Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json)
Hash identifier: a6TigYK9jlCZJ+jtEkNmAahxV/DMJSEAqC6502NgE9Q=
Subject key identifier: 21:76:19:F3:3A:C2:99:BB:0C:7F:14:CA:1D:DC:DE:20:53:4E:FF:6F
Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Certificate serial: 019E3185325C7898979348C3746B2B126056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
Manifest number: 067C
Signing time: Sat 16 May 2026 16:01:13 +0000
Manifest this update: Sat 16 May 2026 16:01:13 +0000
Manifest next update: Sun 17 May 2026 16:01:13 +0000
Files and hashes: 1: BcT1YlHw7D1Dk2z_LIFmn3rThJY.roa (hash: Eovd3kGKSBHE8soZjKT4R8yDeoxnP/onLhr4NTs+e6o=)
2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: PXWqTO9y+lNeMaCVNcVcrOrGbwVezi+rwor3WY2uPuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:32:5c:78:98:97:93:48:c3:74:6b:2b:12:60:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9
Validity
Not Before: May 16 16:01:13 2026 GMT
Not After : May 17 16:01:13 2026 GMT
Subject: CN=217619f33ac299bb0c7f14ca1ddcde20534eff6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fd:bb:87:e1:30:30:b8:64:52:d6:7a:ec:7d:
8f:0e:c6:2f:38:31:c7:0f:93:4b:73:fa:36:05:b5:
42:e6:3d:d2:39:93:50:30:9e:23:38:aa:64:57:9e:
e7:4d:cf:49:16:14:55:34:ae:38:bb:a4:a7:72:16:
56:a4:41:41:dc:96:81:53:d7:70:17:e3:7f:1a:fa:
83:74:cc:99:3c:bf:34:40:cb:94:64:07:15:be:4b:
ae:55:e0:b3:32:4e:b2:9b:d8:06:37:82:d2:e8:01:
52:7b:07:2e:10:4c:a2:97:0e:cd:fc:58:d8:9f:35:
25:e9:c1:77:f0:31:0a:d4:50:c9:68:38:26:1b:29:
27:de:e9:c0:c2:e1:a0:fc:65:d6:d6:ab:e3:ec:fd:
35:74:d4:89:64:1c:0f:2f:fa:2a:0d:87:50:7d:85:
e6:6e:ce:67:ac:75:cb:d6:e8:fa:21:06:82:de:6b:
a5:29:35:c5:1b:b0:34:92:c6:a5:d7:57:59:b6:57:
1f:df:10:9c:43:d3:95:d1:ff:35:9b:b9:4c:87:c3:
41:fa:dc:2b:28:c7:c6:7e:ce:dc:2a:13:0a:0c:64:
ae:9d:ac:7f:95:5e:f8:f6:d0:36:f3:83:48:04:8b:
e1:9b:be:4c:f3:bd:30:1b:f2:1b:47:d8:c5:57:ad:
f7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:76:19:F3:3A:C2:99:BB:0C:7F:14:CA:1D:DC:DE:20:53:4E:FF:6F
X509v3 Authority Key Identifier:
keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:63:16:05:8d:3e:9e:5e:b1:74:44:1b:63:01:a8:a9:65:57:
37:81:24:47:db:59:c4:58:70:72:70:05:9b:d7:f8:b2:0b:cc:
de:65:9f:10:b1:d7:ed:35:14:61:42:15:5b:53:7d:d9:1f:c8:
2a:ab:e1:0a:d0:2c:ec:a0:e8:83:09:88:4f:53:47:5f:db:f0:
18:04:92:0e:d9:01:3b:07:33:a9:b2:50:4e:d6:ec:ba:96:23:
69:99:69:ec:20:94:11:2a:fc:9b:8c:2d:d7:ee:22:95:2f:1a:
2d:6a:b1:34:ab:2d:5c:19:d1:d6:22:85:cb:13:14:f5:09:f2:
f8:b9:d8:a9:b3:cb:d2:68:03:ec:65:06:6b:04:75:13:92:47:
81:f7:b1:a5:d5:dc:1a:6c:e3:48:5b:8e:48:5b:f9:d9:99:a1:
a4:88:d5:46:72:5b:f3:6e:12:b0:5e:9b:80:3c:ad:b8:98:09:
66:28:5e:76:d0:51:46:83:c8:ab:ff:4c:5b:6e:6e:0e:37:49:
a1:f8:20:da:cc:0c:66:cf:e0:6e:2d:30:e2:e6:55:85:e7:ec:
15:08:a7:b4:82:61:7f:e2:f9:19:4b:f6:4c:99:0c:f4:3c:65:
e0:17:4f:18:1f:56:0d:74:9a:0f:c3:39:57:86:9e:66:bd:de:
be:46:c9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 00:27:55 2026 by rpki-client