Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: pQDcyZR80Z/GCGzXGnAYdLXUO/PLrdlRYbzc7dR8ec0=
Subject key identifier: E4:4D:C4:26:9C:BB:47:32:33:C9:49:8A:F0:00:2F:CE:31:04:7D:AA
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 019D98BDB5C43523CAA344BFB2342C976966
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 00:01:02 +0000
Manifest this update: Fri 17 Apr 2026 00:01:02 +0000
Manifest next update: Sat 18 Apr 2026 00:01:02 +0000
Files and hashes: 1: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: WuX+ZFJRohlHBmzL6CzeVPe8MzPJTpkzxua1rkQvKTg=)
2: oi4g4l999AP6onKm27Ed-wdQpPs.roa (hash: I8WiOuarlTLTaPl9Rt0sGmGw4q5pBrI5UJKZRMtdZkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:b5:c4:35:23:ca:a3:44:bf:b2:34:2c:97:69:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Apr 17 00:01:02 2026 GMT
Not After : Apr 18 00:01:02 2026 GMT
Subject: CN=e44dc4269cbb473233c9498af0002fce31047daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:41:26:5d:9b:40:ff:96:4c:93:07:cc:2a:
4e:4a:c7:30:d8:9d:1e:54:b5:97:7f:e4:cc:2b:29:
b4:11:fc:9c:f9:46:d2:98:8b:2e:fa:18:cb:5e:94:
72:a9:a2:f0:f6:a5:20:7e:b3:be:9e:3c:11:56:0d:
54:c3:14:5c:62:59:70:7c:a6:40:35:45:42:a1:7e:
c0:33:e8:2d:7b:64:7a:f9:12:1c:d5:48:a1:5b:5f:
21:e9:c0:9d:dc:9e:25:23:e6:06:9a:78:41:13:93:
28:cb:9f:68:e4:3e:e4:04:62:4f:9a:2b:ff:89:60:
87:95:b7:a9:8d:4f:b5:bf:4e:40:bd:f0:2e:e7:66:
30:01:87:c7:6f:3b:0b:8c:04:50:39:29:37:1f:ef:
ac:95:17:8c:94:92:6f:99:41:93:ea:d9:91:fc:06:
1b:49:fe:55:52:c6:1e:9b:e0:b7:54:ee:74:1c:9d:
94:c7:b5:60:d2:fe:df:88:96:9d:cb:1e:58:a2:3d:
b7:dc:7f:a6:86:fc:96:2f:2b:1d:a4:8b:34:4e:bc:
ec:96:98:f5:c5:73:9f:9a:e8:b2:5f:af:93:5c:f6:
d1:78:74:5c:a8:5a:1c:9a:29:69:74:65:94:43:c1:
73:1a:6d:f8:d7:35:d0:cc:2e:d0:b0:18:90:b1:b5:
70:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4D:C4:26:9C:BB:47:32:33:C9:49:8A:F0:00:2F:CE:31:04:7D:AA
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5e:fc:87:81:e2:43:1e:e8:50:6e:41:44:69:2f:38:4d:3e:
6e:1f:09:e5:dc:5e:67:77:47:c8:dc:22:5c:d8:5f:b8:3e:51:
82:46:d4:05:ba:99:8a:33:1c:38:da:16:b0:11:7b:8f:3c:09:
e7:91:65:2b:31:7c:51:4b:02:0c:d2:c9:fb:33:68:8b:15:fa:
31:06:16:e1:17:43:38:a9:7d:3f:5b:4b:a9:18:b0:37:62:07:
63:e6:66:d0:11:7d:fe:f6:cf:c5:4b:83:83:73:cc:9f:1c:64:
76:7f:89:4c:28:b4:19:67:56:27:c3:54:df:87:45:39:9c:70:
0f:1a:a6:0f:e5:6a:86:87:33:01:1d:43:ac:ec:6e:b1:ec:0a:
bb:8a:e3:77:9c:3c:60:11:af:d1:5a:7b:97:fa:74:d2:db:16:
de:66:35:7c:6a:96:36:16:5a:46:44:5f:6e:76:6d:53:1b:e2:
68:75:a4:9d:66:f1:b0:6a:67:e5:7b:38:fe:e2:63:7b:c0:30:
a7:5b:57:ef:f8:76:87:e4:98:77:f9:ab:72:1b:cb:bc:f7:a7:
43:5f:cc:aa:e2:50:b7:f6:40:27:5a:99:d8:52:dc:47:77:66:
37:bd:28:77:0e:29:4c:1f:be:63:84:7c:78:3c:74:31:9f:4f:
b3:cc:9b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:03:00 2026 by rpki-client