Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: jna+8mvxdlpKXP+ipiKN3ALJkKS/Vl67hjJg+/XZwNQ=
Subject key identifier: 90:AD:87:15:EB:FB:23:B2:89:B5:16:24:F6:EF:47:E5:FE:E3:08:0D
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 019881685CD5A6B8DB824C754519E2CC340D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 1620
Signing time: Wed 06 Aug 2025 22:02:37 +0000
Manifest this update: Wed 06 Aug 2025 22:02:37 +0000
Manifest next update: Thu 07 Aug 2025 22:02:37 +0000
Files and hashes: 1: UITBZGotoEJu7VXUeHnQEpzUh80.roa (hash: +4A8vS2ImMKHLoBNzMFALbXMy6VYqIeTofj/Zphvx9I=)
2: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: 6dZqQk+AEo4Vkfi+b2eXJIh9CBolS2/ZAfW5GMLJwTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:5c:d5:a6:b8:db:82:4c:75:45:19:e2:cc:34:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Aug 6 22:02:37 2025 GMT
Not After : Aug 7 22:02:37 2025 GMT
Subject: CN=90ad8715ebfb23b289b51624f6ef47e5fee3080d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:75:be:c5:b2:e3:e2:1b:10:c8:80:bd:fd:a9:
d7:ad:e6:8e:99:97:bb:86:18:49:fc:0d:92:16:ac:
86:3f:83:00:b7:b1:3f:ac:66:18:43:a4:55:b8:72:
c0:24:13:01:aa:5a:ca:b8:c5:16:68:a8:99:ba:90:
7f:d2:96:40:79:f3:cd:e4:d5:f8:df:26:b8:14:c5:
e8:b3:90:a4:e5:2b:7f:f5:fd:0c:ff:9d:6a:fb:ed:
09:e0:5b:12:85:dc:93:80:d4:2e:d3:86:a8:d8:fc:
b6:b9:b6:35:e7:9d:42:be:95:8d:42:4e:3f:e9:32:
e3:cd:c3:8d:ec:3d:5b:81:2e:5d:12:5d:26:9b:af:
03:66:4f:73:0c:76:08:0e:25:74:d8:7d:c5:4e:ad:
cf:1e:d0:de:86:1e:43:eb:20:1a:c7:6d:19:c3:07:
46:a3:fb:19:d6:e4:88:ed:e5:48:3a:ea:a5:3f:94:
1d:e1:9c:e5:e7:da:76:ed:83:a5:56:d0:a5:89:1d:
36:51:df:ac:0d:bd:1b:b0:bd:71:19:a1:c5:ce:21:
94:2f:8c:e8:1c:62:2f:24:c7:9e:a9:58:bd:1d:bd:
d8:2d:10:e8:4b:ac:dc:47:53:44:4a:a4:d7:48:8e:
f0:25:e6:88:ae:da:67:1a:fe:4b:9f:0e:c2:1a:21:
2f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AD:87:15:EB:FB:23:B2:89:B5:16:24:F6:EF:47:E5:FE:E3:08:0D
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ce:60:ae:8f:23:cf:c2:b1:15:ef:2c:a9:f9:20:75:54:e3:
64:d8:4c:9b:15:13:b1:a2:62:da:03:ba:fc:4f:ed:94:ea:a7:
6e:4d:ec:09:5c:3a:91:0d:4c:c6:9c:2c:1e:43:75:43:83:de:
4f:f3:7d:83:d3:25:3d:0b:4f:c8:11:3d:59:51:e9:1b:6d:16:
dd:dd:94:5e:2b:f4:3d:51:98:61:b3:65:29:d0:5b:3b:d7:15:
b5:08:43:58:ea:e3:32:42:d9:4a:f3:88:10:f4:57:7a:83:e8:
76:a6:84:dc:bc:92:a9:e2:e8:f8:f3:2f:71:49:cb:2d:ef:cd:
e1:62:df:41:12:f0:b0:8e:0c:23:97:21:73:ba:83:df:69:f8:
47:23:a8:ba:5c:c7:ea:22:b2:7c:09:d6:6b:8c:b6:69:b6:17:
95:8d:09:2e:da:e7:34:19:45:a0:dd:0f:4a:fb:0a:8a:01:6b:
66:f2:d5:4d:60:c8:7b:d7:31:e1:8a:79:3e:98:ad:a3:9d:f9:
68:3d:01:a8:f3:01:3e:ce:bf:01:d7:6d:e8:03:58:c3:38:d1:
50:40:a1:83:e2:15:ff:b2:1c:6e:29:85:b3:e0:c6:e7:72:eb:
8a:ec:76:ed:12:68:4a:b1:78:e2:7f:b6:39:00:27:39:02:f3:
31:8f:6f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:26:07 2025 by rpki-client