Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: g8kLx+yH98kp5Df8oB719Ou7Pqj8PW49If5+4F5G498=
Subject key identifier: FF:DD:F9:1C:1B:14:C4:D3:74:B4:C1:FD:F3:12:26:18:32:91:6E:EE
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019CAC1061F6EC267016E4D73CA900ABE509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 01:01:20 +0000
Manifest this update: Mon 02 Mar 2026 01:01:20 +0000
Manifest next update: Tue 03 Mar 2026 01:01:20 +0000
Files and hashes: 1: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: KNJLDXyLAJBC/N0oEX6/UmvSb9G7wjYOZvagbvpyaac=)
2: dwxKXYq5F0w7--7RCrBYQ23c5iY.roa (hash: K/Q42vj3khDPlWwooNw7J1cFttbzhnLd2GjnJonXf1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:61:f6:ec:26:70:16:e4:d7:3c:a9:00:ab:e5:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Mar 2 01:01:20 2026 GMT
Not After : Mar 3 01:01:20 2026 GMT
Subject: CN=ffddf91c1b14c4d374b4c1fdf312261832916eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:47:59:aa:27:2e:3d:1f:c8:1f:6d:a5:4b:e8:
8f:37:22:e2:95:b9:94:fb:62:cd:2e:36:3f:92:d3:
00:54:76:82:62:ac:af:5f:73:c4:8c:43:5b:c8:a0:
bb:7b:3a:23:b8:24:3e:34:0f:ea:fb:9a:0e:ce:58:
ca:eb:28:46:9b:7a:77:62:0c:38:17:9c:c7:3a:2f:
6e:09:f6:8b:e8:d5:52:22:39:ba:50:74:1f:5c:7e:
ab:9c:e4:84:b6:d4:a9:2e:d4:46:94:d7:ca:be:7b:
03:60:c5:c5:a9:4e:37:27:a5:c2:2b:3e:8b:9a:d1:
01:b2:67:48:31:b9:8d:8e:a3:98:2a:d1:76:69:95:
65:a2:10:2a:38:57:86:49:02:7d:f8:bc:5f:52:d3:
34:79:f6:95:bb:c2:cf:41:74:5a:7a:40:01:d8:75:
73:13:fe:88:e9:70:b3:0c:e9:94:83:72:5f:99:81:
06:e5:58:35:5a:b0:91:e9:6b:9d:56:bf:a5:d7:74:
76:c1:97:82:3a:09:66:fe:47:ba:d2:10:66:fe:bb:
63:1a:2a:7f:60:1d:7f:6c:19:f1:a3:b2:04:7b:03:
d8:d2:1a:9d:66:09:c9:81:c0:f9:0c:42:dd:56:80:
f5:5f:3c:a6:ed:b0:3d:cc:f4:37:fa:2c:3e:96:4e:
6e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DD:F9:1C:1B:14:C4:D3:74:B4:C1:FD:F3:12:26:18:32:91:6E:EE
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:14:3d:99:e4:18:de:e4:bc:da:a7:ff:20:80:7e:45:b2:87:
c1:61:75:ad:93:7d:bb:90:4e:70:b2:ea:39:10:bc:60:e8:8c:
2f:9c:15:e5:f7:66:ef:f1:8f:78:84:b0:28:ff:0c:a7:61:16:
b5:39:6c:a7:f6:bc:53:2f:8d:b6:4b:a6:68:ff:bc:dc:59:30:
77:c8:5b:75:6d:ad:c8:ec:70:02:dc:83:e8:10:fb:9f:44:ff:
3c:4e:fa:9f:41:cf:ee:b1:99:af:37:1c:01:70:e9:ce:6a:cb:
06:ce:bf:7a:1f:cc:f2:f7:a8:fc:e8:a8:ba:6a:67:7a:ac:1b:
a9:33:24:87:4c:72:fc:97:44:82:47:dd:c8:f9:59:b3:97:86:
cf:eb:3b:07:b2:ae:db:a9:86:a5:97:1b:69:fc:ac:46:ab:40:
78:8c:bf:06:94:84:09:13:19:ed:00:b9:01:34:24:68:06:32:
2b:bb:5a:a2:c8:73:f7:ac:1b:a5:de:87:a1:5c:c4:43:14:8e:
c8:4f:69:4a:46:00:51:53:f6:5b:f2:52:76:eb:57:61:ef:d8:
b8:4b:22:1b:ea:e1:aa:a0:c5:32:65:c7:f8:56:0b:da:d6:b4:
99:13:d2:93:36:75:4a:56:92:92:31:48:3e:6b:dd:35:93:d7:
5f:1f:60:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:16:53 2026 by rpki-client