Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: u8lXQo9/BVSa20tN1X0YsvbunD0fpchbH/AjIRWf02E=
Subject key identifier: AE:86:E6:21:77:67:D0:54:A2:8F:93:94:22:24:AF:73:49:1E:1F:7A
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 019CAB6B05107811A6B4BD06A9CA07F3A723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 05B2
Signing time: Sun 01 Mar 2026 22:00:43 +0000
Manifest this update: Sun 01 Mar 2026 22:00:43 +0000
Manifest next update: Mon 02 Mar 2026 22:00:43 +0000
Files and hashes: 1: BcT1YlHw7D1Dk2z_LIFmn3rThJY.roa (hash: Eovd3kGKSBHE8soZjKT4R8yDeoxnP/onLhr4NTs+e6o=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: ReqBijGg8GlCJ+fN2oKC/9VHXVQXA49UIbU76TAr7k0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:05:10:78:11:a6:b4:bd:06:a9:ca:07:f3:a7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Mar 1 22:00:43 2026 GMT
Not After : Mar 2 22:00:43 2026 GMT
Subject: CN=ae86e6217767d054a28f93942224af73491e1f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ea:d1:e9:78:e3:78:9b:47:03:48:b2:d3:e7:
75:3d:69:ca:e1:d8:24:ed:34:91:7f:a5:40:85:12:
b4:7c:7c:83:1e:ee:ce:f7:95:39:6e:7a:6d:ee:aa:
46:53:08:b0:04:43:a9:91:69:8f:8f:19:cc:cb:19:
88:18:3e:92:fc:ee:3c:95:da:39:1f:0b:f9:e9:7b:
49:aa:6d:24:fd:b8:da:e1:e5:d4:94:a9:83:c8:bc:
94:47:34:e0:c1:c7:41:4c:36:96:6a:1a:da:9f:ba:
23:12:16:b3:42:4b:14:86:9e:fa:38:5b:29:d1:4a:
10:9b:f1:a3:6d:28:30:f6:5a:1a:0e:51:dc:b3:f0:
a8:d9:1e:d1:b1:4f:f9:e6:ce:41:71:3b:67:69:2e:
ef:2e:7c:c5:26:98:fa:e0:68:3d:79:64:24:f4:28:
8b:e8:97:6a:c2:1b:ff:b7:49:c8:9e:0b:6b:8f:63:
e3:cc:96:c2:50:a0:f6:f7:a8:5f:8f:fa:b0:30:48:
ac:86:be:69:14:37:a9:e0:ac:6c:9d:36:2c:e8:a7:
88:35:5b:96:3a:33:60:19:15:b7:7c:14:88:48:34:
da:d8:42:35:e6:55:0a:f2:ba:3f:1a:19:11:33:38:
1e:d0:b3:7a:03:90:f7:ed:b2:24:74:a8:09:59:13:
2d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:86:E6:21:77:67:D0:54:A2:8F:93:94:22:24:AF:73:49:1E:1F:7A
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:e2:8d:7b:5e:13:50:e5:e9:9c:57:8c:1b:3d:17:b9:c1:7e:
67:49:48:5d:b3:5a:74:d1:5c:0f:95:e2:4d:20:b2:03:d9:70:
f9:e4:83:22:fe:1b:1d:2b:2a:ed:7e:cd:19:1d:0a:e8:db:12:
01:ea:8d:cd:3b:58:32:46:7c:93:81:25:ec:72:96:6a:66:a8:
d3:61:8c:72:09:b1:d2:56:f6:66:18:10:64:0f:40:58:80:38:
3b:5d:96:75:d8:5e:24:d6:1d:0b:d7:86:be:2d:7f:18:96:d5:
e8:c3:59:ee:36:13:34:48:bc:e5:87:82:b5:26:0c:6e:b8:d9:
38:ef:27:e2:18:79:41:c3:b3:b9:a7:e0:28:7d:e9:49:39:fc:
f2:c1:b1:62:fc:67:d7:a1:99:6b:54:e7:90:6e:51:4f:1a:f0:
f3:4c:2c:bc:1b:92:38:5c:df:e6:31:9c:da:d4:5d:4d:1c:09:
d9:3b:23:c2:2f:38:31:8e:bc:e1:03:ad:9e:8c:50:56:e7:69:
d3:2b:33:18:9f:ce:c0:15:f8:e4:85:8d:cc:98:8a:7f:55:e3:
43:80:e1:61:ba:b4:77:78:51:ec:24:c3:df:4c:e2:f7:0a:58:
40:02:66:59:f0:9a:b4:5c:46:d8:de:d7:18:2a:c1:07:3f:37:
e2:a1:0a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:35:39 2026 by rpki-client