Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: dzEcqowNeXyeRrmigewiBuRw9dlPo152aTIfUA3+TiE=
Subject key identifier: 5D:6C:F9:1A:61:FF:B1:32:44:E6:80:91:F3:BC:6E:CF:96:DF:6A:C6
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019EE254A058FC98F3E07151DC959B7DE263
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 197B
Signing time: Sat 20 Jun 2026 00:00:57 +0000
Manifest this update: Sat 20 Jun 2026 00:00:57 +0000
Manifest next update: Sun 21 Jun 2026 00:00:57 +0000
Files and hashes: 1: 4IwtnOs_iwVpuxuyxf_djhxqxzo.roa (hash: G10HT/r9NNyWdyBn6Pz/raHjo4uYh+brQrONHtIQaYE=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: GuWGkW9hS8HBRG//N+46NSW0E17yckY+NXmf3d8Wc1Q=)
3: Cpsl_lQBgEEbAkoRvRPOG0W_Zc8.roa (hash: 8vUi/f1O2zm8nVjMwrWjmaGjGaEoQH6CKoqkrynjuWo=)
4: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=)
5: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=)
6: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=)
7: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 19:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e2:54:a0:58:fc:98:f3:e0:71:51:dc:95:9b:7d:e2:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Jun 20 00:00:57 2026 GMT
Not After : Jun 21 00:00:57 2026 GMT
Subject: CN=5d6cf91a61ffb13244e68091f3bc6ecf96df6ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7d:ef:14:5d:20:49:27:b5:e8:94:fd:1a:64:
c5:63:4a:a8:07:a4:b6:26:d3:cf:d2:79:0e:b2:ef:
e6:d3:f5:41:d1:29:1b:08:c5:df:74:d6:2f:62:68:
80:41:95:2f:d3:4d:0d:6c:17:62:24:2c:76:25:03:
5f:41:03:8a:c4:be:6f:c1:e7:94:4e:a4:a4:44:fe:
2a:c6:67:10:a2:f2:46:ac:ef:cd:75:16:1b:60:35:
cf:2a:b5:4d:f1:12:e3:d8:35:6a:b1:6c:e3:ee:5d:
88:c5:ea:a0:22:72:2f:82:18:c1:01:70:49:ba:de:
9c:cc:03:9a:bd:7d:f2:c7:8e:6c:29:ea:35:cc:65:
1a:db:97:3c:96:b1:e9:bf:4b:79:64:5d:b9:ad:d0:
e7:9c:80:22:15:31:34:ea:91:59:f3:8d:ca:6d:24:
df:04:7e:39:64:67:f9:13:71:1a:8a:2d:6e:94:1e:
b9:02:39:0b:fe:bf:f0:f9:7c:bc:60:3c:4c:ff:3d:
23:84:12:42:2c:99:85:a4:57:86:f6:6c:80:6d:67:
7d:74:58:7f:3e:15:87:d4:0b:9a:55:1d:de:f4:28:
f2:28:1d:ff:d5:d6:b6:25:43:f3:46:9c:a4:fa:d5:
95:64:c2:6e:90:96:16:0d:7d:1f:36:a7:1a:ae:8f:
84:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6C:F9:1A:61:FF:B1:32:44:E6:80:91:F3:BC:6E:CF:96:DF:6A:C6
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:da:da:00:0b:83:5d:cc:a2:30:58:67:9a:ad:72:bc:3a:48:
c1:79:4b:20:50:82:9e:ec:7e:2e:e7:c2:5c:35:b5:e3:ae:6e:
5c:15:fb:4c:4e:0c:b9:23:fd:17:e9:99:81:9d:2c:b6:cf:7d:
b0:91:5c:a3:84:54:66:7a:bd:20:7a:f4:2f:2d:ce:c8:9f:f4:
c4:f3:df:05:ae:5b:e4:0b:f5:e6:bc:49:7a:33:0c:fc:a6:36:
cb:49:11:dd:37:dc:c9:63:89:91:a5:cd:50:af:b0:3b:35:ab:
f3:dc:0a:c4:73:a6:20:a3:65:44:01:75:fd:2f:83:ff:47:5a:
a9:40:a1:1f:db:d8:78:2b:a7:95:ad:76:5c:85:6d:30:93:33:
fa:fa:30:12:11:48:f7:ff:a7:db:be:3c:06:47:4a:7f:ad:7a:
66:4c:16:0a:70:fd:34:56:56:fe:a6:83:13:3c:29:81:f3:37:
20:c1:15:00:ca:d9:66:57:63:22:81:84:80:bb:08:fb:04:20:
31:07:d6:1b:da:0a:73:bb:ee:c0:c8:f5:c1:92:c1:9d:98:85:
aa:28:da:a1:a1:d0:42:a4:d9:02:dd:ff:0b:95:35:2d:01:6b:
0c:db:d7:88:48:a2:e2:c6:aa:58:58:d2:8f:a1:2e:b5:00:ef:
9e:82:7c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 03:13:27 2026 by rpki-client