Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
File: AslIBM_MfvJY1G_DJMFnZEdgPvY.mft (raw, json)
Hash identifier: yC72Ha/QTNi/MtCfjUy4aBtgEGgcgV4jlnWvMLLRZzY=
Subject key identifier: 35:43:FF:2D:6C:BA:8A:D1:96:EA:52:E3:86:60:CA:D3:33:FE:F9:C6
Authority key identifier: 02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
Certificate issuer: /CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Certificate serial: 019CABD8FF3B16144D8E5A118C00AA3D0E95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
Manifest number: 087E
Signing time: Mon 02 Mar 2026 00:00:50 +0000
Manifest this update: Mon 02 Mar 2026 00:00:50 +0000
Manifest next update: Tue 03 Mar 2026 00:00:50 +0000
Files and hashes: 1: AslIBM_MfvJY1G_DJMFnZEdgPvY.crl (hash: ZlrOB9A1uqaRy9Eif03eB8wNplptQgsFprnZAJg39XY=)
2: uBdDrrOh7lGlr8QcDfUoYU2av_k.roa (hash: Cw4sLfBdvB1lBMMzs14p2jJuylUh6bwsF0YFotyYbaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:ff:3b:16:14:4d:8e:5a:11:8c:00:aa:3d:0e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c94804cfcc7ef258d46fc324c1676447603ef6
Validity
Not Before: Mar 2 00:00:50 2026 GMT
Not After : Mar 3 00:00:50 2026 GMT
Subject: CN=3543ff2d6cba8ad196ea52e38660cad333fef9c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:27:1e:27:d6:bc:65:a9:11:09:e7:5a:be:e1:
ab:35:c8:c2:4e:82:0d:ca:2e:8a:cf:ac:43:28:f7:
0f:c6:60:3a:e0:6d:b5:19:8a:19:01:7e:59:42:6b:
d5:b2:52:0f:c6:7a:01:83:a5:7d:5b:3f:2b:f3:bd:
1b:60:01:c5:d0:2d:03:d2:96:91:1f:ad:da:6c:fa:
c0:bd:69:8a:1b:67:9d:ba:16:53:21:77:7f:15:9a:
4e:27:9b:ab:47:4c:f2:74:bf:d2:f7:01:95:d9:6d:
ea:15:f9:22:bc:b0:a7:c5:c3:08:63:9c:d1:ee:de:
c3:7b:4f:2f:a9:9e:0a:70:7d:49:2f:41:ea:4a:c7:
87:1a:e1:95:7d:51:ae:40:ae:f9:0b:02:08:22:ff:
07:ef:a3:f8:1e:c9:7f:33:bc:5e:f7:79:b2:4d:0d:
08:ef:86:14:94:db:25:4a:15:1d:48:4a:fe:62:df:
ac:1d:62:36:81:85:22:7a:d1:2c:72:4d:ea:86:c1:
83:a4:49:6f:22:6e:ff:2f:65:77:5a:9e:0d:11:bc:
bd:c9:2e:98:cd:10:ea:a5:8c:ee:e5:5a:64:f0:a3:
de:09:44:2b:69:71:4f:5a:91:61:c9:06:2e:d2:fd:
72:63:e6:02:b9:48:ae:6f:06:67:37:3b:88:fb:e5:
b7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:43:FF:2D:6C:BA:8A:D1:96:EA:52:E3:86:60:CA:D3:33:FE:F9:C6
X509v3 Authority Key Identifier:
keyid:02:C9:48:04:CF:CC:7E:F2:58:D4:6F:C3:24:C1:67:64:47:60:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AslIBM_MfvJY1G_DJMFnZEdgPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/85ff0a-22ab-4190-9b73-259be9fbc1f1/1/AslIBM_MfvJY1G_DJMFnZEdgPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:a3:72:fb:ec:cf:cb:06:b8:ad:30:ae:36:0d:02:41:fc:56:
e8:28:c8:ce:49:34:a6:bb:ba:6b:a8:fd:28:8c:ef:c7:ee:b9:
eb:4a:7a:91:72:e9:38:73:ee:d9:ff:f8:b6:5f:83:9b:d2:b0:
bd:11:aa:5e:00:10:75:fd:a7:f8:68:b2:d1:3b:26:21:ed:94:
57:c7:a0:40:92:22:bd:6f:36:a3:89:db:81:2c:c0:38:ba:2a:
75:6c:fe:19:a8:c7:15:89:4b:b6:54:35:ba:10:e8:20:53:70:
88:17:dd:e3:5b:da:72:4f:1a:0a:8b:cb:8d:21:fb:d6:1b:11:
c1:b1:ae:2a:1d:2a:bf:fa:d1:1c:fa:b8:21:61:70:12:a1:fa:
4c:30:eb:5a:cd:b4:16:9b:40:68:7a:6d:83:54:48:b3:bb:cf:
cf:2a:c7:90:23:33:99:74:b7:1f:f1:b5:e0:ef:fc:2e:f8:22:
9e:1c:1c:d2:07:59:b1:af:70:f9:04:90:40:0a:d8:9a:86:81:
56:b2:cd:0b:c9:77:0c:ef:a3:d0:c5:6c:54:ec:fb:25:79:4c:
1b:fe:bd:96:29:46:9c:7e:91:74:43:59:5c:a9:97:29:06:fb:
c4:ad:19:d9:56:45:18:71:4a:06:a2:d2:22:35:0f:72:10:c1:
4a:3b:41:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:58:05 2026 by rpki-client