Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: kc3MqFFoVdcmfuiNHGJF0i2ONB6SLc3LU8rweeTaRK4=
Subject key identifier: B3:83:E4:52:90:92:E1:1C:B1:17:DE:AB:8A:0A:D1:61:A1:B5:CB:4F
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 019CAC7DE551662C35C034C41E9036BB8448
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 03:00:57 +0000
Manifest this update: Mon 02 Mar 2026 03:00:57 +0000
Manifest next update: Tue 03 Mar 2026 03:00:57 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: tjWoXtau3Xpp8g/olwaqtGsL7tEidhki0AA2i46QK7w=)
2: dsXROTd2qvJarDLFNerpFXp5tvM.roa (hash: g4jlzZr8kyp6l2Rwmj8PdLtnag5RCNjP07Ftz4rMi7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:e5:51:66:2c:35:c0:34:c4:1e:90:36:bb:84:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Mar 2 03:00:57 2026 GMT
Not After : Mar 3 03:00:57 2026 GMT
Subject: CN=b383e4529092e11cb117deab8a0ad161a1b5cb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:25:68:78:88:41:5b:56:40:72:ef:52:51:25:
49:a0:85:a6:db:41:b0:d5:f2:86:67:44:ea:6b:c7:
ca:02:6e:81:85:3d:d3:02:2f:b6:90:58:09:00:6f:
77:d9:c9:35:02:47:39:7e:bd:a9:fa:39:b7:35:1d:
e9:c9:6f:78:31:21:de:de:26:b4:9d:2e:1c:45:25:
90:92:fe:fb:b2:64:a9:ed:2c:55:c7:c8:bd:2e:ef:
14:b2:d9:8e:44:13:38:93:dd:2c:92:d6:8b:b5:cb:
05:18:0d:f9:cc:23:6b:f1:dd:b7:0d:f3:2c:bf:f7:
59:43:90:11:b3:a9:f7:8b:2e:b1:85:20:ac:05:4a:
29:6f:b0:1e:34:8b:09:c9:cd:63:4c:dc:1b:64:33:
bc:b7:df:c2:2e:d9:c0:ba:4b:86:a3:8c:9f:f5:df:
cb:5d:16:bd:d4:00:af:73:c5:77:30:91:2f:c9:29:
09:5a:62:e2:20:fa:85:52:08:da:69:fb:c1:60:8d:
82:b3:92:fb:31:c8:84:6e:40:e6:a5:b2:e2:b6:25:
71:3f:76:a0:95:8d:c5:16:85:39:0f:63:40:7e:aa:
00:87:3a:8b:05:f6:60:93:d4:4e:c9:7d:1c:65:3f:
09:2b:eb:8a:20:63:b8:fa:af:d2:b5:ac:26:b3:f1:
ff:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:83:E4:52:90:92:E1:1C:B1:17:DE:AB:8A:0A:D1:61:A1:B5:CB:4F
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:98:4e:40:a8:f0:4d:6b:b6:e7:49:55:9d:00:6b:42:bc:85:
08:81:5d:1d:c9:cd:9a:e3:f0:3e:25:7e:ad:4e:e7:f6:3a:6c:
48:55:72:d7:f3:8a:5a:60:38:c9:e6:19:32:77:99:83:84:62:
bd:8e:0a:79:05:63:c7:5c:e8:c0:24:de:7c:04:b0:5f:34:17:
73:4b:55:60:a2:37:99:05:fc:8d:e0:b5:04:06:f4:41:b5:e2:
6b:78:0a:8e:49:07:47:d7:8f:6d:31:f1:d3:3c:d3:99:ab:24:
dc:25:df:75:fa:cc:f9:58:95:0a:0f:63:c1:18:e4:cd:ee:9f:
dc:44:6e:9f:3c:2b:a9:9a:28:30:94:2e:dc:77:6a:39:0a:6e:
d2:4a:32:f5:6d:ec:95:74:8c:f0:a1:79:c7:02:5f:f4:19:9f:
75:eb:bc:ba:4d:27:7f:d0:8c:66:d7:ef:1d:12:ba:07:04:25:
d0:d2:56:d9:c1:78:64:e6:5f:62:48:da:57:39:41:0a:01:0b:
16:70:3a:be:f4:b6:ee:e5:40:a1:61:48:9e:af:4e:56:23:d0:
a6:9a:34:08:9a:da:2e:7a:1e:97:3e:79:24:ff:d6:bc:1a:63:
a1:97:41:1f:ea:d0:5f:90:ad:7e:5b:9b:30:c1:e2:13:07:97:
49:41:c5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:46:32 2026 by rpki-client