38:78:e0:63:c5:78:a5:
d5:b5:13:b2:16:9e:13:c0:15:ca:cc:3b:2f:1a:18:
2c:08:01:9d:fa:7e:39:b1:b5:31:d6:f6:b2:ba:44:
1b:7b:e2:6c:aa:00:ba:cb:2e:52:4a:7d:a8:47:b2:
27:b9:00:d4:b5:fc:7e:c6:85:cb:91:1f:23:53:10:
42:20:11:28:ad:95:76:37:c2:ee:03:fa:69:3d:b0:
99:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0A:68:A4:B5:0B:4F:17:24:3A:7D:0B:63:86:D9:B0:ED:47:0F:DB
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:56:56:43:bb:55:da:63:74:a1:51:4f:06:9b:f1:0e:97:3e:
70:a9:55:ad:b8:0c:58:6c:8e:d2:46:7e:ed:a7:71:bc:a0:b7:
50:c9:af:3a:8e:9f:21:31:4e:51:f6:72:a4:b5:cd:16:02:44:
25:db:da:aa:e7:e7:86:bb:ee:ef:b0:02:83:63:fb:1d:aa:b9:
b9:08:32:75:ed:a0:1b:05:58:bf:8d:27:d1:23:1c:60:34:23:
18:8e:94:39:77:75:70:42:2e:3b:b5:ff:28:ca:eb:85:b4:1e:
ae:6e:56:6b:70:19:6c:ba:52:c6:b4:56:53:2f:39:df:9a:c4:
9f:cf:55:6c:18:62:60:10:64:3f:b2:91:59:81:16:1f:bf:e9:
10:0b:5f:a8:1e:8b:39:a5:d8:1f:c5:ca:d9:a3:f3:2c:d7:c3:
28:37:30:6a:50:27:7e:cd:f5:35:62:8a:0d:8d:31:4a:8f:dc:
b9:37:8f:2b:1a:d0:c8:03:2e:c4:17:47:39:a3:32:6a:fb:41:
29:a9:e8:99:37:fc:ff:c9:b3:b3:c4:6b:af:41:16:01:ec:1c:
e8:42:8e:5e:30:da:dc:d2:c2:a9:ad:29:14:8c:25:50:b4:ab:
8f:f8:58:9a:11:eb:f0:83:36:64:61:58:55:9b:f3:73:6a:ee:
ff:12:9f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:26:16 2026 by rpki-client