Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: E/OsSjfavOG1vKUBewLE8Yb/A32LhKBcYsSesiXq3fE=
Subject key identifier: 65:13:68:B0:CE:53:B9:A9:DC:50:37:73:BF:7D:F4:41:5E:F0:AE:65
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019D999909D28B5EA596936123FACD0B92D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 04:00:36 +0000
Manifest this update: Fri 17 Apr 2026 04:00:36 +0000
Manifest next update: Sat 18 Apr 2026 04:00:36 +0000
Files and hashes: 1: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: u1APabQ5CxtF4ED+gGcR+JldfYYv4M4MksgE+jI+Gvg=)
2: dwxKXYq5F0w7--7RCrBYQ23c5iY.roa (hash: K/Q42vj3khDPlWwooNw7J1cFttbzhnLd2GjnJonXf1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:09:d2:8b:5e:a5:96:93:61:23:fa:cd:0b:92:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Apr 17 04:00:36 2026 GMT
Not After : Apr 18 04:00:36 2026 GMT
Subject: CN=651368b0ce53b9a9dc503773bf7df4415ef0ae65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fc:c3:07:eb:03:32:2c:3d:c4:33:cc:09:77:
11:8e:e9:40:86:d5:c3:32:ad:46:a7:4b:90:8b:e8:
9d:b1:51:8b:0f:ec:a9:25:97:50:5c:af:bd:5c:c2:
6d:6f:7e:c9:86:2a:80:d9:37:a9:f4:29:da:be:0c:
1a:f1:5f:e9:69:5c:9c:71:de:61:7b:3d:59:39:0b:
9c:bd:71:6a:d6:e8:92:5d:e0:36:79:25:cd:b9:bf:
68:40:db:72:97:7a:30:91:6b:f1:49:fd:47:54:16:
36:58:bc:ca:dc:4d:67:46:43:a2:3e:6f:91:6b:27:
d0:b6:ce:39:30:7d:89:1c:1d:70:d3:50:b1:b6:cb:
0f:c8:5d:2a:d7:63:3c:21:4a:1b:ca:ef:23:1c:8c:
d8:ac:e7:99:e3:49:ad:50:38:e8:c7:f2:2e:a6:39:
e0:9a:99:e4:3c:22:37:b3:3e:79:77:89:f2:8f:4e:
d0:6c:c3:98:09:1c:74:ba:dd:f9:93:9d:c9:17:b1:
5b:f8:9e:bc:3a:a2:38:c8:96:42:a0:6a:3c:bc:08:
1a:98:9c:ee:9f:4b:b1:cc:ae:77:43:eb:5e:6c:2b:
91:5c:44:83:7c:14:cf:d5:8f:91:74:9b:97:20:69:
8e:48:59:a2:36:eb:cf:ac:62:32:4e:73:e3:f5:a5:
43:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:13:68:B0:CE:53:B9:A9:DC:50:37:73:BF:7D:F4:41:5E:F0:AE:65
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:99:c2:c2:43:36:b8:58:ae:d5:f8:93:bc:03:db:76:9a:07:
57:21:2c:a7:a2:43:e4:45:50:9a:60:27:44:6d:ae:b1:06:e8:
ae:55:e9:3c:ca:cb:9d:dc:22:02:9e:94:23:ec:35:0e:70:92:
4e:90:46:88:ee:89:95:ff:d1:03:34:ee:c5:8c:50:ee:95:70:
97:21:49:40:fa:e9:ef:46:3b:63:94:a2:63:44:ce:9e:d8:af:
04:c9:90:27:64:da:f2:65:85:94:4a:51:3c:ed:38:14:1b:f6:
68:e3:6c:c0:28:94:87:38:b6:56:d1:98:a1:21:20:7d:3b:6c:
dc:00:66:60:95:0f:4e:07:30:22:64:04:e0:47:22:b0:50:61:
18:5a:ee:f1:0b:1d:10:9d:cb:33:ea:ff:3e:04:12:c5:6f:05:
52:67:0d:bf:af:7a:73:21:e2:de:fc:7f:4c:f0:54:aa:dc:43:
9a:59:fc:1b:63:78:4b:e0:1a:dc:30:70:fe:fb:19:50:56:53:
d2:11:0d:2d:9f:18:d7:c2:ab:36:c4:7e:3c:de:08:5c:4a:eb:
09:09:31:86:3e:73:a6:06:35:8f:f8:c0:e0:47:7e:68:24:6b:
9d:06:30:36:94:b5:eb:72:02:8f:7a:4e:0b:9f:45:1e:26:31:
50:41:45:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:18:50 2026 by rpki-client