Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: 3pih/X0VSJUHpqlFMa9WfrqMQ8as8K8++ZNO2TKLBD0=
Subject key identifier: 66:31:87:C2:CB:E1:69:CF:30:B7:97:12:EC:1C:55:F4:84:16:3D:A7
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019E20C8040F7EBC510FA54EE9A8C631460A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 10:00:39 +0000
Manifest this update: Wed 13 May 2026 10:00:39 +0000
Manifest next update: Thu 14 May 2026 10:00:39 +0000
Files and hashes: 1: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: T37PvK6t3vPx/D9xudbn86qQJd8xQEp4P4AzzQ2rlLE=)
2: dwxKXYq5F0w7--7RCrBYQ23c5iY.roa (hash: K/Q42vj3khDPlWwooNw7J1cFttbzhnLd2GjnJonXf1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:04:0f:7e:bc:51:0f:a5:4e:e9:a8:c6:31:46:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: May 13 10:00:39 2026 GMT
Not After : May 14 10:00:39 2026 GMT
Subject: CN=663187c2cbe169cf30b79712ec1c55f484163da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d1:84:8a:4f:d1:c0:ed:70:dc:e0:20:11:9a:
a2:fa:7f:f0:bc:90:a7:f5:12:53:78:b7:93:d1:96:
b2:b7:5d:4b:e6:19:e3:f2:92:71:f2:02:39:cc:3f:
60:c3:b4:e6:05:e7:ac:56:86:a5:b3:45:e0:d0:63:
b1:d0:79:61:b4:4e:fe:0b:8e:01:f7:0b:8f:53:46:
01:25:d7:cc:d1:7f:4b:64:cc:30:4d:82:87:c4:25:
10:58:7d:bc:9a:1b:fc:ba:ff:a4:bb:20:cc:0b:99:
88:31:ee:69:3a:1a:fc:7b:f1:50:91:3d:06:75:c6:
bc:4e:c7:c1:c6:a8:3a:d6:13:a4:ae:36:cc:f6:4c:
d1:43:1e:41:0a:f9:5b:08:a2:b3:22:fb:8b:de:96:
fd:75:55:a0:94:c1:06:ea:81:f0:75:94:3c:22:31:
e4:b2:48:b3:c3:97:17:37:c9:42:21:28:42:e2:be:
03:26:fb:2b:3a:59:c8:f1:bc:55:17:c8:b3:b2:ed:
34:51:7a:3d:1b:c3:9e:00:59:79:cc:e0:8c:11:1f:
fd:41:6e:bc:39:7e:d6:e3:73:12:65:e7:44:b7:e7:
9e:ad:c4:94:49:32:4b:51:64:7d:fd:5e:4a:7b:87:
98:14:3f:06:a6:bb:9b:60:bb:94:eb:0b:c4:2d:4f:
06:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:31:87:C2:CB:E1:69:CF:30:B7:97:12:EC:1C:55:F4:84:16:3D:A7
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:2c:e6:37:37:98:d8:e8:ed:3a:18:2a:92:13:02:96:7e:8d:
76:7e:31:11:f5:17:f4:57:ec:2c:b5:c7:f6:ac:c6:9c:d5:2f:
08:24:17:b6:a5:dc:2b:8b:5a:0f:66:80:45:d3:de:8d:47:3c:
7f:88:54:d9:e2:9e:bc:dc:3b:bf:4f:c7:25:9e:7d:51:42:a1:
f9:43:42:3b:1a:ac:08:96:67:4b:5b:53:77:66:44:f0:c2:52:
ce:d6:14:aa:2c:e7:ca:17:6b:9f:a9:fe:6d:c2:e5:93:24:c1:
5a:40:4a:da:e5:d8:ae:fd:2a:ff:f2:6d:ae:39:41:d4:c4:e4:
83:a0:62:9d:3e:60:81:4f:89:db:5c:e9:67:2b:b2:a2:97:6b:
c5:15:4d:69:23:15:98:54:5c:5f:92:8a:1f:05:b3:3c:2e:36:
9d:11:13:fc:57:4d:8f:dc:5a:9f:3a:b6:09:73:86:26:48:16:
f3:80:b1:06:20:41:29:77:2c:38:8e:9e:fb:f8:21:1d:19:81:
b6:e5:22:45:4c:37:0d:e0:74:97:3f:22:67:50:a3:cf:17:95:
00:92:2e:43:dc:94:48:c9:80:81:af:85:76:fc:da:41:b2:ff:
f4:a8:6c:4f:b5:a9:2c:60:55:2e:27:09:ba:74:dd:a6:f5:0d:
ac:4e:bc:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:20:14 2026 by rpki-client