Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json)
Hash identifier: Y4xx9jM3a3RpFipyDYige2k7liF2JXn3SLP5/87I2eo=
Subject key identifier: F5:E5:E1:A7:5E:C1:F4:12:0E:02:74:DC:0D:C1:00:7A:C7:3F:82:36
Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Certificate serial: 019D273ADCD719058037F0CE699CAD7E2740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 23:01:02 +0000
Manifest this update: Wed 25 Mar 2026 23:01:02 +0000
Manifest next update: Thu 26 Mar 2026 23:01:02 +0000
Files and hashes: 1: WqyJg34u4FI46gK9TN4Mq-Smgwk.roa (hash: 44JWX3VffsyLbQNR5KdwRNSUjOwcRvsLpWZgi4VqbS0=)
2: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: cbgjHODU0ijD0r+2g7vj/UO07Bo9d+8Ymjazxp34RqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:dc:d7:19:05:80:37:f0:ce:69:9c:ad:7e:27:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668
Validity
Not Before: Mar 25 23:01:02 2026 GMT
Not After : Mar 26 23:01:02 2026 GMT
Subject: CN=f5e5e1a75ec1f4120e0274dc0dc1007ac73f8236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d1:ff:6f:46:ea:0c:58:da:fa:db:48:bc:fb:
4b:f6:c8:15:72:b4:e6:d7:d8:33:02:dc:91:45:79:
f5:37:16:72:63:38:85:11:cd:5e:69:5a:6f:ea:6f:
96:e5:0c:43:d0:b0:6f:a6:96:39:1e:c7:ee:66:a0:
6f:12:9f:fa:82:58:e8:c4:58:81:39:3b:cb:f7:f0:
54:f5:c2:85:05:d6:18:76:47:c8:56:fc:22:9a:8c:
80:a9:43:9b:a3:d6:e1:83:ad:8d:1d:af:c5:a3:a3:
4a:92:d9:9c:26:1e:b5:72:c8:70:aa:a1:91:93:9c:
51:41:b1:43:69:84:df:4c:37:e5:5d:41:7a:b7:d9:
8a:75:3d:49:cc:7e:3b:fd:13:c9:94:b5:b0:dc:e6:
77:83:5e:08:07:09:cd:6e:1a:63:69:27:6a:71:9c:
68:67:52:56:d8:fd:78:4d:cd:a6:8b:a1:74:b1:d1:
52:db:dd:ed:6e:d2:4d:6b:19:20:6e:23:58:ee:91:
0d:b4:38:21:68:1c:0c:d8:b2:73:b0:b7:69:63:50:
68:12:d2:37:18:d1:d1:5e:6b:4c:5f:ff:7a:5e:7a:
dd:fd:51:c4:2b:0b:fc:bb:45:6b:6b:43:6e:bb:8e:
36:34:f4:eb:3c:aa:31:e9:79:36:95:97:d5:b6:2a:
08:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E5:E1:A7:5E:C1:F4:12:0E:02:74:DC:0D:C1:00:7A:C7:3F:82:36
X509v3 Authority Key Identifier:
keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e8:77:a6:46:26:43:7f:e0:ae:44:db:85:ed:7c:73:0e:52:
a3:de:df:c5:1d:0b:bf:7e:05:48:18:3b:cd:4a:48:55:20:6f:
bc:f3:7b:17:25:39:84:ae:d2:e0:72:17:95:16:e6:fe:5a:36:
06:81:3d:49:a8:c7:e3:09:b4:bb:9d:bb:42:93:ce:9d:38:da:
5d:99:e8:ba:d2:f8:de:79:a3:e8:e5:f2:da:a4:2b:6f:05:e0:
47:fd:f5:20:82:ee:86:62:d4:93:4c:2d:7b:ad:29:ad:98:78:
89:99:30:11:ac:18:83:91:6e:cb:2e:aa:1b:00:f8:91:ed:05:
9e:ee:43:fe:1b:b1:14:d2:f7:ac:1d:35:90:a6:ba:17:d9:fb:
a3:d2:cc:26:e3:cf:be:4d:e7:49:a3:b5:a5:47:7e:0c:5a:95:
1f:6e:9e:60:a8:43:49:31:6e:e2:a7:66:3d:55:4f:2b:73:d4:
43:e2:dd:3f:f6:11:17:78:24:00:2a:8b:f3:04:11:42:b1:9e:
e8:85:cf:25:79:2b:b4:7b:e1:de:2d:ca:b4:a7:43:4e:fb:ed:
b8:b8:92:58:10:aa:44:e1:47:7d:37:28:55:94:c3:ac:65:7a:
8a:22:c6:ac:08:bf:13:b2:64:4a:f5:61:4b:99:c6:51:32:ab:
44:56:5e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:23:11 2026 by rpki-client