Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: Z45IpDXI4aYEyRemdpA48MEnxw2lCrn4KAJb236C87c=
Subject key identifier: 0E:6B:73:15:E5:FC:C9:4E:5F:DD:F3:43:08:87:EF:EC:8F:DF:52:23
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 0199FD33ED995AB0C13FF75D3E0834C1ABEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 16:01:02 +0000
Manifest this update: Sun 19 Oct 2025 16:01:02 +0000
Manifest next update: Mon 20 Oct 2025 16:01:02 +0000
Files and hashes: 1: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (hash: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=)
2: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: oJ05R9rR0Z1uERFm8eKWxCWFKVrloiaqPUbrp33taUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:ed:99:5a:b0:c1:3f:f7:5d:3e:08:34:c1:ab:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Oct 19 16:01:02 2025 GMT
Not After : Oct 20 16:01:02 2025 GMT
Subject: CN=0e6b7315e5fcc94e5fddf3430887efec8fdf5223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:17:43:dc:69:1c:d9:4e:4e:0f:52:b9:94:27:
e3:8f:eb:22:b5:88:d6:2f:18:85:9f:4d:9a:c0:f6:
ba:1e:71:a9:ae:af:a7:80:ce:25:33:e0:dd:75:df:
06:c5:55:da:77:4b:ae:ef:8a:c1:b7:3e:e4:51:2c:
89:d3:90:77:00:ea:a3:97:18:aa:df:ca:95:56:47:
6b:29:8c:b8:91:8b:b6:74:1f:8c:a4:10:d8:d6:c0:
f6:79:42:4b:a0:2e:1f:39:74:16:1e:db:88:da:94:
8e:5b:fa:31:1b:84:6c:e1:9f:61:82:3d:9c:d5:a1:
1e:43:21:f0:77:b1:6d:47:ae:8f:37:34:86:d2:56:
b1:6d:a1:cc:15:3f:4d:9d:4e:e9:5c:42:61:19:06:
68:cd:6c:68:99:4c:49:12:ab:40:19:36:ec:0a:80:
0c:16:0d:7a:70:42:b5:b5:60:c2:57:58:35:d0:d6:
1d:cc:a2:c3:78:a8:01:68:ea:07:a6:3b:2e:43:43:
ef:d0:d8:06:fa:97:87:94:41:fb:f6:a3:e2:a0:07:
26:dc:4c:f4:5e:aa:26:0a:2e:69:bc:af:db:12:81:
f1:25:bc:8a:5f:08:e4:45:99:4d:04:ce:39:45:37:
67:f8:0e:c3:3f:d4:3d:17:9a:00:68:3e:04:b1:47:
c5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6B:73:15:E5:FC:C9:4E:5F:DD:F3:43:08:87:EF:EC:8F:DF:52:23
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:f2:b3:de:35:e7:99:81:e8:7d:50:ed:a1:f2:15:73:7c:ce:
77:ba:5e:86:9f:f2:e4:f6:c2:35:78:f0:2e:89:4f:5b:6b:c7:
aa:89:3e:fc:8c:92:05:bf:8e:16:fb:cb:4c:09:98:e0:b0:6c:
1f:95:48:ee:d1:51:ed:c3:52:b3:9a:5e:d7:59:16:73:76:8b:
8e:aa:30:19:6b:25:5b:47:b7:6d:df:1e:e8:de:b8:ce:0e:2f:
82:3a:15:6f:4b:2b:c9:69:09:41:83:11:43:0d:5b:49:b1:c1:
41:67:f0:6f:05:47:1d:31:07:bc:b7:07:14:f7:3b:2d:24:f3:
ed:ce:27:3c:ae:50:ef:27:3d:62:0a:a9:39:25:77:cd:dc:51:
b9:89:94:da:78:92:92:0e:20:d7:e3:e1:40:04:54:d6:50:10:
c1:6b:c6:41:7b:8a:32:44:3d:de:4d:a7:b8:77:68:c2:28:17:
fe:e9:32:26:17:0c:0a:25:ab:60:13:5d:a5:26:3c:50:11:28:
bb:eb:64:ee:fd:1e:c1:d1:68:a9:70:d2:51:dc:e1:92:83:c2:
b3:0f:82:10:b9:de:fd:1e:f9:88:6f:92:41:6d:07:1b:45:4a:
49:8e:84:e8:92:a6:1e:fd:6c:27:88:28:00:08:84:a5:83:78:
bb:f7:e8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:11:07 2025 by rpki-client