Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
File: AslIBM_MfvJY1G_DJMFnZEdgPvY.mft (raw, json)
Hash identifier: znYhsIynigYsWnzOF/+yURyvEFAFL9c4tUHjFIp8QAM=
Subject key identifier: 9D:5D:B1:26:DA:9C:26:0A:DC:21:2F:70:9E:EA:35:05:A5:D3:54:D3
Authority key identifier: 02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
Certificate issuer: /CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Certificate serial: 019D99630BFC640C05258A6F1928DE39DF42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
Manifest number: 08F9
Signing time: Fri 17 Apr 2026 03:01:38 +0000
Manifest this update: Fri 17 Apr 2026 03:01:38 +0000
Manifest next update: Sat 18 Apr 2026 03:01:38 +0000
Files and hashes: 1: AslIBM_MfvJY1G_DJMFnZEdgPvY.crl (hash: ZHWj/5vNs9YVmpmkWFvzM7aAct5uPtg+6ILs6cxXpYk=)
2: uBdDrrOh7lGlr8QcDfUoYU2av_k.roa (hash: Cw4sLfBdvB1lBMMzs14p2jJuylUh6bwsF0YFotyYbaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:0b:fc:64:0c:05:25:8a:6f:19:28:de:39:df:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Validity
Not Before: Apr 17 03:01:38 2026 GMT
Not After : Apr 18 03:01:38 2026 GMT
Subject: CN=9d5db126da9c260adc212f709eea3505a5d354d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:19:90:d7:39:5d:84:98:bc:09:00:8f:66:83:
4e:f2:3f:e6:0b:d9:3d:9a:e2:17:1e:c4:50:2a:2e:
c3:5f:46:9a:91:11:15:aa:55:bf:d0:0d:1b:9a:a3:
df:18:20:9c:57:e3:28:ce:c7:c4:6a:65:90:44:dd:
16:0d:b0:e3:61:ee:24:16:22:47:0f:5e:46:27:45:
1b:45:54:6f:69:f5:a0:04:04:79:5a:63:e5:1b:64:
8c:79:c7:d6:f3:99:94:76:7a:bc:88:21:e9:20:bb:
1f:8c:e4:41:40:1c:ba:c9:64:8d:79:54:8b:62:30:
e3:3c:34:6f:f2:f2:a8:67:f1:6c:f4:cc:2d:79:8a:
41:14:9e:36:87:f3:f3:4a:51:09:6d:8a:b0:d8:c8:
0c:56:dd:1e:18:f7:da:24:d6:e7:03:20:f8:90:5e:
f4:a1:bc:64:fb:a9:50:41:45:d7:32:9b:06:23:76:
a4:fc:3a:fb:de:e8:89:3d:77:81:01:7d:0b:20:60:
84:fb:da:ce:07:f5:10:56:fa:03:fd:15:9f:e4:66:
3a:e5:89:3a:ce:5a:1a:89:3d:55:f0:88:db:6a:53:
65:6f:1b:7b:97:70:f8:db:cb:6e:cc:4b:4a:5b:84:
2c:6a:0c:5d:11:dd:08:31:34:2b:57:24:39:a0:66:
c2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5D:B1:26:DA:9C:26:0A:DC:21:2F:70:9E:EA:35:05:A5:D3:54:D3
X509v3 Authority Key Identifier:
keyid:02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:5a:ac:4a:88:03:a9:89:25:cc:8a:30:c2:6d:75:0d:57:bd:
12:3d:f8:27:ea:96:bb:67:f2:6a:b2:f7:3e:9e:ae:15:a9:70:
b1:6e:4f:10:0e:0b:27:29:7b:57:34:28:72:da:82:96:7c:a8:
45:3f:c7:e2:8f:ba:4f:83:de:2a:0d:ea:13:e1:a4:5f:7a:fe:
bb:20:a7:2d:3d:3e:8a:32:8c:55:67:4a:5e:84:58:74:f9:7e:
95:b9:3c:13:d8:89:e2:3c:96:1b:4c:8e:79:a2:c9:51:cc:49:
37:78:01:98:bb:a3:a8:84:13:e4:e5:93:5d:f0:95:ea:9d:52:
3f:00:e7:71:62:ee:ec:3a:86:38:e9:86:22:89:c2:35:64:33:
1a:ff:b0:35:61:fe:2c:57:a4:5e:3b:1f:8d:8a:72:d0:80:29:
c0:1c:18:40:e1:aa:0a:a2:89:a0:50:26:3d:45:58:83:19:e0:
ca:32:52:fd:ff:cf:b8:4f:e5:ee:e1:ea:8c:8e:53:01:8d:63:
81:bc:d0:e8:3c:8a:eb:91:a3:30:f6:08:c2:2e:d3:4f:b5:30:
b9:3f:35:29:8c:71:32:51:08:9b:06:f4:21:d7:5c:5c:85:cf:
9f:d7:5b:85:0e:f4:56:f5:90:71:d3:f7:7c:a1:ad:8c:bb:55:
22:c4:01:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:14:51 2026 by rpki-client