Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
File: aUAlihpormBcBz-1g7E-E3a3eKc.mft (raw, json)
Hash identifier: 0wkGPMVjBkOBc2X1Kli4mGqEBETQ+H+jqj0iwE6V/k4=
Subject key identifier: EB:39:52:6E:BA:D8:1F:67:04:FD:2C:F9:AB:B5:5B:FF:90:42:07:46
Authority key identifier: 69:40:25:8A:1A:68:AE:60:5C:07:3F:B5:83:B1:3E:13:76:B7:78:A7
Certificate issuer: /CN=6940258a1a68ae605c073fb583b13e1376b778a7
Certificate serial: 019D3789253628DBF65D03CACD2B3EC5B392
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 03:00:27 +0000
Manifest this update: Sun 29 Mar 2026 03:00:27 +0000
Manifest next update: Mon 30 Mar 2026 03:00:27 +0000
Files and hashes: 1: aUAlihpormBcBz-1g7E-E3a3eKc.crl (hash: Um9V9XQjwwcBQyrHCon6fy5nzn0p3K/AKnD01Z466+E=)
2: cBk3ZWq1jJ5c0Xw6pclTJe1ARUQ.roa (hash: tIaWypa+2w3+EhClID+rbKASz6IrpIfwCtlLXu1+XIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:25:36:28:db:f6:5d:03:ca:cd:2b:3e:c5:b3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6940258a1a68ae605c073fb583b13e1376b778a7
Validity
Not Before: Mar 29 03:00:27 2026 GMT
Not After : Mar 30 03:00:27 2026 GMT
Subject: CN=eb39526ebad81f6704fd2cf9abb55bff90420746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:75:73:29:91:0b:11:7f:f8:f6:03:11:32:d1:
bd:9a:ad:5b:d7:b5:87:ae:50:63:3f:46:df:96:0e:
6c:dd:13:f8:43:ad:2f:9a:91:25:d6:f5:76:32:74:
a3:bb:b5:a5:28:80:75:ed:03:27:90:76:25:ad:d7:
a5:ac:60:21:7e:f7:f9:5e:2c:37:a5:f8:f2:24:08:
b4:ca:9b:ef:e6:a4:c0:cc:3f:e6:c3:de:df:33:45:
53:bd:a1:eb:b5:b2:71:9a:bc:78:06:99:02:6b:ba:
25:40:26:f4:65:75:dc:38:97:5e:ef:31:65:4e:e6:
48:da:78:b3:c0:2d:2f:90:eb:ba:c3:95:78:4d:56:
8e:1b:4b:87:f2:2d:64:d6:92:d0:ae:46:ec:0d:60:
6e:7c:3b:d2:f8:e6:b9:9b:ee:7f:24:9b:70:84:13:
db:70:1d:aa:07:93:23:b4:2f:ce:f9:63:c5:b0:35:
d2:27:42:f5:72:6e:35:5a:14:be:35:57:7a:11:aa:
8f:20:d6:10:10:62:08:ac:77:43:23:ca:4f:51:fb:
eb:8a:65:00:9b:7d:d0:57:e5:9b:af:6b:02:b4:e8:
9e:21:b3:4f:0d:b0:33:1c:c8:37:47:ec:1a:06:17:
56:ec:f4:ae:5b:c5:8b:10:62:29:d4:57:1b:4b:37:
aa:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:39:52:6E:BA:D8:1F:67:04:FD:2C:F9:AB:B5:5B:FF:90:42:07:46
X509v3 Authority Key Identifier:
keyid:69:40:25:8A:1A:68:AE:60:5C:07:3F:B5:83:B1:3E:13:76:B7:78:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aUAlihpormBcBz-1g7E-E3a3eKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1434cd-a3d6-4488-8888-749e980ec0b7/1/aUAlihpormBcBz-1g7E-E3a3eKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:6f:40:43:dd:cb:41:eb:6d:f2:60:42:22:ee:4c:50:7c:ed:
80:3e:1b:f4:15:25:3c:23:c5:8e:19:31:ae:3a:e3:c5:f4:19:
e4:fb:5a:35:fc:f2:e5:c5:80:b0:d7:ca:29:ab:fe:88:c7:d6:
32:2e:b4:88:ec:a1:9e:ce:3d:c1:7d:00:c1:a0:5e:ea:37:1c:
39:2d:c3:19:4c:30:d5:14:87:1f:e4:5a:e7:34:2e:7e:29:b9:
c6:90:50:ca:42:02:4d:5d:b2:94:dc:ab:f9:24:88:d3:35:76:
55:b2:f4:d9:e4:14:5f:24:bd:47:28:7a:d3:ed:48:30:6f:c6:
ec:bc:01:90:9f:fe:7b:0d:bb:b9:15:de:cb:a1:ef:98:b4:94:
3d:49:43:96:46:c2:d0:71:3c:58:50:35:0e:c6:80:e0:56:93:
65:49:70:f4:08:c1:11:9a:36:54:6c:3f:67:f8:86:1a:54:85:
99:6d:65:68:59:48:cf:59:4a:ac:c2:de:e4:0a:33:8b:6c:9e:
74:86:43:1c:2c:fe:e6:07:e3:8e:e1:cd:c5:f8:f0:e3:43:82:
96:23:ee:13:84:70:b4:44:39:e4:2b:d1:83:19:ea:54:aa:d5:
82:3a:cb:c2:15:0c:8a:23:3d:e1:fe:a1:18:23:83:09:1d:d4:
e4:fa:87:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:09 2026 by rpki-client