Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: fBZ4mwqEI9/XE/IEx5NTighfrwLioG7cHPVj3a5bnXI=
Subject key identifier: 1F:CA:33:F6:E7:5D:9E:CF:52:56:1C:44:3B:85:34:89:66:E2:D3:5F
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019875D10DC0564EDB39B6F486BCE972815F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 16:01:31 +0000
Manifest this update: Mon 04 Aug 2025 16:01:31 +0000
Manifest next update: Tue 05 Aug 2025 16:01:31 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: AKZIi/ChhOUDbdVaOkmep/P+7CgL0rSk5dO+k7v4u+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d1:0d:c0:56:4e:db:39:b6:f4:86:bc:e9:72:81:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Aug 4 16:01:31 2025 GMT
Not After : Aug 5 16:01:31 2025 GMT
Subject: CN=1fca33f6e75d9ecf52561c443b85348966e2d35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:59:0b:48:11:98:5f:1f:cc:8c:3d:81:43:d8:
06:fd:bd:c6:7b:81:87:df:ba:d2:8b:f5:2c:63:bd:
92:61:5f:fe:28:14:4d:aa:6c:4a:8d:4c:7d:72:83:
b6:72:62:e0:b8:91:fc:87:65:3b:86:86:10:10:19:
d0:2b:8c:f1:2d:b6:11:4f:96:f3:20:8d:f8:1b:8b:
89:72:49:8a:b3:ba:2a:ee:61:bf:31:1c:58:88:99:
1a:f7:32:76:68:1d:0b:3b:e6:06:01:b1:43:29:b3:
f0:c4:39:6c:4a:68:b5:6e:f7:e1:ba:9d:8a:2b:28:
82:58:79:47:55:d4:b5:6a:de:28:cc:d7:f9:c1:be:
ce:9d:9a:51:0f:56:e4:89:65:62:7b:1b:92:61:70:
46:a7:ad:66:48:5a:7c:93:03:ef:76:92:10:d2:1b:
44:b8:90:51:d1:7f:fa:90:03:cc:0f:1f:14:98:b8:
3b:37:cb:0d:a2:00:5d:89:5c:74:6f:85:ad:e5:48:
29:65:77:2d:3d:e9:1b:a8:b0:99:a6:f7:55:6e:ad:
6b:ee:88:d5:18:66:d5:29:3d:a1:68:2e:51:b9:26:
41:c3:8e:12:bc:a2:32:84:e8:93:73:78:83:21:eb:
73:8e:04:0b:07:e5:a8:d7:a1:ca:e4:61:d4:65:a9:
d4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CA:33:F6:E7:5D:9E:CF:52:56:1C:44:3B:85:34:89:66:E2:D3:5F
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d4:a5:c0:b3:7f:ba:aa:a1:40:7d:6b:bb:c4:28:f0:3a:5d:
6a:30:c4:67:06:86:27:64:a5:ed:c3:87:1b:21:10:1c:10:7e:
f4:0e:59:9e:a3:e0:93:59:6b:2c:42:20:21:8c:d0:58:e0:bf:
2d:1a:a8:d5:5e:8e:c1:9e:65:10:5c:18:1f:9e:58:c2:ca:69:
ba:b6:e9:db:8e:fa:3e:8a:3b:83:fa:f7:f1:74:4c:3e:ff:ef:
ca:9c:bc:3f:27:b8:1e:a0:73:57:11:41:1a:fa:16:56:34:7f:
09:22:54:ce:88:d4:cc:13:72:37:18:0c:2d:e8:9c:84:a9:96:
f1:e1:a3:70:44:29:e2:6c:b0:03:ac:04:fe:4d:a5:bb:aa:e0:
59:9d:7e:ea:04:14:2f:fd:19:f3:a2:10:73:fe:9f:79:61:5b:
87:9b:2c:51:06:f9:69:fc:a4:00:51:00:19:44:79:d4:2c:34:
09:06:d5:4d:5d:74:3d:e7:52:16:a7:fb:b5:69:4e:c0:05:f4:
1c:7b:a6:a2:5d:82:cd:1e:1d:64:bf:0b:a6:2a:e7:69:d1:22:
2d:cb:dc:28:cf:e7:10:ae:62:1d:92:b0:e2:10:1f:ea:fa:3e:
5d:36:bd:7d:59:83:58:a6:4b:b7:1c:6d:97:5f:f2:71:9e:02:
7e:9a:de:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:36:59 2025 by rpki-client