Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: l0CFHnxnsUzWezO9jtRIycEX29dad/OJ5Zr6DwCM1pw=
Subject key identifier: 08:38:DB:A4:E0:C8:FB:0F:FF:57:D5:8B:CA:F5:20:81:6E:CB:14:EE
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019CAAFCFF6C9096ADC909F500774EDFABD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1854
Signing time: Sun 01 Mar 2026 20:00:32 +0000
Manifest this update: Sun 01 Mar 2026 20:00:32 +0000
Manifest next update: Mon 02 Mar 2026 20:00:32 +0000
Files and hashes: 1: ADB2NS1OG8KwsVLAD6NYCaCtJi4.roa (hash: aji7irnO+hSBbZms7WFiwbNpASyVLJ3jxlOuf/BgaKY=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: DJ9jIzNpgLowBkHa5iFiBwpBp3S9y2hYBS3x4BdHMVE=)
3: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=)
4: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=)
5: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=)
6: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fc:ff:6c:90:96:ad:c9:09:f5:00:77:4e:df:ab:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Mar 1 20:00:32 2026 GMT
Not After : Mar 2 20:00:32 2026 GMT
Subject: CN=0838dba4e0c8fb0fff57d58bcaf520816ecb14ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:82:1e:12:b2:8a:a7:8d:40:73:57:51:94:47:
b2:87:7b:b0:bb:d1:03:84:e0:a1:c2:3c:10:8c:f4:
1b:0e:da:e1:32:da:2e:ce:94:eb:0f:ee:4f:ab:c3:
b3:c7:41:dc:23:b3:42:80:f6:ac:08:a5:4c:9d:a4:
2e:87:ab:2d:37:63:ef:46:26:b1:32:0f:ec:22:87:
8a:5e:2d:db:0a:82:26:bc:c0:c4:fa:b6:b8:07:28:
f0:02:23:49:e9:e3:8b:38:f7:f8:07:a5:c0:87:7f:
fb:c8:c6:ff:0d:eb:01:5f:bf:90:d3:04:52:b8:ef:
0a:ec:93:de:1a:e9:e6:64:96:ee:90:17:ec:fa:35:
7e:c4:05:2a:34:33:e6:3d:8b:02:32:e2:49:ca:89:
77:52:b9:4f:68:c4:83:62:63:56:a3:fc:13:7a:e7:
5d:a7:74:df:43:c9:16:f4:3e:79:05:63:a6:e3:02:
18:79:e3:71:f6:fd:04:f9:f2:b6:40:d0:c7:70:b9:
11:60:c4:fe:c6:2b:b1:7a:78:a7:17:13:c1:27:d5:
46:95:a2:7b:78:d5:80:9d:4d:6a:c9:8a:49:d6:23:
6a:ed:df:62:21:80:c5:02:34:90:0a:d2:4a:44:fb:
2b:bb:91:eb:5f:0c:84:3f:d8:94:ee:5c:62:21:10:
eb:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:38:DB:A4:E0:C8:FB:0F:FF:57:D5:8B:CA:F5:20:81:6E:CB:14:EE
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:76:ed:d5:9a:98:df:8f:b2:f5:d2:4b:73:dd:8c:ae:1e:ba:
3b:77:16:d9:78:6b:b0:18:82:9a:53:12:fe:22:2d:1c:bb:58:
c1:63:fe:0b:5d:1b:17:df:b8:6a:e4:46:96:c2:65:66:c9:fc:
f7:9e:0a:35:bb:cc:80:3d:4c:50:7c:7b:58:14:16:3b:6b:73:
4c:67:33:2e:a3:6b:44:5e:c3:1a:e5:2b:72:ce:78:c8:5b:88:
a2:1a:4e:4b:df:35:81:c4:c9:74:3d:c8:fa:ec:b8:12:f6:e2:
0c:36:16:29:c5:3f:b6:d1:87:7d:49:07:66:91:f7:70:e4:f2:
94:ad:de:46:25:75:bc:dd:2b:ef:f5:d8:72:d1:cc:f5:df:55:
ab:e2:af:46:cc:e7:12:36:ff:94:94:5a:15:7c:5f:46:44:08:
63:27:3a:4d:e3:f9:85:c5:7f:17:9f:c4:30:0b:88:98:ee:96:
a4:94:31:b0:3b:ac:66:34:00:54:c8:bf:a9:7f:da:72:96:81:
af:a9:4e:be:88:6c:bb:7c:84:2b:80:c4:01:14:49:29:59:12:
41:53:75:cb:f7:7f:73:ad:09:38:9c:8c:f2:86:21:8c:72:de:
2c:0e:ed:a5:9d:a7:cd:7d:4b:32:45:02:10:19:b2:e5:f6:48:
c4:5d:d4:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:42 2026 by rpki-client