Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
File: AlO5GdddwgTZyjjbeyihdINLOz0.mft (raw, json)
Hash identifier: 9GY6qTVbU5U1FVk/QtOLBNe0+SruVF6L16QZuWldhZk=
Subject key identifier: 5D:6C:04:AC:53:44:A8:07:AE:6F:EF:B1:33:B1:CA:3F:F7:CF:4F:84
Authority key identifier: 02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
Certificate issuer: /CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Certificate serial: 019E1D593BD9E7E557D93AE14D356CE27882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
Manifest number: 0927
Signing time: Tue 12 May 2026 18:00:47 +0000
Manifest this update: Tue 12 May 2026 18:00:47 +0000
Manifest next update: Wed 13 May 2026 18:00:47 +0000
Files and hashes: 1: AlO5GdddwgTZyjjbeyihdINLOz0.crl (hash: ihZyVuZ91semFh6sHqoSjtKWjsChMAPBW2kvKMptab4=)
2: PMWWklW51anXq7aRQXkdao86Jek.roa (hash: +f085vkz6griqp0/YZpf7yExFFEfbfc0Y85L8JbYisc=)
3: h3tLHRWk_OmFsZTg_jd5-mdYTds.roa (hash: xHXqRtgjeuL+vMeMb7Pl+kHYtqxysXcomaAK0drp85s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:3b:d9:e7:e5:57:d9:3a:e1:4d:35:6c:e2:78:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0253b919d75dc204d9ca38db7b28a174834b3b3d
Validity
Not Before: May 12 18:00:47 2026 GMT
Not After : May 13 18:00:47 2026 GMT
Subject: CN=5d6c04ac5344a807ae6fefb133b1ca3ff7cf4f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:df:51:0e:64:77:30:04:fd:e1:ef:0a:03:e3:
17:42:22:d4:39:7e:e6:8d:c1:9f:c7:19:38:54:3c:
36:79:29:67:69:b6:55:f3:17:f1:a9:24:bd:12:3e:
c8:91:3d:ea:19:e9:1a:a4:a4:45:d9:32:c9:d7:95:
dd:32:fb:10:60:9f:99:52:63:04:7f:f4:55:0f:cb:
05:91:6d:81:bf:e0:9b:6a:90:99:3d:a4:05:81:e8:
2e:55:1b:49:e1:1d:7b:24:45:61:6f:a3:c1:e8:03:
01:87:a7:dd:f3:ca:07:b6:5b:71:5b:14:d0:29:48:
7f:14:2e:29:84:bb:df:6b:84:67:88:fe:fe:a1:a2:
f3:87:ed:c2:23:e6:20:af:20:8d:c5:7a:ad:60:d1:
17:29:2e:53:cb:ea:0b:25:54:6c:ac:33:b0:2c:c9:
3f:73:6b:ed:28:ee:ea:94:37:72:ba:3e:13:97:25:
2c:ca:ee:48:0d:84:ef:1b:c0:91:80:33:78:72:01:
f4:2a:e5:3f:3c:b5:2a:18:08:fc:22:4e:ed:79:c3:
21:1d:8c:b5:a7:04:85:21:38:22:6f:76:d1:77:88:
e9:b5:15:8e:fe:fe:ba:45:17:58:f4:2a:13:34:11:
51:ef:8c:49:c5:8b:f9:2f:70:67:c1:78:33:5c:c1:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6C:04:AC:53:44:A8:07:AE:6F:EF:B1:33:B1:CA:3F:F7:CF:4F:84
X509v3 Authority Key Identifier:
