Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
File: AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft (raw, json)
Hash identifier: UvaggT+yBhHITzdMppIEVP+/lNmM1xnijItDjlCougc=
Subject key identifier: 25:05:2F:53:67:19:58:51:13:1C:96:5F:D4:EA:C3:97:69:94:E8:9B
Authority key identifier: 02:55:85:09:E1:C0:EC:16:0D:E2:E0:74:17:72:13:DE:30:61:5D:6F
Certificate issuer: /CN=02558509e1c0ec160de2e074177213de30615d6f
Certificate serial: 019D38656BF60911B05A99DE14D716780F3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
Manifest number: 1795
Signing time: Sun 29 Mar 2026 07:01:03 +0000
Manifest this update: Sun 29 Mar 2026 07:01:03 +0000
Manifest next update: Mon 30 Mar 2026 07:01:03 +0000
Files and hashes: 1: AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl (hash: T4MQCDWunuEPq8qnO1t/3GA9N/LWub8d3cAgrnXdC7I=)
2: OkVoScbKIL9TXKvP438rB5FRYb0.roa (hash: 45VM0zyf0tTbWI+Pen84q/pMakzdNZmUXMwDebqNLz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:6b:f6:09:11:b0:5a:99:de:14:d7:16:78:0f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02558509e1c0ec160de2e074177213de30615d6f
Validity
Not Before: Mar 29 07:01:03 2026 GMT
Not After : Mar 30 07:01:03 2026 GMT
Subject: CN=25052f5367195851131c965fd4eac3976994e89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9a:c3:b8:cf:01:5b:2b:ac:36:ea:85:c1:11:
35:8d:0c:ce:b5:39:f7:7f:d3:8f:ab:d7:ca:3f:ae:
9e:c6:d0:4e:2d:db:da:e0:15:46:14:c3:82:72:f6:
82:23:d3:9e:61:e0:30:69:71:0d:e6:f1:e9:52:4c:
ad:3d:58:49:df:70:96:2f:e5:bf:8d:5e:32:18:75:
b6:9f:4a:f4:ea:c8:9d:4d:17:b7:d3:62:c3:4e:6c:
fd:a8:b2:6d:d1:54:51:6d:a1:de:de:f0:87:1a:f2:
f1:4b:6c:94:b1:79:2e:34:e6:e5:ac:90:bc:32:cb:
53:2b:f2:a4:81:3c:54:b7:e7:5f:a9:cc:0b:cc:8d:
86:76:59:7f:54:43:ca:e2:d0:88:95:ff:2d:87:99:
00:43:f9:22:9a:2e:01:85:e4:b4:93:b9:55:d3:a9:
7f:b5:52:1a:bc:67:fe:e8:10:89:40:27:4d:0f:a6:
67:33:88:a6:a8:49:f2:7d:31:e7:f7:cf:86:7a:67:
df:94:c4:45:15:2f:ce:8a:50:f2:e2:dc:31:e5:cf:
8d:06:5c:61:42:4b:44:10:7e:8d:22:85:6d:ab:0c:
82:e3:6e:17:5f:8b:3c:1f:e2:ee:1c:32:ef:8e:be:
4d:f7:f8:33:3c:6c:78:67:ab:20:86:2f:64:b5:53:
d5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:05:2F:53:67:19:58:51:13:1C:96:5F:D4:EA:C3:97:69:94:E8:9B
X509v3 Authority Key Identifier:
keyid:02:55:85:09:E1:C0:EC:16:0D:E2:E0:74:17:72:13:DE:30:61:5D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlWFCeHA7BYN4uB0F3IT3jBhXW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a860bf-1a27-4f0f-bd91-7ae6911ca126/1/AlWFCeHA7BYN4uB0F3IT3jBhXW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d6:8e:11:4b:b5:50:6c:31:a9:d1:c4:94:9d:62:f8:f3:77:
40:35:e2:be:45:c0:7c:92:2e:b7:29:28:c0:12:94:e1:28:51:
2c:3a:99:29:bd:bb:2d:96:61:d7:b4:22:6e:5a:e6:db:b1:b1:
96:fb:5c:7e:19:5a:fc:e7:a0:79:5f:87:73:f6:23:9f:61:4c:
76:de:bf:30:43:78:fc:f1:8f:9c:ef:6b:62:aa:6e:c1:0a:57:
54:23:e2:b3:08:fd:9c:03:9d:ef:92:69:85:b2:93:ed:2a:36:
40:08:27:1a:23:ff:af:9e:3f:3a:76:d0:e2:93:5d:59:f0:84:
19:8a:28:8c:9a:0d:f7:ba:4c:ff:a1:0d:d8:5f:65:77:58:36:
9b:76:78:cb:f9:36:63:0b:23:f8:8f:06:6a:11:3d:8b:34:1d:
da:51:a2:7e:38:6c:36:ac:46:bc:9c:c2:d8:4f:2a:8b:d1:76:
26:d8:0d:56:69:65:b4:26:53:b5:5c:31:72:f7:c5:b0:23:46:
8d:1f:19:b4:ed:60:19:70:61:a4:b8:96:50:f0:a2:34:c5:a9:
8f:ab:6d:30:bc:00:c4:70:ec:7b:8b:e1:02:53:7f:61:ca:d1:
2d:8c:cf:f2:1d:61:50:14:bc:dd:4f:a9:4d:ef:67:47:02:2b:
45:b0:63:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:46 2026 by rpki-client