Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: PgIQDqUC3+OACJn10Qzgkpp4GE6GgW2iEsl7E/JSHr8=
Subject key identifier: 73:D0:95:CA:0A:57:99:92:35:28:B2:5A:51:4E:4E:44:2C:8A:34:EF
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 019D9774B2F5509398C812359B6DBEEF4C8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0D36
Signing time: Thu 16 Apr 2026 18:01:40 +0000
Manifest this update: Thu 16 Apr 2026 18:01:40 +0000
Manifest next update: Fri 17 Apr 2026 18:01:40 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: /pdhukcjnD3IJgMHBjPETiqmYiVHeVxEpL3pPrcfBpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 18:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:74:b2:f5:50:93:98:c8:12:35:9b:6d:be:ef:4c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Apr 16 18:01:40 2026 GMT
Not After : Apr 17 18:01:40 2026 GMT
Subject: CN=73d095ca0a5799923528b25a514e4e442c8a34ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d6:cf:0f:46:a9:8d:ad:4f:9f:6f:dd:0b:bb:
91:26:ed:a1:cb:1f:98:a1:13:21:b8:16:11:c1:b0:
42:2c:35:e2:ec:5a:c1:6b:b2:7b:6a:a8:14:f1:65:
27:53:00:88:f6:51:41:b0:d0:0f:e0:c3:26:37:48:
2e:be:9e:1e:ed:67:a3:68:1a:c4:27:26:69:16:2d:
97:4f:b7:a5:a8:ad:2a:08:33:0b:4d:92:32:f3:c9:
b4:fb:92:a5:e5:59:9b:a3:2a:cb:76:d2:79:9b:1e:
26:83:5c:39:14:2e:05:29:92:fa:5f:43:e9:53:08:
51:c2:58:78:d3:24:b0:18:5b:21:21:74:97:d8:ba:
83:ca:20:4b:02:fe:7a:82:56:ee:fe:14:5b:c6:d7:
f0:50:17:d4:dd:14:17:2a:a2:51:e1:3f:4f:7d:17:
7f:91:65:46:2d:d5:04:0d:3f:e7:8c:d2:a5:d9:c4:
a5:a7:4f:ff:6b:a7:73:05:c0:1c:f0:d6:34:b9:60:
72:54:99:ec:1a:19:de:1c:1f:ee:2a:4b:60:51:fd:
08:08:93:74:ad:d4:3f:b0:71:75:ac:9d:1f:10:0a:
4e:94:4f:92:3b:fa:69:56:a7:db:b1:f9:47:46:73:
b2:cf:0f:bd:0b:de:44:7f:5a:70:58:80:4e:de:6e:
31:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D0:95:CA:0A:57:99:92:35:28:B2:5A:51:4E:4E:44:2C:8A:34:EF
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:19:9e:b3:92:85:54:26:b5:5f:8f:ca:82:90:9f:a7:ee:09:
c3:e7:fc:2f:ad:a6:a1:50:6f:35:8a:eb:69:01:a8:b8:8f:b8:
20:48:8f:ed:0b:f9:4b:d3:e7:02:3a:d6:45:14:a8:0c:b8:ed:
4c:0b:c4:4f:9b:44:80:dd:23:08:a1:7d:a5:b3:76:ff:98:d2:
f8:ce:6d:0c:ac:01:9e:d4:a3:0d:c7:56:53:60:b7:1f:de:a5:
1d:c6:b7:0a:b7:ed:44:a2:28:14:ba:7e:ed:cc:ff:2e:a9:e6:
d4:2a:ca:9b:2f:f1:6a:5e:ab:df:93:07:a8:78:12:ca:cc:09:
74:e6:63:5a:1d:cf:50:2e:20:b8:1d:75:0d:54:76:bb:6f:50:
73:ef:3d:37:00:70:32:cc:ff:4c:6e:7a:ba:a8:19:b3:74:33:
a9:1f:b8:dd:bc:5b:ed:28:14:d8:58:cc:6a:c9:30:36:c3:4a:
8a:5d:ea:81:11:99:61:50:8a:f3:49:25:f2:d3:ad:6e:f2:ba:
01:3d:8b:35:ce:3d:0f:bb:03:4b:d0:f0:b8:da:3d:b1:5d:31:
ca:d5:11:e2:fd:84:84:e9:4c:33:e6:83:e0:8a:11:1a:a0:7d:
26:17:d0:1e:84:23:15:d9:54:51:2b:91:74:89:55:af:cf:0a:
85:52:21:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:41:04 2026 by rpki-client