Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: 30Fysttjf41BXyHSTtB5Dt6Kg4RnFHeaVewZNu60mPU=
Subject key identifier: 98:99:DB:86:B5:F8:93:BF:77:40:F5:F1:C2:A8:03:58:97:3E:C0:58
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 019E30A9457A3BE98F455E07FECCF69A47C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 0931
Signing time: Sat 16 May 2026 12:01:00 +0000
Manifest this update: Sat 16 May 2026 12:01:00 +0000
Manifest next update: Sun 17 May 2026 12:01:00 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: 2wlH5QIOuwngDjsWyLJE1Q99frhqa+AOatOkPtM8gtE=)
2: PMWWklW51anXq7aRQXkdao86Jek.roa (hash: +f085vkz6griqp0/YZpf7yExFFEfbfc0Y85L8JbYisc=)
3: h3tLHRWk_OmFsZTg_jd5-mdYTds.roa (hash: xHXqRtgjeuL+vMeMb7Pl+kHYtqxysXcomaAK0drp85s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:45:7a:3b:e9:8f:45:5e:07:fe:cc:f6:9a:47:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: May 16 12:01:00 2026 GMT
Not After : May 17 12:01:00 2026 GMT
Subject: CN=9899db86b5f893bf7740f5f1c2a80358973ec058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:05:9f:1b:cd:9b:88:12:10:25:4a:cc:b9:
29:df:e0:4a:ee:5b:ba:3f:c9:ec:2c:bc:ae:d7:40:
89:8a:ea:22:26:43:a9:97:ce:de:cb:4c:b8:63:cc:
9f:54:5a:8a:c1:d4:92:98:a5:ca:25:82:40:47:6a:
c4:6b:52:17:2c:d6:1b:79:6d:4a:56:f7:b4:51:d2:
82:00:cc:a5:27:c2:fd:09:3d:00:5e:b7:3f:11:d3:
57:96:ab:23:bc:4c:e7:71:56:59:4b:52:9a:af:a2:
21:69:91:cf:81:96:39:06:9b:23:75:de:b1:fe:8a:
67:cb:6c:22:2c:e8:6a:3b:c6:fb:8b:20:a3:2f:e4:
25:46:e1:56:23:24:3a:c7:b3:36:b6:f5:89:02:7c:
8f:ca:36:96:1d:91:49:e3:89:ee:06:bb:57:5b:2e:
8a:94:e1:cd:f4:57:19:ca:1a:32:8a:7e:18:5a:26:
a2:05:13:0b:ac:3a:25:00:ca:0e:2e:73:2a:29:7f:
e0:d1:10:65:29:48:79:be:02:de:8a:d2:ab:bc:8d:
d7:38:ad:4f:05:75:32:0e:56:da:92:f2:2d:dc:9d:
e0:0d:c8:12:fe:f2:31:50:28:10:64:b7:8a:db:21:
fe:3a:ad:99:c0:ef:e5:f3:23:ee:ec:56:f3:b0:80:
38:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:99:DB:86:B5:F8:93:BF:77:40:F5:F1:C2:A8:03:58:97:3E:C0:58
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:52:c0:4d:bf:6c:a7:6d:52:ae:78:25:79:6d:55:a9:34:9f:
db:02:42:8d:f5:f6:98:48:67:cd:1e:e4:af:88:d2:e6:e9:f9:
c3:2d:48:5c:84:bb:34:97:17:0c:c7:bf:56:97:8e:c7:9c:a9:
8f:f5:58:0f:d1:ed:37:17:62:38:5c:fc:b5:5c:3a:e0:08:f4:
a8:bb:6a:89:49:bd:43:04:6c:8c:f0:b8:5e:ca:12:11:94:61:
cf:4a:cc:23:83:e6:07:5d:fe:c7:0a:6d:83:e0:04:75:6d:e9:
e2:46:60:f3:8c:b6:6c:28:e6:23:1a:50:37:14:17:55:ad:ed:
51:f4:93:3a:51:59:23:30:20:ff:3e:04:8f:f5:49:5e:d9:49:
c7:5c:2b:c7:20:30:19:b3:7c:67:12:83:b8:ea:f1:77:3e:ae:
83:b9:86:89:10:18:41:01:c1:20:7b:43:e4:c6:e7:c5:ea:24:
38:a7:6d:28:48:7f:21:2d:e7:66:fb:22:68:11:c0:ee:44:5d:
0a:05:0b:73:f1:40:31:15:42:c2:dc:5b:53:a9:34:03:54:69:
ab:e6:e4:34:bb:98:c5:3b:da:37:21:4b:74:f2:0d:04:30:12:
6a:7d:50:e7:e1:7e:55:6b:5d:fe:f7:d6:50:78:09:b2:88:47:
e0:17:ea:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:29 2026 by rpki-client