Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: e7zQmlW85dtpmAh9HB5wToVkTPaIZPYzo04NQMewZ94=
Subject key identifier: EC:39:63:7E:1C:4F:06:12:E2:07:E7:BC:EC:C2:A4:BA:5E:E9:B9:42
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019D9BF55FB2DDF3A2A4966536AF5B2519C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 18D2
Signing time: Fri 17 Apr 2026 15:00:42 +0000
Manifest this update: Fri 17 Apr 2026 15:00:42 +0000
Manifest next update: Sat 18 Apr 2026 15:00:42 +0000
Files and hashes: 1: 4IwtnOs_iwVpuxuyxf_djhxqxzo.roa (hash: G10HT/r9NNyWdyBn6Pz/raHjo4uYh+brQrONHtIQaYE=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: vYd8meFARfPhUjZKDf44cxI5UCkBfG13A+iVDFdbKmI=)
3: Cpsl_lQBgEEbAkoRvRPOG0W_Zc8.roa (hash: 8vUi/f1O2zm8nVjMwrWjmaGjGaEoQH6CKoqkrynjuWo=)
4: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=)
5: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=)
6: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=)
7: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:5f:b2:dd:f3:a2:a4:96:65:36:af:5b:25:19:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Apr 17 15:00:42 2026 GMT
Not After : Apr 18 15:00:42 2026 GMT
Subject: CN=ec39637e1c4f0612e207e7bcecc2a4ba5ee9b942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2a:99:d6:18:60:9d:2f:08:c7:bf:12:0d:e3:
9b:b8:3a:20:09:75:e0:3b:ff:f5:05:97:85:b8:3f:
4d:ce:92:3c:79:9b:23:db:04:e8:a7:94:01:79:a4:
c2:51:e9:23:d3:68:60:d6:bd:f6:0e:04:b4:05:90:
3b:c1:5d:2a:ab:3b:f3:13:b5:f7:e3:42:86:fc:7a:
18:36:78:9b:75:9b:c4:03:2c:5b:68:12:e5:20:01:
34:f7:87:5f:9c:66:91:24:1b:ba:31:99:e7:7a:3a:
62:10:42:06:13:50:49:a7:1e:e8:92:d9:40:6c:9c:
34:b1:2c:7f:96:af:30:98:19:82:fd:ab:c9:0d:e7:
d8:c4:0e:af:5d:7e:a4:15:23:da:64:ba:e8:d9:6f:
f6:b5:df:2c:cd:d7:34:f8:f7:ba:5b:66:2c:d4:95:
93:e6:27:2a:69:5e:36:08:89:f5:f5:e7:da:c9:a2:
2c:84:23:a1:f7:68:4d:d9:1f:44:04:c9:bc:63:8f:
44:04:a9:5b:a8:06:1a:dc:66:7b:a1:fa:fb:c5:38:
d3:28:6d:31:c6:3a:55:ec:e7:8c:47:ec:bf:58:ff:
d3:0f:fd:24:09:dd:20:c8:20:59:46:9c:71:63:53:
3c:ee:c6:0b:73:f6:3b:a5:31:41:35:90:b1:d1:07:
f1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:39:63:7E:1C:4F:06:12:E2:07:E7:BC:EC:C2:A4:BA:5E:E9:B9:42
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:b7:df:ff:71:4d:24:58:d2:0f:2e:84:8b:e2:b0:c0:1d:f0:
c7:8b:72:4f:0d:b7:f4:cc:8f:ed:18:47:ac:ce:62:a9:3a:9a:
7c:84:6a:0a:71:ed:10:59:2a:ca:7a:ff:18:9c:b0:dc:c9:94:
2a:45:6c:70:ef:e2:e5:40:ff:aa:ff:18:4a:4d:96:fa:26:b8:
f7:c2:92:a5:da:76:af:c2:7c:bc:ba:b5:33:2e:54:56:7c:b5:
d9:fe:a7:9c:71:4d:fc:22:66:1d:2b:b7:09:51:61:7a:8b:35:
94:ce:a0:db:f6:cc:71:8a:bd:c3:43:2f:40:25:6d:a6:fb:ff:
cd:b8:f2:2a:12:1d:33:c6:1a:8b:54:b1:af:28:5c:c2:08:e8:
96:56:51:54:ae:ac:e1:f0:43:fe:54:42:d0:e1:68:5c:79:5b:
75:7a:46:23:4d:b1:b0:b5:fd:6f:d3:56:73:03:79:b2:0d:a4:
a6:d4:0e:92:2f:53:3e:a5:54:49:d0:21:96:43:4e:e1:a1:f5:
5f:b9:d2:3a:c8:c8:49:91:e6:82:8b:0a:92:76:6d:27:51:e7:
ba:a2:b4:bb:f3:e7:d1:3e:72:39:3c:56:33:a1:b6:11:94:c6:
48:d1:ca:ff:1d:33:de:5c:34:3a:06:5b:29:d8:84:f7:2e:d0:
87:9d:4d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:35:33 2026 by rpki-client