keyid:02:53:B9:19:D7:5D:C2:04:D9:CA:38:DB:7B:28:A1:74:83:4B:3B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlO5GdddwgTZyjjbeyihdINLOz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/3bafd8-c34e-4890-b4cf-73db0f2841c9/1/AlO5GdddwgTZyjjbeyihdINLOz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:1d:b5:a3:f4:1c:d0:e5:df:c3:56:ea:45:99:03:81:cf:be:
d0:65:a6:24:e1:b9:55:ff:5f:0d:6c:e4:c1:4b:1d:5b:ed:e0:
97:e9:50:57:ef:63:82:1f:48:3a:2b:1e:db:5a:68:b2:33:d0:
d9:34:7d:06:53:e7:83:8e:3b:83:9b:61:77:12:fe:3a:5d:11:
57:b7:dc:6d:ce:19:c0:d5:47:c0:db:1d:93:d6:cc:c7:71:91:
cb:7d:87:5d:d0:2e:79:27:47:8f:fa:55:e3:7a:54:5c:12:3a:
77:10:76:89:5c:d5:5f:2a:ce:77:98:bb:19:72:22:a0:bb:ff:
5f:71:b0:cf:80:2f:c6:f2:0a:3c:ce:52:14:f7:b7:d9:9a:0a:
92:42:2e:da:82:c9:61:27:2b:08:e9:6c:98:f7:d9:ae:b9:22:
30:bf:3a:39:5b:ae:d8:c0:a9:c2:b8:95:4e:01:d6:0b:87:8d:
ec:81:eb:13:d4:9b:2c:25:58:b5:2d:1c:9e:6b:4d:f2:08:d8:
ac:5a:5e:ff:de:f9:6f:a5:91:f0:74:c4:71:19:d4:6b:56:fa:
a7:65:42:75:ba:e0:83:77:7c:93:9b:57:0b:a6:06:fa:8f:a6:
58:d6:3d:d8:35:e3:09:a2:6d:09:21:1d:83:81:28:43:65:bd:
db:3c:9a:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dWTvZ5+VX2TrhTTVs4niCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNTNiOTE5ZDc1ZGMyMDRkOWNhMzhkYjdiMjhhMTc0ODM0
YjNiM2QwHhcNMjYwNTEyMTgwMDQ3WhcNMjYwNTEzMTgwMDQ3WjAzMTEwLwYDVQQD
Eyg1ZDZjMDRhYzUzNDRhODA3YWU2ZmVmYjEzM2IxY2EzZmY3Y2Y0Zjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqd9RDmR3MAT94e8KA+MXQiLUOX7m
jcGfxxk4VDw2eSlnabZV8xfxqSS9Ej7IkT3qGekapKRF2TLJ15XdMvsQYJ+ZUmME
f/RVD8sFkW2Bv+CbapCZPaQFgeguVRtJ4R17JEVhb6PB6AMBh6fd88oHtltxWxTQ
KUh/FC4phLvfa4RniP7+oaLzh+3CI+YgryCNxXqtYNEXKS5Ty+oLJVRsrDOwLMk/
c2vtKO7qlDdyuj4TlyUsyu5IDYTvG8CRgDN4cgH0KuU/PLUqGAj8Ik7tecMhHYy1
pwSFITgib3bRd4jptRWO/v66RRdY9CoTNBFR74xJxYv5L3BnwXgzXMGhtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF1sBKxTRKgHrm/vsTOxyj/3z0+EMB8GA1UdIwQY
MBaAFAJTuRnXXcIE2co423sooXSDSzs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2Yt
NzNkYjBmMjg0MWM5LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8zYmFmZDgtYzM0ZS00ODkwLWI0Y2YtNzNkYjBmMjg0MWM5
LzEvQWxPNUdkZGR3Z1RaeWpqYmV5aWhkSU5MT3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARx21o/Qc
0OXfw1bqRZkDgc++0GWmJOG5Vf9fDWzkwUsdW+3gl+lQV+9jgh9IOise21posjPQ
2TR9BlPng447g5thdxL+Ol0RV7fcbc4ZwNVHwNsdk9bMx3GRy32HXdAueSdHj/pV
43pUXBI6dxB2iVzVXyrOd5i7GXIioLv/X3Gwz4AvxvIKPM5SFPe32ZoKkkIu2oLJ
YScrCOlsmPfZrrkiML86OVuu2MCpwriVTgHWC4eN7IHrE9SbLCVYtS0cnmtN8gjY
rFpe/975b6WR8HTEcRnUa1b6p2VCdbrgg3d8k5tXC6YG+o+mWNY92DXjCaJtCSEd
g4EoQ2W92zyaXw==
-----END CERTIFICATE-----
Generated at Wed May 13 03:37:40 2026 by rpki-client