Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: 0OAtC9qPPYCDm67UXCYfs1QcnWDkur8/Ukod4U2sqfY=
Subject key identifier: B9:49:EF:7F:2C:1C:75:47:32:07:CB:F4:92:E5:B5:CD:F4:4E:34:4E
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 019F18679F621A9B6FE8BDA8B73371764B50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 1987
Signing time: Tue 30 Jun 2026 12:01:11 +0000
Manifest this update: Tue 30 Jun 2026 12:01:11 +0000
Manifest next update: Wed 01 Jul 2026 12:01:11 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: r/2NOKpe3zb6wjJ8q1pkNMUx5S9VbHYSzaI3gptKOJQ=)
2: dsXROTd2qvJarDLFNerpFXp5tvM.roa (hash: g4jlzZr8kyp6l2Rwmj8PdLtnag5RCNjP07Ftz4rMi7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:9f:62:1a:9b:6f:e8:bd:a8:b7:33:71:76:4b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Jun 30 12:01:11 2026 GMT
Not After : Jul 1 12:01:11 2026 GMT
Subject: CN=b949ef7f2c1c75473207cbf492e5b5cdf44e344e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6f:5f:77:c3:b8:2a:1d:cc:ad:0c:8b:37:34:
df:58:16:70:45:87:4e:66:89:26:8a:a7:35:0d:b5:
d2:7c:47:e1:c2:21:6c:e7:c8:35:bf:d8:37:22:9d:
8a:6e:19:9e:e1:94:77:44:59:7c:52:58:11:78:55:
a0:74:ab:49:8e:f6:b9:c1:49:49:0b:ab:ba:4b:d0:
47:7a:87:ca:31:4a:a7:68:6d:c3:ec:70:7a:93:c6:
24:0e:a4:24:ff:00:b4:89:30:52:cf:c7:12:f7:ca:
b8:d8:06:43:3c:1b:80:05:e8:a7:95:f8:58:2e:04:
72:b0:84:3d:d3:4a:f7:53:29:a3:7d:91:c2:75:38:
0a:b9:c1:f0:20:01:a0:90:3b:9b:34:2f:2b:c7:b3:
59:db:1d:d2:d6:c2:11:2c:8c:c2:8c:d0:0a:2e:98:
2e:a1:e9:86:58:20:cf:b9:ef:24:45:fa:19:a8:f7:
4c:43:94:30:97:16:98:82:7a:e2:2c:a2:c0:73:8e:
5a:1c:90:fc:d2:76:cd:5a:f7:c2:92:ae:95:5b:b9:
3e:a3:6b:e4:a5:59:e6:3c:80:6a:2b:72:e2:62:3e:
4e:5e:39:b3:f4:92:07:96:ed:38:c5:28:5f:77:31:
9d:f3:d9:22:01:3b:ee:c9:b0:41:1b:8f:26:52:a9:
41:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:49:EF:7F:2C:1C:75:47:32:07:CB:F4:92:E5:B5:CD:F4:4E:34:4E
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:09:ac:ed:18:1b:3c:79:4c:95:6b:f2:51:66:a8:16:6f:8f:
e6:dc:15:7b:5f:c9:bb:c2:dc:2c:6d:72:dd:25:21:2b:82:72:
5a:03:2d:7d:8a:9e:a5:87:8e:d1:e0:f6:00:bf:3f:f3:29:a6:
3c:fa:2b:f8:2e:c4:5a:fa:46:42:7c:a6:d1:1e:cb:38:97:12:
1c:87:28:79:20:aa:67:5e:6c:c4:02:1f:bc:3f:94:fb:ba:99:
2b:1f:28:1b:2f:35:c1:ae:ac:c4:3c:2e:51:73:33:01:c9:72:
4f:70:47:04:2d:cd:51:77:f2:23:32:83:46:d7:33:af:9f:23:
4c:ab:63:ad:99:a7:aa:49:fb:10:75:11:70:88:65:3e:2f:af:
19:03:8d:81:0d:5e:3b:ac:ae:40:74:b3:8c:6f:4e:d6:bd:c6:
ed:a5:11:88:a9:34:d7:41:71:a5:f2:48:16:ff:e6:0a:b1:a3:
1b:af:82:3c:72:f1:62:49:ce:13:a2:10:dc:ab:ef:1a:c0:b3:
e9:39:20:9d:24:30:ff:ce:85:20:88:e2:fc:3b:be:84:0c:9f:
9c:a3:7d:e1:a3:f7:0d:9b:69:9d:c6:27:e1:a2:26:d7:d8:7e:
7d:98:f5:c7:8e:c0:04:c5:3d:c4:f3:12:96:a1:12:4f:60:c8:
1d:15:bd:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:12 2026 by rpki-client