Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
File: ALlD7lfDXyx_T-wGhel9YDsHytI.mft (raw, json)
Hash identifier: BfYT9x43iJjgCO8alqGA3fW6IOUxNnSj9teSV1tGllY=
Subject key identifier: 5E:00:5A:19:58:94:81:DD:53:59:34:74:08:01:50:09:58:BC:BB:85
Authority key identifier: 00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
Certificate issuer: /CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Certificate serial: 019E1D90BBCBD5D61AFF9AEDE945031722AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
Manifest number: 0CC8
Signing time: Tue 12 May 2026 19:01:24 +0000
Manifest this update: Tue 12 May 2026 19:01:24 +0000
Manifest next update: Wed 13 May 2026 19:01:24 +0000
Files and hashes: 1: ALlD7lfDXyx_T-wGhel9YDsHytI.crl (hash: tTgPwS7+BLZpLf2mYGC8OvFSNyMpme0Vxlp6yy65ydY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:bb:cb:d5:d6:1a:ff:9a:ed:e9:45:03:17:22:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b943ee57c35f2c7f4fec0685e97d603b07cad2
Validity
Not Before: May 12 19:01:24 2026 GMT
Not After : May 13 19:01:24 2026 GMT
Subject: CN=5e005a19589481dd535934740801500958bcbb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:e6:f5:ec:23:48:64:f6:09:fb:3c:12:af:
77:6a:4b:1c:e4:44:3a:c8:13:4a:5f:0a:c1:87:31:
e3:e7:2b:64:4a:9e:da:c5:59:46:4b:a2:fb:44:fa:
85:6b:00:cb:03:3f:d9:c3:83:a7:79:fe:8e:9b:e0:
25:50:a8:e8:54:20:1e:49:63:4b:67:9b:ef:2e:d0:
66:41:2c:ed:b3:52:73:3c:1c:e0:f2:48:dd:d6:fb:
86:14:93:da:72:4e:8c:f5:02:9a:1f:92:98:0f:87:
0a:3f:ef:da:e4:27:b1:04:fc:a4:a6:08:03:a3:e5:
36:01:5c:cf:11:71:1b:9f:fd:da:3a:d0:31:65:b6:
3c:a4:31:f3:6c:47:c4:a3:fc:aa:b0:da:4c:46:58:
65:6a:86:78:37:27:50:5b:56:c3:94:1b:37:07:00:
ff:5d:e7:7b:db:d5:4d:0e:a1:b9:a3:c8:ab:c0:57:
e9:31:37:2c:0d:0f:08:70:7d:d7:43:41:e5:93:80:
b2:b7:8f:74:83:3b:05:a5:2c:99:70:82:5b:9c:aa:
af:84:73:4a:ce:aa:9e:49:68:b0:75:7b:8d:56:7d:
eb:45:05:57:23:b8:15:47:df:39:5a:5b:7e:2b:58:
02:bc:df:2e:8b:04:b6:91:d2:58:eb:d8:7f:d9:e7:
ca:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:00:5A:19:58:94:81:DD:53:59:34:74:08:01:50:09:58:BC:BB:85
X509v3 Authority Key Identifier:
keyid:00:B9:43:EE:57:C3:5F:2C:7F:4F:EC:06:85:E9:7D:60:3B:07:CA:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALlD7lfDXyx_T-wGhel9YDsHytI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/48f09e-7386-4139-91c8-3c88e40e711c/1/ALlD7lfDXyx_T-wGhel9YDsHytI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:86:63:a7:92:2f:a3:fb:36:1b:1c:07:78:12:db:34:5f:f9:
2a:15:29:bf:a1:a5:7d:3c:63:0d:5e:d0:ce:81:4e:d8:0c:c0:
e2:d7:ac:37:f9:60:4d:39:23:29:c3:bd:01:c6:22:4a:2d:de:
aa:66:0a:7f:6b:48:7f:0c:ce:8a:7e:2b:02:d1:06:2e:63:f0:
23:a6:25:93:d4:e3:15:89:11:bb:d8:d5:be:89:c9:78:27:d1:
d4:40:c3:61:90:ad:46:4b:e2:14:d1:2b:fb:35:44:34:cc:9e:
93:47:5e:fe:4d:c3:d8:cf:2d:c3:f5:e9:c1:54:49:ab:5c:62:
88:84:f6:57:64:5a:43:17:1b:fc:3b:a4:32:5d:68:6b:bf:ff:
71:de:6e:1b:57:62:9d:2b:72:e4:74:b3:7d:5e:5d:d3:20:d7:
ff:a3:76:61:9c:d9:15:d6:05:7e:b1:07:49:ba:3b:88:a7:67:
5e:8a:33:78:8b:9f:ee:01:b2:a2:dd:69:af:c6:ed:1d:e2:91:
5d:2b:2c:a8:12:3f:c9:30:a7:7b:f2:d6:db:24:6b:91:a7:f4:
de:5b:85:94:68:11:e0:bb:e3:6e:25:d0:86:21:f1:78:e0:80:
3d:7f:3c:0a:a4:0b:e8:83:3b:fc:0d:d6:7d:8a:a3:ea:c9:51:
52:55:9f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:31:47 2026 by rpki-client