Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: NLf7W45jJD8262YEugBPvur2lnB0ym4QrX0CJwUgLN4=
Subject key identifier: 31:4B:16:78:60:A4:99:7C:EB:15:8B:E1:0F:48:66:E7:50:89:9B:9E
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019D2B85B0BDCF9C102E98F7EFF74C6029AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 19:01:14 +0000
Manifest this update: Thu 26 Mar 2026 19:01:14 +0000
Manifest next update: Fri 27 Mar 2026 19:01:14 +0000
Files and hashes: 1: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: /nAMNWyfb2B4Q6/pVYjnUVkBECd8gzIIXgRPesXQA/E=)
2: dwxKXYq5F0w7--7RCrBYQ23c5iY.roa (hash: K/Q42vj3khDPlWwooNw7J1cFttbzhnLd2GjnJonXf1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:b0:bd:cf:9c:10:2e:98:f7:ef:f7:4c:60:29:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Mar 26 19:01:14 2026 GMT
Not After : Mar 27 19:01:14 2026 GMT
Subject: CN=314b167860a4997ceb158be10f4866e750899b9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5a:1b:e9:b8:2e:da:33:d0:e7:dd:d8:0f:f2:
23:74:0c:c0:d3:ba:83:91:97:11:93:cb:78:00:58:
9e:71:fb:58:b4:15:3a:72:1a:f6:7e:1a:40:4d:cd:
64:63:eb:62:94:db:1b:0d:ab:ef:ef:89:83:bf:85:
bc:84:2c:b8:96:94:fd:39:2a:06:4a:fe:30:d9:95:
a8:e7:40:ba:75:9c:eb:79:41:37:3f:65:b9:8d:56:
8c:fc:e9:af:8c:1a:05:b2:2b:c5:da:b0:5f:7f:a5:
ed:4d:1d:18:96:58:36:60:be:ec:25:33:c3:a6:8d:
d1:bb:4e:79:22:d6:91:2b:46:b9:2d:24:fb:b5:00:
12:cc:94:9a:af:50:44:8a:36:2c:63:38:d3:29:52:
6a:fb:cb:85:3d:99:8c:c1:e6:16:55:1b:02:7d:41:
88:66:45:94:63:0c:b3:6e:00:bc:09:62:df:e1:9e:
66:80:b5:c5:c5:b5:0c:e9:8f:3b:46:82:e6:3d:82:
99:5c:30:c1:ae:60:c1:94:45:a2:9b:bb:fa:5f:66:
ed:5b:1c:1c:92:3b:89:c7:f2:7e:4d:29:a4:cf:0f:
b5:c6:2a:58:81:c1:7b:23:d9:cc:ea:2b:03:eb:25:
52:95:24:01:26:31:ac:55:37:1e:42:f4:81:8a:2b:
b8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4B:16:78:60:A4:99:7C:EB:15:8B:E1:0F:48:66:E7:50:89:9B:9E
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:63:4b:47:08:43:47:ac:7f:1c:24:62:3a:68:43:e7:72:7b:
e3:1e:f8:c9:50:8b:5d:12:a7:b9:ed:b2:93:90:35:cb:f5:fc:
07:73:3d:0c:5f:d3:7a:c7:a6:e8:8e:de:13:6d:47:6c:ef:c3:
31:e6:65:fb:d8:f8:1c:9e:b6:35:37:61:31:37:11:ba:8e:98:
a7:a0:4c:57:2d:45:b3:b9:82:77:5c:53:56:8d:57:01:44:6a:
5f:ab:57:a4:6f:f9:df:19:cf:e0:03:6d:86:6b:39:09:75:4d:
d5:86:b9:32:d9:32:7d:fb:1a:48:15:e1:7e:df:d2:12:24:b8:
5b:7c:fc:ef:c4:05:a0:b7:76:7b:44:66:bc:d9:ba:a7:06:7e:
82:df:1d:45:6f:f2:bf:a9:1c:af:4b:97:56:0e:dd:f7:52:75:
52:12:d2:c1:d4:77:0f:cb:a0:a4:99:c0:03:62:ec:64:1f:cd:
50:31:45:66:a6:29:a8:80:0a:9c:d7:8d:fb:c8:fd:6f:d3:9e:
71:94:44:ee:d7:5e:9f:ee:7b:18:ec:15:66:e3:00:64:c7:d4:
bd:e0:b5:8a:b4:72:d1:21:70:ff:62:bf:0c:97:3d:90:77:6e:
ad:79:16:ff:c9:8a:a4:b7:d1:1a:ee:98:e6:79:db:0a:d2:49:
55:ec:e7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:49:14 2026 by rpki-client