Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: fhVkdMvRczXL8eNNjWS3Dd5ljlE5Rv5mxBU0vfXT2qQ=
Subject key identifier: 74:05:7E:B0:CB:7C:54:FE:F7:62:C1:2C:E6:42:A6:3A:90:00:BD:1B
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019DF8A8743BE149F43D349C3E289F229391
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1902
Signing time: Tue 05 May 2026 15:01:22 +0000
Manifest this update: Tue 05 May 2026 15:01:22 +0000
Manifest next update: Wed 06 May 2026 15:01:22 +0000
Files and hashes: 1: 4IwtnOs_iwVpuxuyxf_djhxqxzo.roa (hash: G10HT/r9NNyWdyBn6Pz/raHjo4uYh+brQrONHtIQaYE=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: 8m0HQmV/T3cUqszPDXHArSMTO/hKC4L8a/O5Vcj90T4=)
3: Cpsl_lQBgEEbAkoRvRPOG0W_Zc8.roa (hash: 8vUi/f1O2zm8nVjMwrWjmaGjGaEoQH6CKoqkrynjuWo=)
4: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=)
5: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=)
6: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=)
7: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 15:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f8:a8:74:3b:e1:49:f4:3d:34:9c:3e:28:9f:22:93:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: May 5 15:01:22 2026 GMT
Not After : May 6 15:01:22 2026 GMT
Subject: CN=74057eb0cb7c54fef762c12ce642a63a9000bd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:dc:7f:38:34:ba:1a:ea:96:bb:b1:36:34:
32:05:c6:93:28:19:c8:d6:9d:f0:bc:d1:f3:78:1d:
cd:ec:8c:20:9c:70:71:e2:97:e5:c7:2f:ca:4c:85:
f9:a4:ca:ae:1b:15:68:50:bd:99:18:fa:b6:ba:2d:
91:62:a9:c0:0f:23:92:12:eb:2d:d9:c4:bf:0c:f0:
36:40:a4:df:ab:79:fe:93:46:ac:6c:43:93:68:5f:
55:22:aa:d0:ca:a8:8c:28:96:a6:22:c5:e3:3e:56:
b5:f1:ff:33:8c:7d:de:e3:1d:a0:ac:9a:b1:15:f9:
4b:71:9a:29:e7:b9:ca:45:03:87:43:01:db:42:5a:
cd:f9:87:58:81:cc:4c:57:fd:53:64:fd:15:48:f4:
09:cf:31:6f:b3:95:ee:ae:e7:66:0b:33:4c:39:51:
d3:12:6c:59:2c:f5:27:b9:31:5e:02:72:7f:f1:77:
77:8b:a3:93:27:b4:84:6b:d4:65:eb:3f:e9:8c:b6:
9a:04:5d:db:93:79:58:c2:ef:3e:a2:8a:73:f9:19:
75:47:df:4a:db:44:ec:4e:a5:2b:c4:c6:ee:d0:f6:
ee:57:4d:f2:c3:6b:3e:80:d7:68:bb:fe:f3:ee:a2:
33:46:e0:bd:85:72:cb:d3:06:9d:29:6f:55:f8:ee:
9c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:05:7E:B0:CB:7C:54:FE:F7:62:C1:2C:E6:42:A6:3A:90:00:BD:1B
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:ab:7e:29:c2:40:97:fe:1a:82:7d:59:c3:6d:9f:ca:0a:1a:
7c:2c:41:f1:cc:e6:ca:8a:1f:f6:de:96:91:d4:4f:c2:68:68:
ab:54:89:3e:23:6e:56:4d:12:7a:25:da:64:fa:f7:10:82:54:
7e:14:b2:cf:c8:ce:1e:66:d4:78:ca:22:b3:51:f4:15:9d:7d:
dd:16:96:ee:71:a7:26:8f:71:5f:1e:60:7b:25:36:fb:44:b2:
10:0f:25:ec:99:63:fc:da:3f:66:ef:57:74:68:a3:c4:a2:9a:
ed:9a:5a:a5:25:39:dd:b9:73:05:5b:a0:7c:b4:8e:5b:c3:33:
47:93:4a:e8:a0:b5:a4:6e:c9:57:1d:86:2a:3b:6a:a9:f3:56:
af:5b:be:bd:7d:b6:7f:02:ed:72:e6:20:28:a2:7f:b2:eb:13:
db:26:87:93:d6:f8:18:b2:8d:50:35:3e:bb:35:ad:2d:17:bb:
7f:9e:d9:9b:b4:e4:69:06:fe:6c:96:23:ba:3b:5c:3f:e1:a8:
81:ec:ce:84:e9:5e:1a:f7:3c:e9:b3:b0:65:71:ac:48:03:44:
36:7a:2e:f9:5f:13:a9:e7:cf:40:29:cf:99:f4:50:a9:58:13:
54:c3:49:9a:a8:76:c7:75:bf:dd:d4:9e:08:10:f9:20:2a:05:
f2:75:e9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 00:20:42 2026 by rpki-client