Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: nhguuV4Pe6OyVT9Pd75A9vdLoXpbl++3NfErtPp7nco=
Subject key identifier: 45:79:D7:1E:4F:50:DC:6D:AF:5D:92:00:70:0A:A7:A1:E4:6F:7E:CC
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 019CAB343515133753808E7A782537F26986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 1849
Signing time: Sun 01 Mar 2026 21:00:51 +0000
Manifest this update: Sun 01 Mar 2026 21:00:51 +0000
Manifest next update: Mon 02 Mar 2026 21:00:51 +0000
Files and hashes: 1: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: fZbm0O0PM4+3NiEjQJeyU7dA+Q30hZqbrgG/Q5K2gtc=)
2: oi4g4l999AP6onKm27Ed-wdQpPs.roa (hash: I8WiOuarlTLTaPl9Rt0sGmGw4q5pBrI5UJKZRMtdZkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:35:15:13:37:53:80:8e:7a:78:25:37:f2:69:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Mar 1 21:00:51 2026 GMT
Not After : Mar 2 21:00:51 2026 GMT
Subject: CN=4579d71e4f50dc6daf5d9200700aa7a1e46f7ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4d:1c:f7:b1:c1:66:6c:be:3d:a7:04:0e:b7:
4e:e8:92:1e:47:5e:d6:6a:bd:40:52:ba:0a:e1:52:
31:c1:02:23:52:ad:59:3e:bc:cf:22:9d:bc:e2:af:
f5:6d:0c:3d:8d:5d:81:33:ae:cd:c0:e4:42:c0:a7:
f2:3e:f7:b0:14:2e:52:5e:a2:b2:e0:e8:82:03:63:
8d:14:d9:64:d1:65:75:bb:43:b1:5c:51:ae:c1:82:
6c:dc:0d:e2:28:fd:ad:c0:ff:7f:b3:ac:47:3f:13:
0d:9d:5a:30:ae:9d:88:12:86:cc:bf:5e:e6:9e:8d:
13:8b:39:73:6d:de:41:8b:93:72:44:1e:37:74:5c:
56:36:0d:c3:1a:19:b3:4f:d1:e0:fe:b4:9a:d8:9e:
f6:47:76:4d:3c:e7:55:49:d8:96:1e:3b:5f:40:73:
54:12:80:3a:3c:b7:46:58:a6:0e:4e:4f:a3:cd:17:
d8:ae:c9:88:33:65:26:9f:74:19:30:2a:d3:52:be:
f6:51:1e:b8:c5:57:56:1f:d6:7d:cc:be:e2:3c:62:
74:83:65:54:4e:6d:4c:c6:8a:1f:87:5e:6d:a1:06:
00:95:35:e9:04:35:a5:de:cc:a9:9d:1f:00:9f:93:
1b:a4:2b:d8:71:70:f0:99:5b:b5:05:04:0a:12:3e:
f9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:79:D7:1E:4F:50:DC:6D:AF:5D:92:00:70:0A:A7:A1:E4:6F:7E:CC
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:af:8c:d7:16:97:53:b5:a5:58:99:90:86:8f:51:a7:fa:1d:
fb:fb:ae:c4:1f:fd:5e:04:83:3a:46:d7:a5:e7:e4:68:51:d9:
08:c6:1d:23:ce:a6:f3:4d:3a:61:b3:6c:d1:19:a0:b4:d9:1c:
84:ab:d5:c8:e6:68:55:e0:45:f6:40:1b:97:fe:5e:d0:da:49:
a6:32:07:15:aa:a8:2d:dc:0c:ee:77:95:99:ae:5b:0e:bd:dc:
4e:f6:6d:a0:96:6c:1f:d7:44:93:72:74:c2:b3:9c:89:31:38:
5a:a6:3c:c1:ec:5b:0e:10:29:f2:f6:f8:11:1e:5d:87:9d:c9:
4c:9f:ad:4c:19:e8:f0:e5:0d:33:3f:ba:39:d0:c0:42:cd:36:
27:25:d5:21:88:8b:c1:d0:07:64:d5:d9:c1:ce:34:17:b9:b1:
f4:59:5d:9b:69:82:27:1a:6e:aa:73:7d:a2:cb:5b:f6:48:49:
0b:f2:54:f1:03:eb:d0:38:04:2f:72:b7:7f:46:87:61:40:e4:
8c:6e:ce:59:80:ce:a7:13:4a:f6:94:65:08:41:76:3c:f6:24:
8b:8e:b9:b4:17:07:2d:d1:c4:e8:5f:04:45:19:ac:fb:91:d6:
a1:9c:d1:cd:94:6a:fc:e5:a7:b3:b1:d0:30:2d:87:4a:f6:a7:
52:66:16:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:56:57 2026 by rpki-client