Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: BZtgVTrk/u5Nw0GRBLUeRQLISQQuCY5brKxw+tewF7g=
Subject key identifier: DF:8B:95:9F:7D:06:AA:E5:62:27:81:D5:69:A4:32:DF:AB:49:B0:EB
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 019EBEED58FE343251115A5D8AF1B0F1A090
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0DCF
Signing time: Sat 13 Jun 2026 03:01:26 +0000
Manifest this update: Sat 13 Jun 2026 03:01:26 +0000
Manifest next update: Sun 14 Jun 2026 03:01:26 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: 6XTAAoFJcW3y8MSitJyrncY7/5EApO6dCbaQSaXUVwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ed:58:fe:34:32:51:11:5a:5d:8a:f1:b0:f1:a0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: Jun 13 03:01:26 2026 GMT
Not After : Jun 14 03:01:26 2026 GMT
Subject: CN=df8b959f7d06aae5622781d569a432dfab49b0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:27:2b:41:6e:07:9f:09:cc:31:db:4a:91:
ef:25:12:70:fd:24:0a:3b:2d:48:8c:0e:28:b8:15:
37:ae:0d:0c:d9:87:fe:8d:0c:8f:65:70:b9:6a:8d:
aa:60:18:06:e6:9f:1e:17:7e:a8:c1:59:a6:53:d5:
88:89:97:89:9a:80:4c:29:6e:b4:46:a4:44:e4:8c:
d7:44:dd:6a:28:de:f1:7a:de:d3:b3:a4:75:6b:87:
a6:b4:cc:e4:7e:e5:ba:7a:38:03:23:3e:81:4e:1a:
52:19:fe:1b:2e:4c:e0:58:c2:62:15:78:c0:44:a8:
db:8c:d4:66:00:90:7c:75:cd:e5:fe:38:4d:16:a9:
c4:03:f7:98:46:50:8b:9f:4a:07:5e:e5:ad:9e:74:
f5:2d:33:21:9f:32:04:fb:c4:0d:44:82:21:ca:9c:
a7:e1:b9:50:4d:ef:52:c3:9e:52:d4:9f:f2:fd:ee:
01:80:f3:c5:f6:70:3f:6d:77:21:ce:08:15:cb:fe:
34:e1:f1:6f:91:b6:7d:0d:8b:ea:15:da:ae:87:10:
1b:da:7b:8b:3d:8d:8f:b0:4a:2e:93:91:27:8c:cf:
29:cd:cc:6a:17:3f:81:1d:d9:c3:ad:dc:27:9d:2f:
a6:e8:40:93:b6:6f:a6:68:e0:47:22:00:24:c7:15:
92:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8B:95:9F:7D:06:AA:E5:62:27:81:D5:69:A4:32:DF:AB:49:B0:EB
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:41:a9:30:4a:f4:50:ee:56:2b:41:23:91:02:79:af:95:c9:
67:9d:98:6a:dc:e9:ba:d6:67:ab:bb:25:eb:ea:be:dc:4b:d6:
9b:ca:3f:62:87:4a:57:14:ac:cc:86:9d:93:31:85:3b:eb:7a:
5f:e8:3d:42:1c:a6:19:fd:49:b2:fd:ec:08:3b:91:f9:99:f7:
ea:74:a0:25:54:fe:bf:4f:20:5e:55:dc:06:38:b5:51:40:2d:
58:63:d5:4a:a9:14:90:72:41:a7:ca:92:87:9a:91:84:da:39:
b2:21:78:3e:6d:f4:cf:c2:b3:48:60:09:06:f0:22:89:15:04:
92:64:00:81:08:43:ae:bc:3f:db:84:5f:9c:53:74:00:5f:4c:
a5:55:3c:6e:5c:5b:86:79:94:87:f4:db:9d:a9:08:db:bb:54:
ec:46:5c:9a:02:9a:51:2f:03:41:db:3b:5e:7b:2d:ba:11:a0:
07:9f:1f:3c:6b:73:bc:3e:a0:4d:a5:3f:81:44:04:bd:b4:32:
37:b8:ab:5d:b3:8e:49:e6:d0:bf:35:bc:19:20:bd:89:9c:ad:
89:a0:bf:59:ae:f3:75:89:1b:b3:65:a6:5a:e3:0d:9c:ed:e0:
ed:03:60:99:97:4a:d3:ac:8b:67:85:a4:38:20:7e:0f:80:ba:
3a:96:03:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:26:57 2026 by rpki-client