Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: WxFyd6ei+mntyZJVoLtvM6SG4atMTXuqcrURgrLPd+8=
Subject key identifier: FB:E2:9B:2F:AA:C9:E2:53:70:FB:21:8D:13:EF:F7:F1:69:ED:31:77
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 019D397768249CE4A90709F7209A78E711B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 08B1
Signing time: Sun 29 Mar 2026 12:00:19 +0000
Manifest this update: Sun 29 Mar 2026 12:00:19 +0000
Manifest next update: Mon 30 Mar 2026 12:00:19 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: dzi73usJce7N0Zqq0LEZw5MuX/RjvhIvgyX5vwBxKO4=)
2: PMWWklW51anXq7aRQXkdao86Jek.roa (hash: +f085vkz6griqp0/YZpf7yExFFEfbfc0Y85L8JbYisc=)
3: h3tLHRWk_OmFsZTg_jd5-mdYTds.roa (hash: xHXqRtgjeuL+vMeMb7Pl+kHYtqxysXcomaAK0drp85s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:68:24:9c:e4:a9:07:09:f7:20:9a:78:e7:11:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: Mar 29 12:00:19 2026 GMT
Not After : Mar 30 12:00:19 2026 GMT
Subject: CN=fbe29b2faac9e25370fb218d13eff7f169ed3177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:32:f1:0f:7e:9e:df:2a:7b:a2:09:19:06:55:
af:64:90:e6:ee:83:be:76:40:aa:c1:67:3b:bc:0d:
24:6f:7a:b7:14:3f:a4:d2:f1:d7:a2:8f:a8:ce:c0:
fe:64:21:b9:c7:43:f3:3f:1f:0b:99:3c:34:42:98:
03:6c:eb:96:64:84:0e:aa:26:32:95:12:d3:8d:86:
8e:5d:58:67:44:c1:d0:99:c9:eb:59:3d:64:30:f3:
e7:7a:9e:a9:c9:e6:55:f9:6c:63:27:d1:76:71:ed:
a3:59:b7:7f:16:8e:ee:47:76:96:fc:a3:da:16:8a:
81:c2:99:31:52:3f:4a:f2:5c:8f:36:60:b7:ef:53:
53:4a:8b:57:43:1c:ea:be:1d:13:4f:f7:aa:41:7b:
12:f8:12:51:08:68:b6:32:29:f1:48:14:a8:76:df:
4f:cb:2d:1b:de:40:de:6a:93:eb:be:92:3a:1f:50:
ab:cd:d7:0b:e9:29:27:b6:ec:ea:20:f2:d4:c9:92:
69:4e:90:c2:0e:14:b6:65:0a:0e:50:32:ac:7d:d4:
9d:e0:8a:73:a7:90:3c:1e:81:85:86:5b:5c:66:e5:
d3:5d:85:79:e2:16:4e:3b:95:74:3e:39:ea:14:82:
fa:51:d6:5d:db:ab:4d:e3:3b:b4:34:49:97:cb:82:
03:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E2:9B:2F:AA:C9:E2:53:70:FB:21:8D:13:EF:F7:F1:69:ED:31:77
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:0b:85:7c:80:d2:9b:83:24:07:4e:2c:18:96:7f:86:42:3b:
00:fe:25:63:73:70:05:d6:be:c6:95:5e:24:1c:f2:18:0a:4c:
b3:a5:f5:43:51:fb:29:d8:53:51:d2:8a:6f:e8:28:02:e4:2c:
69:0c:d3:b2:c8:c1:90:c1:48:5a:3e:ad:2a:a3:59:36:86:ad:
61:22:24:3c:9c:90:eb:9b:f3:e9:eb:79:bb:82:14:64:33:8d:
d5:c0:f2:b6:ec:46:d5:9e:8a:c4:b7:6a:82:81:f2:a4:f9:a8:
88:16:f8:b5:a1:33:f8:97:a6:cd:56:53:7b:be:e4:4f:c3:6e:
1a:11:22:76:78:b2:f3:e8:d1:e3:76:d9:d6:0c:36:8a:7e:4f:
84:5f:75:29:6a:16:76:38:39:2b:11:54:82:ee:c8:61:c8:85:
0e:8e:7a:54:f4:f1:c4:f8:93:31:e2:82:6f:d7:a0:f2:77:b7:
d1:a2:c3:2c:fe:45:0b:43:76:6f:2e:3e:79:b6:f2:b6:da:e3:
3d:8a:9d:73:54:2b:e9:4b:fb:b8:c4:3a:d1:35:d3:32:4f:9f:
8a:52:f3:84:e7:17:c7:43:42:50:75:fc:84:6d:83:ad:f6:5e:
99:ba:5c:c1:a6:ae:19:8a:d1:52:27:64:60:c4:29:2d:b3:f5:
e7:95:47:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d2gknOSpBwn3IJp45xG4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTNiOTE5ZDc1ZGMyMDRkOWNhMzhkYjdiMjhhMTc0ODM0
YjNiM2QwHhcNMjYwMzI5MTIwMDE5WhcNMjYwMzMwMTIwMDE5WjAzMTEwLwYDVQQD
EyhmYmUyOWIyZmFhYzllMjUzNzBmYjIxOGQxM2VmZjdmMTY5ZWQzMTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizLxD36e3yp7ogkZBlWvZJDm7oO+
dkCqwWc7vA0kb3q3FD+k0vHXoo+ozsD+ZCG5x0PzPx8LmTw0QpgDbOuWZIQOqiYy
lRLTjYaOXVhnRMHQmcnrWT1kMPPnep6pyeZV+WxjJ9F2ce2jWbd/Fo7uR3aW/KPa
FoqBwpkxUj9K8lyPNmC371NTSotXQxzqvh0TT/eqQXsS+BJRCGi2MinxSBSodt9P
yy0b3kDeapPrvpI6H1CrzdcL6SkntuzqIPLUyZJpTpDCDhS2ZQoOUDKsfdSd4Ipz
p5A8HoGFhltcZuXTXYV54hZOO5V0PjnqFIL6UdZd26tN4zu0NEmXy4IDrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPvimy+qyeJTcPshjRPv9/Fp7TF3MB8GA1UdIwQY
MBaAFAJTuRnXXcIE2co423sooXSDSzs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2Yt
NzNkYjBmMjg0MWM5LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2YtNzNkYjBmMjg0MWM5
LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdguFfIDS
m4MkB04sGJZ/hkI7AP4lY3NwBda+xpVeJBzyGApMs6X1Q1H7KdhTUdKKb+goAuQs
aQzTssjBkMFIWj6tKqNZNoatYSIkPJyQ65vz6et5u4IUZDON1cDytuxG1Z6KxLdq
goHypPmoiBb4taEz+JemzVZTe77kT8NuGhEidniy8+jR43bZ1gw2in5PhF91KWoW
djg5KxFUgu7IYciFDo56VPTxxPiTMeKCb9eg8ne30aLDLP5FC0N2by4+ebbyttrj
PYqdc1Qr6Uv7uMQ60TXTMk+filLzhOcXx0NCUHX8hG2DrfZembpcwaauGYrRUidk
YMQpLbP155VHcg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:59 2026 by rpki-client