Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: Bu/Vz9atV+ahCTMW8YzEbVaDJplwrjjwrxWE/gGilM0=
Subject key identifier: E6:90:E5:6A:A8:F5:40:B9:43:9F:43:86:33:20:B7:5F:F7:0D:91:16
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 019D98F4B21DC579A0FD955BF072AFB5D977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 062D
Signing time: Fri 17 Apr 2026 01:01:06 +0000
Manifest this update: Fri 17 Apr 2026 01:01:06 +0000
Manifest next update: Sat 18 Apr 2026 01:01:06 +0000
Files and hashes: 1: BcT1YlHw7D1Dk2z_LIFmn3rThJY.roa (hash: Eovd3kGKSBHE8soZjKT4R8yDeoxnP/onLhr4NTs+e6o=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: pcgPaYGevrbLFs9rN/WD5xWDOV72UXQdYZSSCM5lems=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:b2:1d:c5:79:a0:fd:95:5b:f0:72:af:b5:d9:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: Apr 17 01:01:06 2026 GMT
Not After : Apr 18 01:01:06 2026 GMT
Subject: CN=e690e56aa8f540b9439f43863320b75ff70d9116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f8:67:d7:98:60:c6:63:fb:1f:e6:39:af:b4:
31:1e:d3:1b:9c:13:34:50:ab:43:24:29:ad:ce:e0:
4b:cf:58:e8:c6:f4:38:6a:84:40:59:40:be:1b:86:
68:1a:28:d1:dc:9a:8a:f6:35:57:35:6d:4b:24:3d:
b7:a4:cd:6c:50:88:5f:c7:ad:5c:c5:d5:3d:4f:fc:
ad:eb:40:81:82:8b:92:08:76:9e:d4:c7:a4:d0:e2:
90:70:49:15:72:9c:17:37:53:ba:1a:e0:35:51:89:
76:07:0a:7c:16:a1:40:96:de:9f:e0:b4:0b:20:f8:
61:42:81:6c:1a:ac:d2:c2:0b:2e:f7:5c:2b:9c:95:
4d:ae:67:07:ca:38:f1:78:d1:69:a0:9f:23:41:53:
0e:6c:b3:b2:a9:50:b2:6b:0b:ec:34:64:df:4d:98:
28:a1:d6:96:46:7b:b8:e7:9a:78:e7:c0:30:06:f2:
d7:c5:48:50:9e:e4:40:42:48:51:ba:6b:60:7c:da:
6e:9e:b7:96:8d:e1:d2:82:de:b2:5a:13:91:ea:76:
9c:95:f3:fd:53:9b:c6:5b:7b:2d:95:04:81:a1:39:
29:92:ca:1a:e6:fc:fe:70:51:2f:2b:c4:a1:11:48:
1e:c8:c3:99:3d:19:3e:4b:51:ec:b0:62:ba:38:e3:
cf:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:90:E5:6A:A8:F5:40:B9:43:9F:43:86:33:20:B7:5F:F7:0D:91:16
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:cd:22:75:95:97:af:00:2f:08:a5:ba:8e:79:8b:5b:20:8b:
66:d8:b8:55:b7:66:d8:dd:0f:0f:7d:9f:74:b1:fa:2f:8d:f0:
3c:4b:7d:c5:69:f2:93:fd:85:06:2f:5d:a9:e8:3e:cb:24:71:
b3:0d:0c:12:4c:be:fd:14:12:9c:63:25:cb:d8:a8:32:f1:8b:
43:1c:e9:e3:62:f3:4f:98:48:02:43:bb:81:44:5e:e4:74:95:
d1:0a:36:5d:b6:cf:6a:45:23:e4:35:7a:35:09:1d:89:8d:b5:
10:23:55:fe:3c:9a:3a:15:ff:4e:aa:93:de:ed:a1:57:bd:3e:
c5:3f:a7:a1:b0:82:fa:37:15:77:1a:a5:8c:ff:97:c3:28:c2:
06:31:3a:a7:e2:12:dd:aa:7e:f0:d8:c3:8e:d0:8f:5c:8a:7d:
f9:56:e5:ea:66:fc:43:e3:b8:e1:4d:15:1d:91:df:96:98:57:
4f:c5:bf:35:c7:39:9b:95:4b:b2:63:e2:ba:b1:1d:48:18:5e:
78:9e:b0:b1:6e:c4:be:6c:c9:bd:ae:2e:f3:56:b5:dc:34:67:
83:ed:f0:f7:40:e0:c4:9c:0b:ca:bf:a3:0c:39:4f:70:3d:b3:
13:13:f5:e4:c0:07:54:aa:90:98:71:67:88:7a:bb:9c:7f:91:
be:e1:34:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:03:40 2026 by rpki-client