Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: Wytsar6Ox9Ll57rinTpCXFyrCfhTiKe0SA3SVcZQUC8=
Subject key identifier: 11:AD:9E:E2:8B:EF:DF:17:2D:DD:5C:8A:F6:7D:BA:2A:35:26:9A:2A
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 019776AE41C360B09489404EB1B82C7919BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 1596
Signing time: Mon 16 Jun 2025 03:00:20 +0000
Manifest this update: Mon 16 Jun 2025 03:00:20 +0000
Manifest next update: Tue 17 Jun 2025 03:00:20 +0000
Files and hashes: 1: UITBZGotoEJu7VXUeHnQEpzUh80.roa (hash: +4A8vS2ImMKHLoBNzMFALbXMy6VYqIeTofj/Zphvx9I=)
2: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: IFNZrt9VzaJzZpnQpwmGE3f6PR3Y2F3FGSlTEtKIjys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 03:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:ae:41:c3:60:b0:94:89:40:4e:b1:b8:2c:79:19:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Jun 16 03:00:20 2025 GMT
Not After : Jun 17 03:00:20 2025 GMT
Subject: CN=11ad9ee28befdf172ddd5c8af67dba2a35269a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4b:d6:85:6d:ff:e9:21:e0:82:78:9a:fd:c5:
eb:42:4f:13:88:ae:4c:5d:96:df:1a:59:d5:a8:ed:
b1:4c:a1:47:3c:11:ef:be:1e:4a:dc:d7:d8:ac:97:
ea:2a:86:1f:31:dc:90:5a:dd:9d:17:9c:67:d0:14:
ca:fd:91:b9:87:61:5e:3b:3e:d2:ce:b7:18:ba:f9:
70:00:dc:87:99:61:c7:7f:fd:d7:1e:5d:c9:9e:3e:
21:b9:34:4c:14:3e:96:18:8f:3d:95:dc:e9:4b:f7:
55:cb:23:06:05:b6:db:ec:72:5d:8a:7b:7c:a7:4a:
a6:ca:55:59:0e:8b:6d:db:1a:55:06:4f:a9:c2:c7:
92:62:ec:86:4b:3e:e1:5c:41:23:89:72:59:9c:75:
b4:7a:57:54:bc:00:59:2f:61:ec:3e:69:0a:59:58:
18:b4:c6:82:25:47:7d:52:2d:f3:62:06:61:8e:8d:
d4:72:51:d0:f7:ff:30:5f:58:64:16:04:eb:a3:c5:
92:33:5a:55:aa:bb:00:79:32:82:f7:86:48:d5:62:
8b:48:e5:66:33:ee:93:83:d6:e9:53:bc:07:0e:8e:
75:48:0e:52:2e:f7:eb:4d:35:67:83:e2:e3:db:29:
d0:94:ce:dc:27:85:c3:8b:8c:21:91:81:24:de:52:
0a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AD:9E:E2:8B:EF:DF:17:2D:DD:5C:8A:F6:7D:BA:2A:35:26:9A:2A
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:95:fc:8f:af:79:8a:bc:d3:92:34:75:7e:fe:42:2a:94:67:
7e:fd:c6:2a:f2:0b:d1:93:89:57:d7:8a:9d:00:e0:b7:07:01:
9f:15:55:c9:ef:84:ee:ab:b1:69:1d:dd:15:66:a2:77:2d:2f:
a3:0a:ef:28:3b:fb:66:bb:64:f9:be:d9:d0:92:60:1d:1e:f2:
0e:58:37:a7:01:81:82:69:ae:42:47:73:85:05:8f:d1:89:82:
9c:00:57:c3:f5:80:84:fe:6e:43:a5:a4:d7:5d:ab:b3:db:94:
42:60:f5:32:59:e2:bc:46:6e:61:34:1b:73:95:57:6f:e5:e4:
9f:46:9e:b9:15:b1:fa:a4:0d:54:8a:e2:b4:29:cf:f9:7d:0c:
43:c5:3e:7a:3a:af:68:cf:95:50:52:cf:3f:2e:5b:58:87:d9:
a7:cc:5d:f7:81:af:2f:dc:fb:51:d0:f5:fa:2b:bf:2f:4c:ea:
40:63:69:95:ac:d4:e1:9c:93:22:ba:c9:53:cf:93:df:bd:6c:
84:78:b5:39:a9:a1:7c:52:81:70:83:96:80:15:0a:8c:a0:68:
e2:24:36:ea:65:b9:76:61:68:30:8b:e0:f7:f0:89:dc:72:e4:
00:a5:05:08:64:b8:de:de:a1:8e:05:63:17:ab:1a:95:c4:ce:
e6:ff:30:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd2rkHDYLCUiUBOsbgseRm9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YmQzOWQ3OTMxMjVjNjg0ZGZmMjcyZjg4NjIyYmFjNDMy
MTgwZjAwHhcNMjUwNjE2MDMwMDIwWhcNMjUwNjE3MDMwMDIwWjAzMTEwLwYDVQQD
EygxMWFkOWVlMjhiZWZkZjE3MmRkZDVjOGFmNjdkYmEyYTM1MjY5YTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlkvWhW3/6SHggnia/cXrQk8TiK5M
XZbfGlnVqO2xTKFHPBHvvh5K3NfYrJfqKoYfMdyQWt2dF5xn0BTK/ZG5h2FeOz7S
zrcYuvlwANyHmWHHf/3XHl3Jnj4huTRMFD6WGI89ldzpS/dVyyMGBbbb7HJdint8
p0qmylVZDott2xpVBk+pwseSYuyGSz7hXEEjiXJZnHW0eldUvABZL2HsPmkKWVgY
tMaCJUd9Ui3zYgZhjo3UclHQ9/8wX1hkFgTro8WSM1pVqrsAeTKC94ZI1WKLSOVm
M+6Tg9bpU7wHDo51SA5SLvfrTTVng+Lj2ynQlM7cJ4XDi4whkYEk3lIKyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBGtnuKL798XLd1civZ9uio1JpoqMB8GA1UdIwQY
MBaAFGi9OdeTElxoTf8nL4hiK6xDIYDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy80MjRiOTQtZTcwMi00YjIyLWFlMmUt
MDg5MDUyMGI4ODQ2LzEvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy80MjRiOTQtZTcwMi00YjIyLWFlMmUtMDg5MDUyMGI4ODQ2
LzEvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPZX8j695
irzTkjR1fv5CKpRnfv3GKvIL0ZOJV9eKnQDgtwcBnxVVye+E7quxaR3dFWaidy0v
owrvKDv7Zrtk+b7Z0JJgHR7yDlg3pwGBgmmuQkdzhQWP0YmCnABXw/WAhP5uQ6Wk
112rs9uUQmD1MlnivEZuYTQbc5VXb+Xkn0aeuRWx+qQNVIritCnP+X0MQ8U+ejqv
aM+VUFLPPy5bWIfZp8xd94GvL9z7UdD1+iu/L0zqQGNplazU4ZyTIrrJU8+T371s
hHi1OamhfFKBcIOWgBUKjKBo4iQ26mW5dmFoMIvg9/CJ3HLkAKUFCGS43t6hjgVj
F6salcTO5v8w9Q==
-----END CERTIFICATE-----
Generated at Mon Jun 16 13:27:06 2025 by rpki-client