Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: rFo+hgidHX3gKPA5tDfUdKzwZ5/M5RbpTz4FppE/npY=
Subject key identifier: 7B:B8:E9:D6:2A:E0:37:B0:81:11:63:56:B1:22:E8:95:90:5A:A2:D2
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 019CAAC66A871246FFE28E184E4C47571A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0C08
Signing time: Sun 01 Mar 2026 19:00:55 +0000
Manifest this update: Sun 01 Mar 2026 19:00:55 +0000
Manifest next update: Mon 02 Mar 2026 19:00:55 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: FcQBEzcBlwqNKsj7eCWPjc4jkOCok9VHaySNzrG5hMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:6a:87:12:46:ff:e2:8e:18:4e:4c:47:57:1a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Mar 1 19:00:55 2026 GMT
Not After : Mar 2 19:00:55 2026 GMT
Subject: CN=7bb8e9d62ae037b081116356b122e895905aa2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:81:29:4b:b0:8d:2a:fa:f3:32:55:37:e3:
8e:54:07:1e:23:28:e5:d9:55:cf:c9:ee:df:87:d0:
30:47:8a:5e:55:c0:28:ea:ff:c6:ef:4b:70:e6:a0:
8b:c8:1a:2a:56:31:c0:4d:a8:98:43:10:98:56:df:
aa:31:7a:6e:39:5c:de:06:92:21:f9:73:b8:e8:dd:
5b:ee:95:33:f0:53:5b:74:f6:a6:bd:fc:fa:14:8d:
7f:1d:f5:35:3d:19:f3:a3:d6:e8:a3:c1:25:28:fa:
a6:b0:7a:c8:cc:85:6d:b0:3f:7f:d3:ea:47:e8:8f:
12:ae:53:03:2d:a5:b2:d5:f0:0c:93:9a:74:f7:a6:
7f:20:74:36:71:3e:eb:a1:f0:df:39:b0:79:af:0d:
23:88:c3:44:cd:05:e3:0f:44:6a:34:55:76:de:4d:
7f:71:cd:c3:3c:5b:be:ec:9b:2e:cd:bf:84:fe:46:
ed:db:b0:11:fa:c4:90:82:06:da:80:25:e3:d6:e3:
0c:d4:27:e7:1e:77:8f:4d:94:54:cc:b9:1b:04:9d:
70:2f:33:62:44:fc:84:cf:3d:9d:d6:c4:8e:03:1d:
71:20:e2:44:70:ec:32:82:be:ee:6e:00:60:33:c4:
14:c4:bd:51:42:2d:19:99:66:49:fd:73:d9:16:82:
80:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B8:E9:D6:2A:E0:37:B0:81:11:63:56:B1:22:E8:95:90:5A:A2:D2
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:98:06:82:63:33:85:a5:88:7c:42:03:4a:71:33:c6:77:b9:
ac:05:36:f3:8b:1f:79:17:6c:f7:63:e0:09:01:fd:20:24:b5:
e4:fd:1a:02:10:6a:4b:78:95:c9:20:16:90:e1:38:a5:4e:9e:
9a:52:a7:92:10:cf:62:73:ca:47:5f:24:55:8f:2f:77:cb:36:
98:32:0a:bd:0e:46:5d:e0:69:0d:1f:8a:70:c4:ba:f7:67:55:
c9:78:35:8d:de:da:d0:c4:c6:a5:f4:88:50:19:ec:b7:7f:5d:
9b:fe:37:4e:db:ce:9c:dc:06:73:b2:9c:d3:de:55:51:3e:6c:
cf:c5:ef:14:40:a9:f9:c7:0f:8b:87:19:74:2d:0f:b2:a8:6a:
04:c2:67:bd:3a:63:a7:34:f4:b1:38:e5:7b:e6:f4:a5:cf:9b:
99:c2:34:68:e9:bb:21:71:a7:3b:1b:6d:c2:4a:ce:ac:f8:bb:
7d:11:68:07:02:b9:ce:16:bd:31:75:49:3c:80:4a:20:34:9c:
26:8d:8e:36:e2:5b:98:b2:64:72:c7:be:53:64:7e:97:7f:47:
ca:98:bb:21:57:26:9a:b7:55:7b:7f:f2:2a:47:14:95:44:70:
2f:3e:b8:8e:f9:db:fd:1d:e6:13:38:1c:89:8c:55:c0:7e:3d:
41:b3:cf:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:14:46 2026 by rpki-client