Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: kYsZl7ZQLvqKdVc9ey/TvidxiDKuJDa6d/e+LPjO9Nk=
Subject key identifier: E3:6A:9B:7C:26:17:31:50:4D:1C:77:3B:7B:05:F8:7E:AD:23:EF:37
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019EBF9134F39AE22CD9664878F4C627133B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1969
Signing time: Sat 13 Jun 2026 06:00:24 +0000
Manifest this update: Sat 13 Jun 2026 06:00:24 +0000
Manifest next update: Sun 14 Jun 2026 06:00:24 +0000
Files and hashes: 1: 4IwtnOs_iwVpuxuyxf_djhxqxzo.roa (hash: G10HT/r9NNyWdyBn6Pz/raHjo4uYh+brQrONHtIQaYE=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: iTuBkJ0ONI7dkk1Ucv+Ws9ZGRQatpY/vuHGmVs7s/Fw=)
3: Cpsl_lQBgEEbAkoRvRPOG0W_Zc8.roa (hash: 8vUi/f1O2zm8nVjMwrWjmaGjGaEoQH6CKoqkrynjuWo=)
4: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=)
5: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=)
6: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=)
7: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 06:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:34:f3:9a:e2:2c:d9:66:48:78:f4:c6:27:13:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Jun 13 06:00:24 2026 GMT
Not After : Jun 14 06:00:24 2026 GMT
Subject: CN=e36a9b7c261731504d1c773b7b05f87ead23ef37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e5:df:6a:0d:70:8e:83:22:f9:7b:73:e6:26:
93:a4:be:42:1e:de:c1:ec:b9:29:09:d7:03:71:e5:
33:6b:2e:6c:f1:f0:1a:48:4b:bd:4a:34:0a:d5:20:
07:40:49:46:2f:fe:8a:2b:92:3f:d5:64:4a:39:da:
57:b9:7d:7c:b1:11:cb:34:a0:45:00:c1:c6:59:a8:
6e:19:d3:6b:a0:ad:e6:50:3c:e9:cf:51:f8:2c:56:
50:27:4d:4c:14:22:00:e9:89:ec:96:eb:63:6a:35:
a4:a4:f7:cd:a3:e7:f3:a1:25:1f:18:67:1e:9e:04:
a5:90:58:19:a2:cd:70:cd:af:72:fa:96:fe:90:ed:
84:cc:26:36:13:d7:ba:5e:50:ee:c3:53:84:99:81:
42:d7:05:1c:ca:4f:41:41:e8:d2:1d:e3:fd:e3:b2:
6d:9d:e2:91:20:b5:a3:78:5d:59:db:c3:e5:e4:c9:
f3:8f:33:ce:11:01:4b:4c:18:74:65:35:b8:20:21:
86:d5:02:9e:4d:28:90:54:78:0c:31:3d:01:90:e7:
03:8f:92:67:0c:a9:e2:b8:0a:ae:69:44:86:78:16:
2a:e8:8f:d1:3b:b2:76:da:ab:3a:84:6a:09:0a:00:
4d:df:f6:08:84:65:eb:3e:e3:a3:f0:79:ce:ec:d6:
9d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6A:9B:7C:26:17:31:50:4D:1C:77:3B:7B:05:F8:7E:AD:23:EF:37
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:68:7b:36:2f:7c:df:28:9a:be:c8:47:09:43:14:19:39:f9:
36:b1:a9:bb:b4:bf:11:61:b5:14:31:0b:1e:81:5f:03:05:55:
c0:4a:27:9e:61:6d:cd:ca:5c:02:9c:33:3a:4c:3f:5b:cf:a9:
d6:ef:71:f7:39:fb:40:d7:21:c9:e1:54:c4:0d:67:71:cd:7a:
1e:03:20:ee:fb:56:16:17:f2:3f:17:f0:e6:e3:13:73:1e:3d:
6b:14:27:92:e7:a7:8c:b7:6f:bb:23:fb:42:7a:12:bb:7b:06:
a4:41:39:a8:18:2c:b9:0b:a6:2b:ae:52:ba:04:c0:41:3e:7d:
02:b1:44:73:2f:69:36:69:dd:32:d9:d8:03:15:e7:50:68:cb:
d1:f3:c6:6f:6b:31:20:33:46:d1:54:48:3f:62:c4:5c:17:46:
1b:bf:88:fd:40:c6:c7:c0:eb:e4:e6:a4:ae:ad:34:45:49:ef:
3c:ae:d5:f4:34:65:61:c8:b6:d1:c7:06:7b:8a:e2:2e:43:ea:
1b:3d:e5:cf:86:35:98:1b:b1:95:5d:09:36:70:e9:b7:92:87:
72:c3:e8:f7:21:fb:bc:46:25:35:16:8a:12:58:46:39:72:f8:
97:e9:44:cc:4b:7b:4e:10:53:dd:ca:39:25:34:31:8e:64:4f:
2c:2f:cb:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:07:25 2026 by rpki-client