Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: rSijFdWRi7kUR0QNFXfdF01HhATmQpc3aq0g48Wt38k=
Subject key identifier: D5:3C:1F:9E:99:4C:C9:2A:33:D3:61:EA:EA:2F:50:2A:E1:21:59:6F
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 019D386593481A047DCC5E7EF6181B0DD206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:13 +0000
Manifest this update: Sun 29 Mar 2026 07:01:13 +0000
Manifest next update: Mon 30 Mar 2026 07:01:13 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: 9oFaraUtDxxGAID+uL4GenW9nsp/E+M88M8bjysHKJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:93:48:1a:04:7d:cc:5e:7e:f6:18:1b:0d:d2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Mar 29 07:01:13 2026 GMT
Not After : Mar 30 07:01:13 2026 GMT
Subject: CN=d53c1f9e994cc92a33d361eaea2f502ae121596f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:04:96:c8:fd:80:a2:29:62:64:4f:34:05:82:
4d:ad:67:e2:95:15:c5:e1:90:c9:71:7f:f6:34:c3:
c0:25:54:8d:8f:50:f7:ba:94:50:8e:82:87:bf:9f:
16:54:73:ce:54:bd:fc:f0:da:0f:6a:1d:d1:46:73:
ee:17:44:62:ea:df:13:2d:bc:5b:48:1e:4d:3a:98:
1b:6a:fa:07:0e:57:b6:74:4f:5a:32:fc:45:1f:35:
cf:20:42:67:28:b5:ff:f4:72:fa:eb:28:89:24:ee:
60:a9:94:14:e8:a0:8a:f9:f9:c9:f4:7a:65:d7:0b:
97:72:6b:7a:a0:58:d9:da:ea:a5:81:0c:ab:90:a3:
03:0c:8c:12:98:d2:72:f0:dc:8d:53:80:a6:05:e1:
63:55:40:76:08:1c:b0:e5:2e:41:6e:b4:b4:05:9f:
8a:c8:bd:38:14:c1:68:67:e7:7e:f1:77:7d:e1:87:
95:df:0a:30:6e:18:b0:84:ba:b3:21:e6:bf:79:be:
bd:66:f0:0e:d9:8a:58:84:35:a0:6a:88:77:53:16:
27:c4:85:dc:3d:99:6d:a1:5a:ca:68:e2:31:fa:f4:
37:14:50:22:e7:1d:ff:a3:86:9a:17:8d:6f:05:bf:
54:a3:dd:1c:26:76:7b:7a:c2:7b:f4:4c:96:7a:a3:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3C:1F:9E:99:4C:C9:2A:33:D3:61:EA:EA:2F:50:2A:E1:21:59:6F
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:35:f5:1a:3e:8f:9a:59:b7:ff:b7:19:77:20:42:4d:e4:dd:
ec:36:13:e8:a5:6c:a9:5d:cc:24:19:f6:ba:0c:38:30:3b:ea:
3a:2a:3e:d7:63:3b:70:0e:d3:0a:01:ab:25:71:19:be:81:a7:
d1:39:d8:b2:4d:28:a6:99:f3:bb:cf:36:a9:0a:a2:2c:f6:b4:
d1:9a:e8:68:f2:c5:42:84:4d:34:c5:54:9f:5d:14:14:3a:3a:
71:c4:6e:83:88:37:a1:f9:39:47:7e:43:bc:a9:5d:60:6a:d6:
59:5c:51:eb:ef:4a:40:c1:91:73:0c:a3:7d:5e:0e:80:9b:a0:
f9:b8:1d:e6:de:c3:ea:9e:dc:82:14:dd:da:61:68:70:8c:12:
56:b1:6a:8c:82:7c:3f:12:7b:de:66:12:9d:ac:10:36:92:f0:
09:a1:dc:a5:fd:99:a7:12:ce:19:89:94:4b:6a:08:cb:fd:3a:
86:53:71:2f:9f:13:c9:43:0b:fe:07:b4:c4:e6:34:38:bc:81:
4e:d1:83:1c:f5:3f:59:b7:a2:ff:b6:87:5d:e8:4e:3c:b0:6d:
56:12:99:a9:9a:d3:58:72:da:f1:b5:55:28:bf:5d:88:fe:80:
90:55:bc:50:16:9a:5f:0a:e5:43:f7:3d:2c:b3:d8:39:eb:32:
19:8b:ba:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZZNIGgR9zF5+9hgbDdIGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTFmNmFiZTBiYjI2YmZlNDg1OWU1NGRlZTBmZGM5YTVi
NzhhMDUwHhcNMjYwMzI5MDcwMTEzWhcNMjYwMzMwMDcwMTEzWjAzMTEwLwYDVQQD
EyhkNTNjMWY5ZTk5NGNjOTJhMzNkMzYxZWFlYTJmNTAyYWUxMjE1OTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsASWyP2AoiliZE80BYJNrWfilRXF
4ZDJcX/2NMPAJVSNj1D3upRQjoKHv58WVHPOVL388NoPah3RRnPuF0Ri6t8TLbxb
SB5NOpgbavoHDle2dE9aMvxFHzXPIEJnKLX/9HL66yiJJO5gqZQU6KCK+fnJ9Hpl
1wuXcmt6oFjZ2uqlgQyrkKMDDIwSmNJy8NyNU4CmBeFjVUB2CByw5S5BbrS0BZ+K
yL04FMFoZ+d+8Xd94YeV3wowbhiwhLqzIea/eb69ZvAO2YpYhDWgaoh3UxYnxIXc
PZltoVrKaOIx+vQ3FFAi5x3/o4aaF41vBb9Uo90cJnZ7esJ79EyWeqNjJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNU8H56ZTMkqM9Nh6uovUCrhIVlvMB8GA1UdIwQY
MBaAFAJR9qvguya/5IWeVN7g/cmlt4oFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgt
MmY0ZWI5YzA2MDM1LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgtMmY0ZWI5YzA2MDM1
LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsjX1Gj6P
mlm3/7cZdyBCTeTd7DYT6KVsqV3MJBn2ugw4MDvqOio+12M7cA7TCgGrJXEZvoGn
0TnYsk0oppnzu882qQqiLPa00ZroaPLFQoRNNMVUn10UFDo6ccRug4g3ofk5R35D
vKldYGrWWVxR6+9KQMGRcwyjfV4OgJug+bgd5t7D6p7cghTd2mFocIwSVrFqjIJ8
PxJ73mYSnawQNpLwCaHcpf2ZpxLOGYmUS2oIy/06hlNxL58TyUML/ge0xOY0OLyB
TtGDHPU/Wbei/7aHXehOPLBtVhKZqZrTWHLa8bVVKL9diP6AkFW8UBaaXwrlQ/c9
LLPYOesyGYu6GQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:20:30 2026 by rpki-client