Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: I1veoYfI+8hZX0DxS+yucjQExImd1HQxLMnbcfT9UDE=
Subject key identifier: B7:61:26:89:77:17:19:E8:17:66:AD:DC:3A:32:7F:76:8A:B4:7C:5A
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 019EBFC85124FB4BB5CC6C7D4C407940C4F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0D1C
Signing time: Sat 13 Jun 2026 07:00:36 +0000
Manifest this update: Sat 13 Jun 2026 07:00:36 +0000
Manifest next update: Sun 14 Jun 2026 07:00:36 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: JIkPFYxv0NdDTCuKwtzjZrgvl3Qir5YsHWfH4h+9C/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:51:24:fb:4b:b5:cc:6c:7d:4c:40:79:40:c4:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: Jun 13 07:00:36 2026 GMT
Not After : Jun 14 07:00:36 2026 GMT
Subject: CN=b7612689771719e81766addc3a327f768ab47c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:18:d2:b8:e1:3a:e5:ad:5a:8f:8f:f3:6d:2f:
66:61:30:f1:eb:44:b4:be:50:0d:ae:c2:8c:3e:61:
4f:3a:58:49:79:d2:1d:92:1d:7e:d4:28:5c:4e:94:
8a:14:47:4e:84:7f:14:b4:27:1a:79:1e:ce:b8:97:
6d:59:70:33:d2:62:83:2f:19:2f:92:b1:94:00:a2:
65:35:6c:38:ef:19:79:bd:da:dd:d0:08:88:d4:50:
19:32:cb:17:5e:05:0c:eb:6c:75:93:0f:19:4d:1a:
0d:74:b7:94:f9:0b:e0:b6:cc:ff:c0:01:20:b7:ce:
ee:0a:cd:cb:f3:21:aa:4b:ca:23:a9:47:06:37:8b:
c2:bc:d9:76:39:4c:5e:cd:8a:c7:7e:ad:29:a6:d3:
f8:77:38:76:72:a6:c7:51:44:93:68:ba:10:c5:78:
85:2a:b3:da:b4:a4:f8:9e:f2:8a:74:0e:32:6d:f5:
d4:d9:5e:75:61:0a:c3:a4:e6:4c:26:ae:7a:38:ef:
09:95:03:eb:fe:49:66:50:82:e2:a5:95:c1:52:cc:
41:b6:4d:1e:d0:21:70:3a:3b:8b:80:b9:d3:b5:9c:
61:d3:a3:24:a0:d1:60:5d:95:75:a5:9c:10:eb:84:
fd:a5:96:8a:f8:b1:57:71:44:d5:d9:24:97:27:6e:
8c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:61:26:89:77:17:19:E8:17:66:AD:DC:3A:32:7F:76:8A:B4:7C:5A
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ab:21:e8:ba:ff:93:82:91:69:8b:3d:de:39:52:e7:9a:c2:
5c:3b:d3:ff:e5:e9:0f:64:18:9e:50:a8:92:79:91:51:36:91:
9a:91:a4:4e:c3:c3:2c:a8:d0:60:49:2f:6e:0c:6d:95:9c:aa:
6e:33:0b:8d:3b:03:e7:f2:9a:69:ed:c2:7f:9b:5c:5f:4a:84:
d5:e4:30:98:9b:da:4a:7f:83:61:e2:ce:1d:14:c1:00:81:1a:
cd:85:a1:c4:61:d2:7f:b4:83:14:b7:f6:9a:bb:93:7b:f1:23:
d0:84:78:50:fb:5a:30:d9:70:53:37:9e:fc:e6:d1:1e:88:79:
b2:6f:e4:28:78:62:39:41:c8:8b:ce:7c:df:66:4b:dd:8b:fd:
bb:7b:55:10:66:75:36:c9:b3:97:43:94:48:9a:3a:9b:ba:ba:
ab:2f:56:bf:81:dc:63:61:b0:c9:9f:94:9b:84:e4:f1:f0:88:
f0:57:1d:52:04:33:dc:6d:22:62:ad:ac:56:ca:e4:05:cd:c7:
0a:ac:bf:0b:c2:c8:81:07:13:cc:99:f4:b9:05:4d:73:a1:88:
61:41:39:be:81:15:7f:6a:46:1a:0e:5c:70:c8:df:76:ee:3d:
6a:f0:6b:b9:c3:f2:9d:c5:c4:6f:2e:15:ae:75:48:22:68:23:
b4:9f:cb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:26:00 2026 by rpki-client