Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
File: AL8jAERknAbXXjAsUXUATb_GcmE.mft (raw, json)
Hash identifier: wQ0FmpT8JgfewZ8fVR3DCHjS1JeBwlVdQr45uMgNnDE=
Subject key identifier: 04:27:3C:D8:8C:9F:A0:F9:F3:1A:13:FF:82:7B:5F:71:D3:06:22:05
Authority key identifier: 00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
Certificate issuer: /CN=00bf230044649c06d75e302c5175004dbfc67261
Certificate serial: 019E3072CC486565B9CA6BC0C3DDA414ADA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
Manifest number: 0FB4
Signing time: Sat 16 May 2026 11:01:30 +0000
Manifest this update: Sat 16 May 2026 11:01:30 +0000
Manifest next update: Sun 17 May 2026 11:01:30 +0000
Files and hashes: 1: AL8jAERknAbXXjAsUXUATb_GcmE.crl (hash: d03QDs1DU+K9NzheHb1YCbUdb3qBVjvAKYl+PtMCEZM=)
2: LDfTHZtgg9SpOLAcUCBkRkR9ae8.roa (hash: 1t3+l57Hcn09X5UH0bRoB4dCslxZncJ1ud+DZIleEeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:cc:48:65:65:b9:ca:6b:c0:c3:dd:a4:14:ad:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00bf230044649c06d75e302c5175004dbfc67261
Validity
Not Before: May 16 11:01:30 2026 GMT
Not After : May 17 11:01:30 2026 GMT
Subject: CN=04273cd88c9fa0f9f31a13ff827b5f71d3062205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7d:34:59:ff:b1:e2:b2:1e:82:0e:84:df:5e:
52:67:8a:3d:c2:db:3a:c9:e8:3b:2f:b4:f6:b2:07:
32:00:c7:2f:da:f7:1b:03:ad:90:8f:85:54:89:a3:
2e:b4:84:77:a5:84:f3:b4:1b:bc:25:69:f6:6d:db:
2d:6a:b3:80:a4:8b:8e:de:bd:d8:7d:b3:d1:7a:5d:
58:76:16:50:98:50:28:f8:02:26:68:89:a8:24:0e:
6e:70:8b:2e:8c:e6:86:05:bb:3f:50:4e:b4:37:cd:
73:d7:a9:e0:7c:20:60:3f:ff:a5:0a:84:eb:13:dc:
04:bf:98:56:94:4d:52:24:d9:5c:10:8b:05:21:1f:
9f:a7:70:a2:cb:48:85:ac:e5:91:0f:88:ea:1e:ef:
27:2d:07:52:d7:fd:c2:e8:49:bc:65:4b:27:90:cb:
91:b2:0c:68:a7:01:a3:0c:c4:a3:cd:1f:a3:f5:de:
ca:b8:66:2a:a7:f4:09:14:14:87:e7:bc:e3:97:62:
8f:89:0c:57:d5:08:c6:4b:fd:30:04:2f:b0:ab:7d:
2d:73:72:bb:b8:62:ca:1c:50:35:8e:c6:49:c1:77:
f4:b5:8a:94:e4:aa:de:b2:07:63:14:20:c4:fd:51:
f3:00:e4:c6:04:3c:e0:fd:47:71:bb:5c:c2:8e:92:
19:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:27:3C:D8:8C:9F:A0:F9:F3:1A:13:FF:82:7B:5F:71:D3:06:22:05
X509v3 Authority Key Identifier:
keyid:00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e9:64:1f:0d:6f:4d:03:b8:e5:1e:fa:f9:e6:58:48:38:7b:3c:
5d:42:7e:51:f9:4b:07:82:f4:1f:e3:78:71:31:a2:44:50:ca:
fd:92:02:14:e7:0c:ac:6d:06:7a:d3:9d:b7:60:05:f1:fb:96:
c2:9d:ed:51:d6:dc:eb:4e:af:ba:07:67:d1:f5:12:43:c8:c6:
fa:36:ce:a0:5c:c8:43:df:1e:e8:f8:13:57:94:d3:d4:89:76:
27:50:b8:92:0b:11:b9:75:29:74:2e:7c:83:7d:29:26:e1:ce:
2b:f4:23:b4:44:bd:f8:c8:03:4a:1a:ab:e8:e8:76:b9:e9:09:
bf:3e:61:34:92:dd:81:95:da:ea:ae:ab:99:2d:31:22:4f:ca:
7d:a1:0d:2a:d3:49:9a:3b:39:2d:f4:49:26:09:9d:27:b7:b3:
76:70:db:4f:be:54:a5:ed:1f:b0:ed:fe:11:c8:14:19:b7:bf:
87:52:bf:30:a9:61:c7:48:a2:23:38:ae:3d:ef:1e:0a:a0:e5:
6b:b9:aa:3a:ef:34:5d:53:54:47:01:da:62:12:dc:2c:72:28:
2a:10:1a:76:3e:e2:d3:2e:eb:de:3b:98:10:76:3c:04:86:95:
e1:1a:39:a8:5c:1d:77:04:88:36:ba:29:70:10:3d:b5:7d:92:
5a:ba:05:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:11:54 2026 by rpki-client