Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
File: AlY31IiO4AWN6a06cMQtxGmWmpk.mft (raw, json)
Hash identifier: cjpujpoUAJulJFuES2CAdYcir9iSQOVlRwkvzU+B3lI=
Subject key identifier: 25:E6:4E:18:34:48:9B:5F:46:A3:6B:A0:28:CB:60:7B:03:70:82:4E
Authority key identifier: 02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
Certificate issuer: /CN=025637d4888ee0058de9ad3a70c42dc469969a99
Certificate serial: 019E3004F6FD92326D3E15504C0B1F7D8E6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
Manifest number: 0D85
Signing time: Sat 16 May 2026 09:01:31 +0000
Manifest this update: Sat 16 May 2026 09:01:31 +0000
Manifest next update: Sun 17 May 2026 09:01:31 +0000
Files and hashes: 1: AlY31IiO4AWN6a06cMQtxGmWmpk.crl (hash: BuO74qBPSAmShumR7HaGSITY4tRb8QkcJlmUN974tx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:f6:fd:92:32:6d:3e:15:50:4c:0b:1f:7d:8e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025637d4888ee0058de9ad3a70c42dc469969a99
Validity
Not Before: May 16 09:01:31 2026 GMT
Not After : May 17 09:01:31 2026 GMT
Subject: CN=25e64e1834489b5f46a36ba028cb607b0370824e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2d:b3:5e:1c:55:a2:82:dc:2d:83:26:60:5d:
9e:dc:20:60:d0:61:8a:80:da:54:cc:d0:ad:c0:4f:
bd:38:a6:5e:37:27:10:a5:7d:ba:bb:54:59:f2:77:
9b:f9:c2:60:d0:34:e9:c5:c3:93:43:5c:57:3e:6e:
9d:bd:e8:ee:5a:0c:85:11:52:cc:c0:05:7f:8d:3c:
c3:40:53:41:2f:1f:49:ff:80:66:ec:96:5e:eb:1b:
74:38:92:44:5a:be:8b:f9:98:92:22:d0:24:34:92:
9c:dd:99:8c:50:fa:5f:07:5d:fc:75:b7:37:01:6d:
65:3f:2d:89:23:8c:0d:6f:e3:38:51:b6:a3:26:d6:
36:ca:67:15:80:a5:45:66:95:14:0f:4a:ae:6d:a6:
a2:3e:c1:a0:93:81:50:bb:80:40:d8:c9:6e:c5:aa:
73:45:db:a9:2e:8b:f1:98:27:ba:61:3c:94:32:b4:
3d:a2:4f:d1:d9:a6:70:1b:d4:a9:b2:ce:99:4f:e7:
b1:79:3f:74:9d:88:e4:dc:29:c8:2d:49:00:68:73:
fa:46:2e:cc:2f:65:33:cb:02:25:40:42:34:0b:8f:
a1:8f:73:4f:f4:3d:7c:c5:67:aa:cf:83:4f:36:b4:
9b:6f:3e:17:ea:66:92:56:0f:71:70:ba:ad:77:55:
7e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E6:4E:18:34:48:9B:5F:46:A3:6B:A0:28:CB:60:7B:03:70:82:4E
X509v3 Authority Key Identifier:
keyid:02:56:37:D4:88:8E:E0:05:8D:E9:AD:3A:70:C4:2D:C4:69:96:9A:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlY31IiO4AWN6a06cMQtxGmWmpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b2990d-4c52-42fa-b6b7-e0a4a4f9cabc/1/AlY31IiO4AWN6a06cMQtxGmWmpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:21:bd:5f:55:8d:8e:24:1d:1b:43:9c:0a:8e:7e:d7:b9:3d:
