Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
File: AslIBM_MfvJY1G_DJMFnZEdgPvY.mft (raw, json)
Hash identifier: qqpM2aww9GpywC1OD6kdnf3GNAynv3PwQMMqJdrQF2s=
Subject key identifier: 88:95:2D:41:83:67:58:69:3E:23:50:69:F3:F3:A8:26:91:65:7B:FA
Authority key identifier: 02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
Certificate issuer: /CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Certificate serial: 019EBFC89D0D1A46E147294806877221ED65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
Manifest number: 0992
Signing time: Sat 13 Jun 2026 07:00:56 +0000
Manifest this update: Sat 13 Jun 2026 07:00:56 +0000
Manifest next update: Sun 14 Jun 2026 07:00:56 +0000
Files and hashes: 1: AslIBM_MfvJY1G_DJMFnZEdgPvY.crl (hash: nRtYzgnUUvqFDOJwo3mXZa+6kXf7hWCEA97hkIzr1mA=)
2: H49G2vY2n7CqDt3v_PdU70zy7RA.roa (hash: 3w0udG08DzlOoXAgNwrIJkLMkSJOE7Sqq/f8cYs/Xbk=)
3: uBdDrrOh7lGlr8QcDfUoYU2av_k.roa (hash: Cw4sLfBdvB1lBMMzs14p2jJuylUh6bwsF0YFotyYbaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c8:9d:0d:1a:46:e1:47:29:48:06:87:72:21:ed:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Validity
Not Before: Jun 13 07:00:56 2026 GMT
Not After : Jun 14 07:00:56 2026 GMT
Subject: CN=88952d41836758693e235069f3f3a82691657bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a5:a4:4a:51:9b:58:50:e0:5f:9d:41:1d:12:
5d:35:97:97:8c:92:cf:c4:82:46:66:a6:74:99:97:
9d:10:fc:6c:4a:59:2b:dc:00:3d:66:ba:12:68:9f:
f8:0b:3e:fa:17:03:63:84:49:ec:2e:07:55:fc:45:
e9:c9:87:e6:0a:b5:3b:d1:fb:4a:56:b3:c9:b0:25:
f5:6c:fb:79:5f:71:4b:32:3e:0f:5c:50:04:bb:f7:
a8:dc:94:35:76:54:ef:b5:a5:22:f2:0d:0d:2a:66:
3e:4e:d9:30:f1:f2:ed:7d:f6:e2:b9:c0:08:c5:fd:
51:4b:6a:a8:50:8a:66:d5:a5:28:1a:51:1e:e1:d2:
74:be:95:8a:07:20:15:42:87:86:01:d5:0d:10:e6:
7e:b0:13:5c:66:38:f6:51:69:e2:c9:95:af:c3:0f:
0e:de:ba:81:ba:ec:67:93:93:98:94:c1:17:12:b5:
26:65:1a:cf:b4:42:47:71:15:5c:d1:f7:e6:23:76:
04:d9:cd:7e:cd:51:aa:37:d7:a3:7c:ef:39:0c:bc:
d5:e7:2b:5c:25:e3:04:45:20:ec:dc:4f:9b:66:b3:
f2:a5:b3:64:19:d9:8f:39:71:cf:16:89:e2:3a:e3:
43:12:db:14:14:1c:a6:eb:e4:d0:64:e6:e6:06:22:
1f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:95:2D:41:83:67:58:69:3E:23:50:69:F3:F3:A8:26:91:65:7B:FA
X509v3 Authority Key Identifier:
keyid:02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:b4:d8:4e:aa:da:55:86:74:bc:2d:86:72:ec:e4:74:6d:d4:
24:7f:4f:6b:55:1a:a5:57:38:9c:5a:4a:47:bb:0e:b1:3b:7d:
f1:28:8f:25:e4:c2:dc:9f:da:73:1b:55:b2:5f:ff:39:aa:c7:
da:d3:bb:95:fb:76:72:59:91:11:3b:1d:b5:f3:68:59:ef:95:
80:e4:26:3c:02:f0:df:17:bc:82:5a:ca:b9:43:04:1e:d2:e8:
d2:e5:56:1a:bd:15:47:08:2f:5e:a6:ae:cd:67:97:a1:dd:03:
01:0e:59:80:65:01:43:86:05:03:86:50:60:6a:8a:2d:a2:1d:
56:d6:af:cf:5d:72:ab:d2:a4:79:55:00:2b:d2:ac:9c:d3:6f:
56:9f:1a:1b:23:a3:02:b4:24:fe:4e:0f:66:f4:2d:f1:57:12:
9e:df:ac:27:1e:d5:b6:65:ba:b2:f3:7a:b0:92:23:b3:fb:88:
f3:47:89:cd:22:cc:13:e7:35:d0:cc:8b:bb:d6:19:77:0c:91:
11:be:2e:25:7d:a2:50:30:8a:0a:df:ee:ee:d7:0f:2c:d9:55:
c2:de:86:aa:07:41:df:b0:4e:d1:d9:be:91:c4:66:dc:3f:05:
4b:c1:f1:80:ce:c0:94:79:d5:3f:7c:15:c9:cb:b6:b2:24:26:
1a:6a:c3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:12:11 2026 by rpki-client