Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json)
Hash identifier: hi66RBsbumY8OVh9IUONdFiOr7us4ehh/DTqMcEwB94=
Subject key identifier: 86:0A:CD:12:4E:F0:0B:6C:88:E4:2A:00:BB:E5:F2:36:3A:44:89:CB
Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Certificate serial: 019E20911987C8DEDADD8F6A6BB960A5D204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
Manifest number: 189A
Signing time: Wed 13 May 2026 09:00:40 +0000
Manifest this update: Wed 13 May 2026 09:00:40 +0000
Manifest next update: Thu 14 May 2026 09:00:40 +0000
Files and hashes: 1: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: ighPxjaoVWBo4vLSAePYKstjQbzbZ87T/eXBveHDDmc=)
2: vivKL2rvbIrNRZydZ5zkd8WMfmQ.roa (hash: vGuE++T51Grc7iV5G51jVBx+3DOtyMCoT9ihsAdCu8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:19:87:c8:de:da:dd:8f:6a:6b:b9:60:a5:d2:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Validity
Not Before: May 13 09:00:40 2026 GMT
Not After : May 14 09:00:40 2026 GMT
Subject: CN=860acd124ef00b6c88e42a00bbe5f2363a4489cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:12:5e:ff:b5:98:e0:19:d4:99:87:53:22:6a:
5e:4f:67:81:54:72:d3:c8:0d:20:ce:2b:6f:71:dd:
28:8b:34:94:42:ec:0c:76:29:08:2c:b2:2f:b0:1d:
ad:17:d3:3c:76:eb:8c:15:6a:df:dd:4e:6c:a0:1f:
37:e0:bd:47:06:f3:87:d8:2d:41:09:51:17:62:be:
68:a1:86:05:75:95:52:ec:3a:a5:ac:cc:be:d7:53:
ea:e8:34:83:94:e9:a3:ec:c7:80:43:0b:70:80:a0:
43:10:b5:33:72:45:8f:7f:60:3c:8c:d6:f0:99:1e:
5b:d0:ab:34:86:e4:51:02:e8:43:57:00:65:e8:a4:
eb:a5:60:2c:a3:b6:df:05:fe:be:10:e1:68:4f:15:
dc:3d:db:05:bd:5c:90:de:f6:36:65:1b:14:62:d9:
7a:92:a2:76:3b:e2:46:8e:58:50:c1:30:fc:4e:6f:
05:fb:fd:c7:7b:ef:ff:a3:6c:0e:43:ef:59:b8:34:
fa:05:67:bc:a7:b9:e8:fc:e1:6c:06:b3:ed:37:f3:
e8:2d:e8:ae:8a:d6:01:48:2b:16:47:89:58:22:3d:
0f:1c:81:6a:98:eb:07:16:e2:82:61:6d:f8:3c:81:
36:82:2c:95:63:34:ec:1f:05:00:67:eb:65:e6:c8:
a5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0A:CD:12:4E:F0:0B:6C:88:E4:2A:00:BB:E5:F2:36:3A:44:89:CB
X509v3 Authority Key Identifier:
keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:cc:52:d1:82:0a:5e:90:cc:e5:50:b0:59:00:14:1c:1a:0d:
c7:ef:9e:2b:ad:91:b2:05:59:77:13:47:25:50:52:25:95:6b:
8b:ba:31:39:30:55:ff:5b:23:44:f3:ec:2c:1a:b7:2f:89:c4:
89:b1:3f:b2:a8:27:d3:f9:6f:01:bf:26:01:dd:80:12:0d:ee:
d8:a0:5b:6a:90:11:0a:f5:e8:6d:18:b9:f4:77:f3:e7:8f:db:
08:c0:8b:32:28:88:fd:2c:fe:c8:b5:7e:ea:03:70:10:c5:ec:
e2:11:89:1f:36:d8:5e:04:5a:34:0d:dd:57:68:c0:32:f8:ae:
82:72:f4:6e:02:cd:58:45:cd:77:98:05:af:2d:4d:bb:34:96:
c3:37:8d:f7:a2:29:ac:0c:28:fa:7a:60:a5:69:ed:8e:af:2c:
f9:39:e9:0f:a5:db:c4:aa:1e:64:d4:36:4c:03:08:0d:17:47:
81:0c:10:cf:b7:42:11:78:68:a1:30:c8:f4:83:20:34:de:fd:
51:55:72:a3:94:0c:e5:c0:a2:b9:29:4c:8d:b8:79:ff:36:7a:
df:0b:4d:29:88:5b:ce:bf:63:66:ee:e8:e1:44:c9:9c:a5:30:
1f:79:bf:b7:c1:96:6f:fa:00:2a:71:d4:b2:e8:71:be:e8:d4:
58:74:85:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:45:42 2026 by rpki-client