04:2f:fb:ed:30:f5:32:5d:8a:b5:a0:2b:45:a7:6c:4f:f6:32:
e7:bc:5e:14:af:bf:0d:aa:93:51:33:86:7c:ea:64:c3:aa:aa:
c7:50:bf:6d:30:fa:03:31:7f:33:63:1e:df:37:98:71:85:83:
97:07:4c:9d:62:dc:18:9e:7e:73:c7:28:33:87:46:d1:16:55:
e2:eb:e2:f3:ca:8d:93:f9:4e:1c:92:7f:c5:5c:67:d5:21:9a:
79:03:73:8d:e1:b9:90:f4:fb:44:a8:1f:ef:2e:23:04:9a:ad:
16:a6:f9:a9:80:b0:4a:46:71:27:32:12:90:14:f2:de:73:a2:
85:01:50:21:a0:19:4d:76:4a:d8:fb:b6:45:d2:b0:26:28:6c:
64:25:c4:45:88:14:61:8d:73:49:48:3e:01:50:75:6b:36:4a:
27:c1:28:d1:5c:c7:65:93:04:cf:66:63:99:51:27:bf:b2:8e:
8f:50:39:46:12:dc:9c:f0:44:09:0c:4a:3d:58:0f:6f:b9:83:
60:f4:2a:42:79:d7:4b:5f:fa:3e:0a:8a:19:a8:2a:63:f0:07:
0f:96:7e:5d:51:68:c5:33:e7:ec:fc:13:8e:a3:0d:fc:72:ab:
0f:fe:22:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBPb9kjJtPhVQTAsffY5rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTYzN2Q0ODg4ZWUwMDU4ZGU5YWQzYTcwYzQyZGM0Njk5
NjlhOTkwHhcNMjYwNTE2MDkwMTMxWhcNMjYwNTE3MDkwMTMxWjAzMTEwLwYDVQQD
EygyNWU2NGUxODM0NDg5YjVmNDZhMzZiYTAyOGNiNjA3YjAzNzA4MjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAri2zXhxVooLcLYMmYF2e3CBg0GGK
gNpUzNCtwE+9OKZeNycQpX26u1RZ8neb+cJg0DTpxcOTQ1xXPm6dvejuWgyFEVLM
wAV/jTzDQFNBLx9J/4Bm7JZe6xt0OJJEWr6L+ZiSItAkNJKc3ZmMUPpfB138dbc3
AW1lPy2JI4wNb+M4UbajJtY2ymcVgKVFZpUUD0qubaaiPsGgk4FQu4BA2Mluxapz
RdupLovxmCe6YTyUMrQ9ok/R2aZwG9Spss6ZT+exeT90nYjk3CnILUkAaHP6Ri7M
L2UzywIlQEI0C4+hj3NP9D18xWeqz4NPNrSbbz4X6maSVg9xcLqtd1V+OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCXmThg0SJtfRqNroCjLYHsDcIJOMB8GA1UdIwQY
MBaAFAJWN9SIjuAFjemtOnDELcRplpqZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2Yjct
ZTBhNGE0ZjljYWJjLzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9iMjk5MGQtNGM1Mi00MmZhLWI2YjctZTBhNGE0ZjljYWJj
LzEvQWxZMzFJaU80QVdONmEwNmNNUXR4R21XbXBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPSG9X1WN
jiQdG0OcCo5+17k9BC/77TD1Ml2KtaArRadsT/Yy57xeFK+/DaqTUTOGfOpkw6qq
x1C/bTD6AzF/M2Me3zeYcYWDlwdMnWLcGJ5+c8coM4dG0RZV4uvi88qNk/lOHJJ/
xVxn1SGaeQNzjeG5kPT7RKgf7y4jBJqtFqb5qYCwSkZxJzISkBTy3nOihQFQIaAZ
TXZK2Pu2RdKwJihsZCXERYgUYY1zSUg+AVB1azZKJ8Eo0VzHZZMEz2ZjmVEnv7KO
j1A5RhLcnPBECQxKPVgPb7mDYPQqQnnXS1/6PgqKGagqY/AHD5Z+XVFoxTPn7PwT
jqMN/HKrD/4i/Q==
-----END CERTIFICATE-----
Generated at Sat May 16 17:53:52 2026 by rpki-client