Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: w3kJMkp9mYO/jwvSrstoJOBZQ0AJE6+fL/irFiMNtyA=
Subject key identifier: 0D:42:71:F0:8C:C6:5B:EC:8A:A3:42:2D:E8:50:D7:27:93:92:18:7D
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019CF83C72C5CDA4A43CC6B094A0CF530226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 187C
Signing time: Mon 16 Mar 2026 20:00:36 +0000
Manifest this update: Mon 16 Mar 2026 20:00:36 +0000
Manifest next update: Tue 17 Mar 2026 20:00:36 +0000
Files and hashes: 1: ADB2NS1OG8KwsVLAD6NYCaCtJi4.roa (hash: aji7irnO+hSBbZms7WFiwbNpASyVLJ3jxlOuf/BgaKY=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: D5gtjb0s7OB/iRXe/K0Q7+UCkI63dl20a5Jzm+HwnZ0=)
3: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=)
4: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=)
5: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=)
6: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 19:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f8:3c:72:c5:cd:a4:a4:3c:c6:b0:94:a0:cf:53:02:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Mar 16 20:00:36 2026 GMT
Not After : Mar 17 20:00:36 2026 GMT
Subject: CN=0d4271f08cc65bec8aa3422de850d7279392187d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ab:37:01:49:46:f1:8b:eb:e0:26:09:b3:d5:
08:ac:78:4f:a7:b1:d5:e3:8b:4e:f6:e1:46:20:e0:
07:7f:aa:5c:1f:1b:27:c1:bd:75:b7:68:00:20:76:
af:fc:ab:68:0e:9d:0c:b3:a4:3c:d4:85:bc:d1:9a:
6d:48:58:ec:73:b9:a4:5d:71:e4:e4:e8:2f:ac:2a:
e6:a2:b9:5f:48:d0:9f:d4:ab:3e:9c:35:8c:51:f4:
6d:bb:79:ad:86:64:fe:ec:b4:ca:29:2e:42:19:25:
d2:1c:4a:54:46:4e:f0:5c:b6:0a:72:2a:b3:b8:8f:
91:2c:45:67:cf:84:51:2e:a2:4f:4d:e3:c1:10:51:
2e:00:0a:b0:12:c8:67:f5:33:f2:47:72:5a:5e:2a:
8b:cc:af:ae:e0:f3:55:5f:4b:f8:aa:c6:b7:1f:16:
6d:d3:af:a6:ab:8c:39:6c:b8:c6:54:23:18:8b:1d:
d3:93:c6:91:c0:d7:bf:e7:1f:da:b2:1d:da:79:c9:
e8:ab:0c:37:f4:69:a2:e8:13:53:31:59:08:4e:4b:
e8:47:6d:d0:59:bf:65:42:08:08:cb:60:05:16:b8:
2c:79:82:59:6e:93:47:d0:ae:52:7e:28:e1:18:4a:
e9:e5:62:e9:a6:30:b8:10:b5:c0:ff:3f:5e:92:6e:
35:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:42:71:F0:8C:C6:5B:EC:8A:A3:42:2D:E8:50:D7:27:93:92:18:7D
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:d5:9e:67:bf:52:cf:b3:24:ae:fe:3d:01:9e:57:50:c4:5b:
99:49:34:99:7f:d3:89:a2:4a:b8:b1:d0:71:b3:b2:d5:42:a6:
32:6b:3c:f5:41:1d:c6:44:91:79:64:24:26:5c:0f:43:02:af:
27:05:42:0e:09:bc:f1:4d:43:1f:84:60:4c:76:9b:50:27:59:
80:b1:ea:7c:d2:4f:22:4e:b4:4f:41:02:c4:ae:57:0e:93:90:
bb:a8:de:2e:f3:d3:d2:6e:02:db:05:80:d2:cd:bc:58:51:c7:
37:a8:9e:92:2b:9a:25:bd:57:fe:1d:bb:3c:82:81:ea:d9:eb:
6d:5a:49:b7:46:cd:7d:fb:e5:d5:f5:d4:61:06:dc:88:86:0d:
c9:3e:0c:98:51:8c:d4:e7:db:6d:f4:78:eb:39:b7:a1:30:5f:
36:25:94:93:5c:d3:93:dd:d2:59:87:29:df:90:99:9d:ce:d1:
50:d4:3c:94:9a:18:d0:4c:38:ff:1b:d3:60:13:34:39:b8:59:
e6:c4:c3:6e:80:44:99:03:3a:73:d6:0d:7a:95:2a:3a:fb:95:
a5:ba:84:c7:d9:d0:16:1e:95:64:c7:cf:58:a5:2a:1b:d9:de:
22:e7:65:24:6d:f0:7b:44:bf:80:4e:dc:a8:a0:c8:e7:b6:5a:
37:7f:81:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZz4PHLFzaSkPMawlKDPUwImMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNWYyYTkzZGIxMGYyZGQ1ZjZhNTViYjJhNDQwZjY3NDg2
Y2QxYTMwHhcNMjYwMzE2MjAwMDM2WhcNMjYwMzE3MjAwMDM2WjAzMTEwLwYDVQQD
EygwZDQyNzFmMDhjYzY1YmVjOGFhMzQyMmRlODUwZDcyNzkzOTIxODdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApas3AUlG8Yvr4CYJs9UIrHhPp7HV
44tO9uFGIOAHf6pcHxsnwb11t2gAIHav/KtoDp0Ms6Q81IW80ZptSFjsc7mkXXHk
5OgvrCrmorlfSNCf1Ks+nDWMUfRtu3mthmT+7LTKKS5CGSXSHEpURk7wXLYKciqz
uI+RLEVnz4RRLqJPTePBEFEuAAqwEshn9TPyR3JaXiqLzK+u4PNVX0v4qsa3HxZt
06+mq4w5bLjGVCMYix3Tk8aRwNe/5x/ash3aecnoqww39Gmi6BNTMVkITkvoR23Q
Wb9lQggIy2AFFrgseYJZbpNH0K5SfijhGErp5WLppjC4ELXA/z9ekm41VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA1CcfCMxlvsiqNCLehQ1yeTkhh9MB8GA1UdIwQY
MBaAFAJfKpPbEPLdX2pVuypED2dIbNGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYt
MmVjZGExMWRlMTUzLzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYtMmVjZGExMWRlMTUz
LzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAItWeZ79S
z7Mkrv49AZ5XUMRbmUk0mX/TiaJKuLHQcbOy1UKmMms89UEdxkSReWQkJlwPQwKv
JwVCDgm88U1DH4RgTHabUCdZgLHqfNJPIk60T0ECxK5XDpOQu6jeLvPT0m4C2wWA
0s28WFHHN6iekiuaJb1X/h27PIKB6tnrbVpJt0bNffvl1fXUYQbciIYNyT4MmFGM
1OfbbfR46zm3oTBfNiWUk1zTk93SWYcp35CZnc7RUNQ8lJoY0Ew4/xvTYBM0ObhZ
5sTDboBEmQM6c9YNepUqOvuVpbqEx9nQFh6VZMfPWKUqG9neIudlJG3we0S/gE7c
qKDI57ZaN3+Bgw==
-----END CERTIFICATE-----
Generated at Tue Mar 17 03:57:38 2026 by rpki-client