Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
File: AlqBIsJH0--70vaoFKX2h0VBiN8.mft (raw, json)
Hash identifier: Rx4NGg5z/sgi5BVz2XRwgs4/sBsQXUv0Zduy4zVNwJ8=
Subject key identifier: 53:35:EB:F8:94:65:FE:C2:1F:99:8F:68:23:14:85:2C:F9:07:1F:2D
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 019D27A932DBF0A7C41EC07D708D230EC5CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 01:01:33 +0000
Manifest this update: Thu 26 Mar 2026 01:01:33 +0000
Manifest next update: Fri 27 Mar 2026 01:01:33 +0000
Files and hashes: 1: AlqBIsJH0--70vaoFKX2h0VBiN8.crl (hash: PSynvxGYp82SX/WMpl9LpO3Ee0NiLRl17IGbFxP2O9o=)
2: DiLBDAdX2Rn6IbzlG165KKHARDw.roa (hash: efTlYN5L+Bk95Nj1I+etEzgtXBHg5cg9mNZu0CNmkQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:32:db:f0:a7:c4:1e:c0:7d:70:8d:23:0e:c5:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Mar 26 01:01:33 2026 GMT
Not After : Mar 27 01:01:33 2026 GMT
Subject: CN=5335ebf89465fec21f998f682314852cf9071f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a9:99:69:78:9b:bb:ef:d9:32:e3:14:18:7f:
04:9f:09:30:0d:eb:e6:7b:a0:fb:c7:39:4a:0d:1e:
e0:ef:d6:d4:85:5d:2f:69:26:4c:68:ac:1f:2c:a3:
31:3e:68:42:5b:6b:79:84:f1:a8:f0:0f:09:22:3a:
7f:41:1c:0b:ac:44:48:ee:d4:df:a8:ca:0b:26:6f:
14:4c:be:cc:a8:9f:20:0c:be:46:8c:c8:8b:3a:0a:
9c:fb:94:69:ca:3d:a2:45:2a:17:03:40:c7:33:23:
13:3e:16:e9:15:c1:c5:31:ae:34:6d:84:ab:6a:27:
a5:fe:95:12:f6:be:fb:25:78:66:52:86:f2:4a:08:
3f:74:10:19:f0:f0:aa:3e:5d:9b:e0:41:d0:78:5c:
9a:09:6a:77:25:2c:cd:4c:29:6b:4b:33:5e:eb:62:
4b:f5:fb:13:c9:f0:7f:2c:a2:4c:61:27:e2:b1:ce:
eb:91:98:50:89:98:bf:27:ae:e4:ba:5a:db:26:67:
d2:81:b0:70:e2:08:4e:05:59:d3:70:b6:42:a6:64:
fd:8e:53:5d:e3:a0:ea:b5:5c:33:e4:ba:1d:f0:1d:
d9:9a:58:dc:86:d7:83:8f:bf:7c:e9:6b:42:65:fc:
18:79:f5:45:5b:30:f8:59:fa:da:07:08:3b:16:3b:
4d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:35:EB:F8:94:65:FE:C2:1F:99:8F:68:23:14:85:2C:F9:07:1F:2D
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a9:fa:c2:0c:03:6c:01:7f:3e:02:7b:2d:b0:2d:a1:41:18:
d8:2b:14:57:c9:25:ff:55:72:78:10:44:91:c9:bf:c8:63:b2:
55:2e:ad:27:5a:62:19:6f:2c:d8:3b:f5:ca:92:49:3f:cb:ab:
ba:af:eb:20:74:f7:16:4d:1f:de:61:fe:20:31:14:24:8f:b2:
29:2f:81:fa:5e:da:4f:4e:d5:ae:eb:16:3d:34:98:4d:30:96:
63:ad:91:83:14:e1:22:b5:1e:86:6f:be:9a:6d:c9:33:fb:c6:
21:d2:dc:24:3e:7b:ae:a5:f1:c0:12:43:7a:7d:25:ed:3e:9e:
b8:2b:6c:60:b3:f0:7d:f6:d3:c6:41:97:0a:6c:e0:c1:c1:d8:
a5:fc:e6:32:10:36:80:47:6b:5d:4c:64:aa:90:dd:8f:1b:81:
d3:4c:5d:ad:8a:9d:44:5a:c0:5c:9f:10:7e:3d:43:25:4c:5a:
16:cd:55:20:13:f6:70:3e:f0:a6:e1:17:ce:cd:55:ff:e2:31:
68:c4:33:96:b1:1f:23:a8:f7:a8:7a:cd:e4:df:57:13:76:7a:
e4:2e:ff:2d:9d:ca:bf:2b:3b:44:ec:eb:6a:b3:9b:27:f4:bc:
e4:2a:a9:c3:8e:80:90:d5:83:a5:70:91:46:38:16:86:3c:05:
8e:7b:95:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:56 2026 by rpki-client