Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
File: AL8jAERknAbXXjAsUXUATb_GcmE.mft (raw, json)
Hash identifier: O1cANS10j1FXV2UGVPnJQzziUiUnfr9Q7lLRkDrkCR0=
Subject key identifier: CD:D1:22:68:03:43:32:2A:2E:C0:AA:9F:5B:FA:1F:EA:F2:83:8F:D7
Authority key identifier: 00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
Certificate issuer: /CN=00bf230044649c06d75e302c5175004dbfc67261
Certificate serial: 019F18312D68FA272A971CF55556FF930D66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
Manifest number: 102C
Signing time: Tue 30 Jun 2026 11:01:43 +0000
Manifest this update: Tue 30 Jun 2026 11:01:43 +0000
Manifest next update: Wed 01 Jul 2026 11:01:43 +0000
Files and hashes: 1: AL8jAERknAbXXjAsUXUATb_GcmE.crl (hash: 2U9uRAw4eQcXs8NKsiD8ezmShuPk/Q3BqvU7ZEwjECQ=)
2: LDfTHZtgg9SpOLAcUCBkRkR9ae8.roa (hash: 1t3+l57Hcn09X5UH0bRoB4dCslxZncJ1ud+DZIleEeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:31:2d:68:fa:27:2a:97:1c:f5:55:56:ff:93:0d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00bf230044649c06d75e302c5175004dbfc67261
Validity
Not Before: Jun 30 11:01:43 2026 GMT
Not After : Jul 1 11:01:43 2026 GMT
Subject: CN=cdd122680343322a2ec0aa9f5bfa1feaf2838fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:40:a0:ed:7a:65:19:19:24:cc:18:c4:8a:0e:
2c:a2:c9:b4:a1:86:b0:97:4b:aa:80:1a:9b:15:ac:
4c:93:7c:37:e2:19:4b:6b:dc:50:6a:8e:60:ae:b8:
e2:12:2c:7e:69:5d:83:d7:4e:ae:7b:d2:00:ab:83:
55:ab:1c:7d:6e:36:8e:74:38:81:51:9c:a1:2b:a5:
e5:f7:e4:7e:9a:6e:8d:1e:01:19:4d:05:09:3e:5c:
32:ad:22:f7:78:97:db:34:96:9e:ff:4f:9a:ea:a2:
71:f5:dd:0a:4a:fb:1e:fc:02:ea:3f:1e:bb:6a:ab:
99:23:1c:96:66:af:ad:76:d1:73:06:f4:a3:96:6d:
2f:77:cf:be:8c:4e:13:66:51:95:79:95:b1:45:35:
60:29:e7:08:8f:21:7b:93:a7:7e:20:43:12:1f:3a:
80:ab:d9:6b:27:bb:52:6c:ca:92:da:be:bb:b4:3d:
bc:76:b3:d3:76:ef:65:0a:b8:55:23:3f:98:d1:1b:
5e:c3:d5:b7:b9:43:b3:d8:91:06:e3:cf:3d:9b:f3:
72:3c:ca:75:eb:22:55:13:ce:da:51:99:ea:f4:ca:
94:93:9b:f4:fc:71:25:35:3b:33:e7:ea:bf:da:20:
8f:f9:be:17:95:ac:de:47:63:d5:8c:14:39:ac:10:
10:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D1:22:68:03:43:32:2A:2E:C0:AA:9F:5B:FA:1F:EA:F2:83:8F:D7
X509v3 Authority Key Identifier:
keyid:00:BF:23:00:44:64:9C:06:D7:5E:30:2C:51:75:00:4D:BF:C6:72:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AL8jAERknAbXXjAsUXUATb_GcmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/d88122-deda-4fd0-9a67-6ef1d96813a2/1/AL8jAERknAbXXjAsUXUATb_GcmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:2e:1c:2b:ec:09:fd:e6:78:aa:f2:9f:56:be:71:97:13:3d:
e6:b2:62:96:7f:dd:58:7b:ec:6e:60:b2:0a:f8:ff:92:cd:00:
4f:6b:41:1e:88:e6:9e:8f:e9:a0:71:a5:a1:05:73:1b:f2:bc:
36:92:9d:f1:c4:21:32:eb:69:07:0e:55:6c:90:cc:33:a2:4b:
fe:b7:69:ca:63:5e:6b:68:b6:37:5f:c8:fd:e9:30:f9:58:f3:
f9:62:47:a1:6e:8e:9e:dc:11:39:7f:ca:b5:06:91:06:c5:a0:
b1:5c:76:5e:3d:3b:46:7e:0b:a2:9d:3e:2c:16:b5:ef:e0:1a:
96:70:67:e5:3c:10:ee:7e:d2:99:83:4e:43:fa:a9:a1:db:26:
90:58:4c:71:8b:88:41:c0:8e:eb:c7:81:41:e5:d4:ce:2c:9a:
13:30:fd:8f:2f:3f:5c:3a:23:c9:0e:3e:b7:15:b5:ec:08:83:
4a:54:3d:14:22:5c:76:69:b7:ef:fd:4b:9f:23:41:58:74:b6:
ce:52:0d:00:d3:a4:15:c3:0f:1c:71:59:92:ec:06:b6:55:b3:
d1:31:1a:5e:db:5f:d2:99:7d:0e:7b:88:41:98:5e:0b:a8:0b:
8d:93:83:10:0d:ba:7e:9b:1e:81:04:db:3a:93:5a:1a:e1:a8:
d9:4f:80:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:16:44 2026 by rpki-client