Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
File: ASAlltXOzjfcNMhhBkV4_G2qXoY.mft (raw, json)
Hash identifier: jMcusHpgbm3JMtQTA6htx0rZoO41f4hY2KXtzwJFN7E=
Subject key identifier: 02:D7:00:A2:0E:73:4D:42:51:9E:08:80:F8:62:12:53:A2:31:CC:24
Authority key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
Certificate issuer: /CN=01202596d5cece37dc34c861064578fc6daa5e86
Certificate serial: 019E1CEC0674501CA550337EE5D8B087CBE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
Manifest number: 0DD0
Signing time: Tue 12 May 2026 16:01:30 +0000
Manifest this update: Tue 12 May 2026 16:01:30 +0000
Manifest next update: Wed 13 May 2026 16:01:30 +0000
Files and hashes: 1: ASAlltXOzjfcNMhhBkV4_G2qXoY.crl (hash: r1UTPLRQoOChlkeOywae6eD4kGT3tJabJwIw1UN7wT4=)
2: rlozkrq9ZzNHCZUtQGPTzboWxmI.roa (hash: +ky2eseP0hm1lozQb5MU58tNSrjncRM2hPrTaQ0J6cY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:ec:06:74:50:1c:a5:50:33:7e:e5:d8:b0:87:cb:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01202596d5cece37dc34c861064578fc6daa5e86
Validity
Not Before: May 12 16:01:30 2026 GMT
Not After : May 13 16:01:30 2026 GMT
Subject: CN=02d700a20e734d42519e0880f8621253a231cc24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ac:73:0c:60:e9:eb:e7:0c:4d:20:e5:4b:d2:
4c:1e:cb:7a:d5:0b:8f:b8:e5:51:7c:9e:91:0a:58:
1b:c2:9b:63:26:1c:55:7b:05:f2:e1:d5:d1:35:f7:
4a:8f:49:58:40:29:68:e9:fe:cc:d3:ba:cf:34:b8:
55:61:88:29:a4:55:2d:e2:60:8f:de:a4:6f:6e:3c:
65:9f:42:00:97:26:b7:fa:46:6f:be:e7:ec:f2:d6:
6c:04:91:cf:2c:a1:6c:82:94:a3:97:0d:3c:d6:a4:
69:1c:85:4f:58:48:49:6c:da:30:41:9d:79:5a:98:
dc:2b:53:13:18:58:10:ed:4e:0d:91:a4:9a:28:65:
1a:7e:c8:94:03:61:73:43:a4:f9:2a:21:08:8a:8e:
3b:ea:55:f9:aa:0b:bf:1f:c3:f8:ec:23:0d:da:4b:
c1:0e:bc:52:3d:c0:61:0a:3c:41:a6:d2:f9:07:78:
cf:a4:32:aa:e6:b9:aa:82:66:5f:32:19:24:40:77:
36:83:e3:74:8d:81:81:e2:f2:67:da:89:0b:db:06:
74:bd:b7:65:13:60:e3:3f:14:42:6e:74:81:82:64:
4e:1c:ae:c1:c3:06:cf:cb:db:1b:4e:27:7b:11:5d:
4f:5c:1a:54:fb:52:41:8e:91:79:11:96:07:2a:eb:
f7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D7:00:A2:0E:73:4D:42:51:9E:08:80:F8:62:12:53:A2:31:CC:24
X509v3 Authority Key Identifier:
keyid:01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:19:8f:a0:96:57:7d:c1:e7:1f:f7:40:82:2a:15:f5:28:9b:
c6:14:22:59:6b:fa:b6:0d:fd:1f:d0:e4:46:29:f8:b4:ff:3a:
6b:22:72:27:6d:7e:9e:42:3b:3c:c3:10:1e:21:78:15:02:b4:
b6:db:f8:c7:a4:6d:32:c5:5b:dc:df:0b:aa:14:10:a9:d7:64:
f6:66:49:ef:17:84:f1:81:6b:6a:b8:af:51:40:39:3b:cc:cc:
57:3b:9d:56:d6:bc:9d:4c:89:85:33:bf:93:8d:36:43:3f:e9:
cd:97:39:94:ad:82:88:31:7d:cd:eb:1e:2a:73:6e:83:e5:11:
cd:8c:31:cd:06:17:cb:81:01:b5:ab:62:6b:da:94:b8:ec:46:
76:bb:a7:55:f6:3a:72:83:40:2c:6d:0d:89:70:d9:d8:94:5f:
b1:c8:10:be:e6:d4:ea:52:e1:e2:78:43:c5:08:b0:00:c6:1e:
9a:9a:e8:1f:0a:2d:c0:b4:85:29:27:90:86:c8:be:f1:10:57:
c8:8f:03:cf:3e:1d:56:15:c3:4a:c8:1b:5e:ad:86:94:06:98:
08:19:ce:da:13:f3:e8:2a:54:0f:0d:94:74:fb:6e:1e:2f:ca:
6c:b0:40:7b:5a:e8:6a:ed:70:36:07:03:cc:8d:74:8c:fc:03:
1c:2f:de:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:31:21 2026 by rpki-client