Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: iSy4odsR+gz6W+0ved32yiraFkoJQP4g3YYYDQ2RMmY=
Subject key identifier: C0:B7:49:7B:9B:BC:25:EE:5B:69:C9:FD:39:35:C9:45:70:E5:AE:73
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 019CAC1004D8F67A8D65C681A5E9AF341ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 01:00:56 +0000
Manifest this update: Mon 02 Mar 2026 01:00:56 +0000
Manifest next update: Tue 03 Mar 2026 01:00:56 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: /isfbTgk/bgAdbImrHMK53SOcfb1BqNi4apnRszLRNI=)
2: GSCpplFtfkTN5C3emWdSBHM2s_U.roa (hash: uafjHLArE68enYzHEZipyUcJy+2TVAQsxPWk3VzbutI=)
3: T4PSpNaqkAOQJjuBdAFdx3zKgyY.roa (hash: sU9bxlF1T+hrGzv9LaagfpQyLm85yMt1O7DFm4yEcJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:04:d8:f6:7a:8d:65:c6:81:a5:e9:af:34:1e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Mar 2 01:00:56 2026 GMT
Not After : Mar 3 01:00:56 2026 GMT
Subject: CN=c0b7497b9bbc25ee5b69c9fd3935c94570e5ae73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d6:fc:90:3d:ef:e0:0e:62:ed:d5:94:fc:f0:
47:98:65:1e:86:ea:02:0d:68:d9:e6:b7:f2:7d:ba:
41:01:9c:5a:72:d7:e1:c0:cf:0a:70:03:b7:a9:eb:
0a:8a:df:ce:70:70:72:2b:f7:cc:43:d3:d0:42:58:
f9:c7:42:c1:63:3e:f2:6e:c9:90:ac:d2:0a:8a:69:
e2:d8:8b:78:b5:dc:26:09:ad:b8:9c:17:29:9c:ce:
3c:f7:33:ef:24:ef:86:15:db:6e:08:87:7e:2e:a2:
8c:cd:48:e2:49:3a:8c:ed:03:c0:0d:67:a0:50:ec:
2d:fe:52:dd:fe:77:da:a5:1a:76:99:0d:25:0b:72:
18:2b:c1:e4:02:a0:4c:4e:b0:40:7b:3f:fb:c5:2d:
a7:2f:f6:17:81:e2:48:4a:95:5e:fd:14:9e:53:6d:
0e:6c:d8:ce:3a:21:7d:4e:bc:04:49:06:66:a7:ab:
e8:af:33:97:c1:03:b7:c6:97:1d:18:2a:c8:e1:f9:
a2:88:f5:6c:f0:2b:e9:7b:fd:2e:be:84:a1:bc:b6:
61:9c:91:51:39:ac:d5:3a:a4:c2:38:ec:ca:d9:81:
2c:c3:94:56:bd:86:76:03:88:16:4f:31:4a:be:02:
6f:08:48:aa:6a:b9:61:e2:3d:19:5a:15:53:da:5d:
92:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B7:49:7B:9B:BC:25:EE:5B:69:C9:FD:39:35:C9:45:70:E5:AE:73
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:96:02:02:08:c6:c5:29:e5:ad:bc:22:96:74:39:b1:8b:8a:
03:52:a0:26:8a:6b:e4:4d:74:6f:c0:ac:3f:ba:ec:5c:1e:8a:
94:29:d4:ad:2c:ac:bd:84:60:d9:7b:33:b2:3c:40:41:75:e8:
07:92:7d:f2:1b:07:b5:17:ee:c5:b3:1d:3b:e7:87:ac:f8:a7:
fe:bd:8e:f5:03:b8:d9:42:d9:bc:29:ee:57:df:95:57:38:f4:
a8:17:76:8a:73:8e:d9:11:64:c0:82:59:a7:63:b2:b0:3e:4c:
25:c6:a1:ce:3d:7d:68:7d:50:3c:7b:49:59:7a:51:46:96:c6:
e1:c7:bd:a8:6c:03:eb:75:b5:a2:cf:a1:28:08:f7:b8:d5:eb:
50:68:be:88:b7:07:ba:2e:f9:52:45:9e:0a:cb:8f:d4:85:0d:
0f:36:61:e0:4e:0f:b2:a6:48:bc:49:ee:c7:d2:8e:72:51:8c:
56:85:c8:9b:12:79:fa:9e:d8:25:39:55:1b:2e:5d:36:f2:ad:
c6:a1:3e:64:21:8a:e3:29:63:0a:de:29:59:e0:b5:60:60:e0:
51:9e:64:0d:85:99:fb:00:6b:e9:8f:93:e9:05:aa:3f:7d:05:
62:b8:1c:65:50:0f:c2:1d:90:5c:58:3e:2f:1f:36:37:df:e5:
5e:21:ee:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:38:11 2026 by rpki-client