Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: HP+P1SaM689fNaEgsrEs109tZrcHgLzef2bi7W194m4=
Subject key identifier: 20:8D:F2:A3:FE:EB:13:A3:28:A6:BB:B8:6D:2D:08:80:D7:0C:23:AC
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019D27A8BB553A20A795BE19BEFAC3A1BDC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 01:01:02 +0000
Manifest this update: Thu 26 Mar 2026 01:01:02 +0000
Manifest next update: Fri 27 Mar 2026 01:01:02 +0000
Files and hashes: 1: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: WddXzgtyLFbk92QXf6kqij0uk4uvuVxNM81kjBX0eu4=)
2: xMiDA7uuRCcWzBnQjMU1cUXcoLc.roa (hash: 5dmso3IrpYxSnMbNzob1ZQb189IzqVbbdnmbtENfrFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:bb:55:3a:20:a7:95:be:19:be:fa:c3:a1:bd:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Mar 26 01:01:02 2026 GMT
Not After : Mar 27 01:01:02 2026 GMT
Subject: CN=208df2a3feeb13a328a6bbb86d2d0880d70c23ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:55:89:c2:19:31:ad:38:8c:20:f8:89:bb:1d:
d5:a8:c7:b1:30:46:46:05:0f:34:e9:33:7a:c3:d9:
42:2f:f1:e4:43:d0:93:f2:1e:a3:5b:91:fe:e8:05:
7c:51:92:3c:e0:45:17:8d:0c:c9:93:55:07:92:63:
e3:49:97:28:3e:0c:aa:cd:68:19:6c:c6:4c:f3:5b:
b4:84:2e:ee:19:d8:b0:74:bf:ca:57:15:fc:c7:44:
d3:2b:a4:41:af:de:ee:26:5c:98:21:38:f7:2d:d2:
97:62:83:78:e4:e0:44:2d:24:e2:8e:71:1f:c4:31:
25:57:08:bd:68:31:60:14:ca:e6:4b:11:7c:2b:02:
d5:e5:78:7e:48:d4:da:be:9b:c7:72:ef:0c:e2:66:
cf:22:ae:1a:2d:6f:a7:8d:58:12:1e:be:21:d6:19:
a1:21:18:eb:e3:0a:6b:3b:99:15:fd:a8:7a:61:92:
b1:56:34:f5:cc:15:fd:91:b1:9e:77:8a:1c:01:02:
7f:e1:e9:01:26:33:8c:75:c0:e0:1d:c1:5f:fb:45:
4f:f5:31:45:d0:b9:05:9d:4b:e7:18:07:78:e7:82:
4e:8f:58:08:65:d9:e8:d6:f1:3d:36:04:82:bf:42:
db:f0:73:fa:d9:74:f8:4d:72:13:95:a6:68:61:6b:
2c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8D:F2:A3:FE:EB:13:A3:28:A6:BB:B8:6D:2D:08:80:D7:0C:23:AC
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:be:87:cf:80:42:d9:e7:65:26:35:32:bd:b3:4c:03:11:14:
1c:c4:fa:d2:34:8c:f4:c3:0a:eb:6f:a0:70:a7:e6:f7:cf:99:
0f:61:4d:ed:5b:51:b7:1a:91:ca:e8:db:b0:0c:c0:8d:8f:45:
37:9f:b2:09:b1:2c:e2:4e:22:8e:c1:87:85:33:ab:7d:8a:8a:
a4:de:50:69:66:ff:cc:62:03:67:9b:0d:7b:55:18:2d:66:96:
cc:0b:f1:ee:ed:32:16:d9:6b:5e:4e:1e:9b:0a:4e:4b:71:3d:
4c:76:74:4f:63:a3:a6:e8:09:7a:fc:eb:5a:2d:c5:2b:cb:9f:
d0:56:52:70:82:cf:96:6b:20:db:40:b7:68:91:dc:3f:ec:ce:
8d:ca:fc:96:21:e9:2a:7a:8e:b3:a3:9a:0c:c7:0d:34:80:80:
ac:f0:af:46:76:2b:b4:b6:31:31:5d:36:08:6f:c4:86:ba:83:
3f:c0:67:a1:f2:02:5b:8c:c9:8a:e1:8e:1a:08:cc:17:2a:59:
a0:40:02:f4:43:8b:bc:26:d4:90:aa:5d:6e:ef:85:8b:38:42:
7c:98:cb:17:5c:dc:2c:9d:af:0f:19:18:62:8d:6e:54:43:c1:
ee:6a:f5:47:c3:b1:c7:6c:cb:35:45:56:ae:07:68:c6:b5:b7:
be:b5:6d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:47:14 2026 by rpki-client