Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: VWYUAUa+ytbqUqbvjjdcQcHdq+oTuFdTzTq8+dZpPIk=
Subject key identifier: 7E:4B:51:99:38:88:08:C4:0D:F5:94:A4:D9:6D:96:89:6D:B3:26:48
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 019E30A8EB17FACEED5FA1D4D79C8834AB4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 12:00:37 +0000
Manifest this update: Sat 16 May 2026 12:00:37 +0000
Manifest next update: Sun 17 May 2026 12:00:37 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: ThJ6ZcRlOgfRozGloopHPE88wi9n5hysOWKfKvXXfO4=)
2: dsXROTd2qvJarDLFNerpFXp5tvM.roa (hash: g4jlzZr8kyp6l2Rwmj8PdLtnag5RCNjP07Ftz4rMi7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a8:eb:17:fa:ce:ed:5f:a1:d4:d7:9c:88:34:ab:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: May 16 12:00:37 2026 GMT
Not After : May 17 12:00:37 2026 GMT
Subject: CN=7e4b5199388808c40df594a4d96d96896db32648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:81:55:fc:7f:66:ee:e0:54:e5:fc:69:0a:40:
a8:34:41:6c:c8:f3:23:65:22:e6:bf:21:6c:29:43:
b3:e6:33:31:b7:1e:76:45:25:fd:d2:8b:1f:21:9f:
3d:a8:69:46:53:77:8a:29:04:cc:26:7e:56:7d:60:
cf:dd:df:ee:c9:53:5d:94:bc:9a:09:1a:8a:e9:6c:
b6:c0:a9:bd:1b:6a:85:0c:e8:91:d7:08:72:58:3a:
4f:84:cb:82:9d:a0:db:ca:74:f4:40:62:1a:09:fb:
36:77:65:bf:87:11:ad:9a:9d:81:0e:27:47:d4:db:
6e:52:c1:16:8d:e3:d4:07:0e:95:90:ed:a2:23:92:
65:2a:5b:c5:39:f6:fd:66:cf:2f:d6:31:36:ef:f7:
20:c1:a0:7d:91:3d:2e:0a:6a:0d:14:59:cf:ef:5f:
0d:34:1a:f9:54:ff:a3:b0:12:2a:24:6c:59:f7:85:
f8:32:5b:cb:c2:93:11:2f:76:08:4b:19:ee:da:54:
a2:ad:ad:0e:24:2c:39:3b:29:9e:01:84:b8:a0:74:
85:57:ed:7d:f1:6f:13:14:27:a4:17:2f:d3:e6:b2:
2d:bd:35:ba:75:44:ec:1f:e6:3b:93:7d:bf:f3:ec:
18:70:1f:21:7f:32:03:86:46:7c:7a:f8:47:6b:85:
30:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:4B:51:99:38:88:08:C4:0D:F5:94:A4:D9:6D:96:89:6D:B3:26:48
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:f6:52:db:55:0b:2e:98:a1:f0:25:25:ce:bc:dd:f2:a8:e6:
d6:f6:7a:a1:f3:50:b4:c0:f7:80:a0:05:b5:2d:bd:37:db:a1:
3f:ae:ef:6a:77:d2:cb:11:04:5c:52:fd:e9:ed:11:52:6f:4d:
5e:29:8c:9d:ff:9b:76:a4:a8:45:ff:f2:1c:e5:c5:42:87:e2:
1c:98:32:2d:7c:6c:ce:f9:12:19:3c:1e:4d:c3:1d:6c:38:e4:
4b:95:0f:48:a6:82:ea:70:21:49:0a:5d:ed:df:8d:04:fd:e8:
62:48:1b:1c:d8:d9:1e:8b:15:82:17:53:e8:32:01:fb:9f:e0:
9b:66:bb:fc:04:40:60:84:bb:56:22:18:84:35:3c:c7:d8:97:
a2:1d:15:1a:df:97:3e:de:0f:98:62:ad:3f:87:bb:9e:73:34:
67:7b:6f:08:b1:7a:8b:1e:87:da:e3:7a:15:4c:53:63:77:fa:
8e:b9:47:1e:68:7a:36:d1:87:5f:c3:35:f2:65:05:82:3f:5a:
8a:61:c4:7d:18:72:f8:b7:1c:9c:9a:5c:ff:3e:73:1b:f7:e4:
44:4f:d0:78:ad:51:74:42:30:8d:30:88:31:62:bd:5b:f2:e5:
3a:ed:53:5f:64:2e:e0:e9:3c:ef:46:f3:49:bb:f8:b5:25:63:
a6:d9:3e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:17 2026 by rpki-client