Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: b2VqRc+3drVal4arV3vEWb8xKWLYnh6aIaA+s+HJCT0=
Subject key identifier: 12:B4:EA:19:48:AF:BA:51:1B:12:4F:05:36:C9:18:52:96:46:AE:7D
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 0196816B74DE4A01366AFB321310DC5B0B59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 1517
Signing time: Tue 29 Apr 2025 12:00:25 +0000
Manifest this update: Tue 29 Apr 2025 12:00:25 +0000
Manifest next update: Wed 30 Apr 2025 12:00:25 +0000
Files and hashes: 1: UITBZGotoEJu7VXUeHnQEpzUh80.roa (hash: +4A8vS2ImMKHLoBNzMFALbXMy6VYqIeTofj/Zphvx9I=)
2: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: QVxAN7FsVkpuOHQ9BbZLeb7lI1zrJ+YjHaUQ5oDLNGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 12:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:6b:74:de:4a:01:36:6a:fb:32:13:10:dc:5b:0b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Apr 29 12:00:25 2025 GMT
Not After : Apr 30 12:00:25 2025 GMT
Subject: CN=12b4ea1948afba511b124f0536c918529646ae7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5c:69:0d:28:ae:e9:94:d6:2c:8f:64:80:ac:
b0:ce:44:9b:f0:93:fe:37:d3:51:ab:78:75:7f:39:
cb:1e:79:c3:c2:eb:59:64:5c:42:b8:6a:c6:e3:9c:
6a:6d:e6:ff:ce:d3:17:70:3e:fe:11:c5:00:e1:7a:
a6:c7:49:f5:5b:53:a6:9b:32:4c:10:e3:71:46:cf:
6f:5c:18:0d:84:e8:21:ea:e7:8b:dd:da:7a:ee:a0:
74:a1:4a:54:5b:19:47:d9:13:58:28:d7:50:91:c8:
ea:05:78:be:9d:4d:f3:d6:0f:78:5b:b9:98:be:38:
5a:ee:f7:12:e4:cc:36:e5:3a:84:0a:97:82:44:f8:
7c:62:06:1e:e4:5c:42:17:7e:8e:36:c1:ff:14:fe:
68:6c:73:a7:0e:59:3f:f1:da:ab:26:dc:79:85:d0:
c8:37:2c:ed:6c:cc:db:38:df:64:0b:43:79:ef:e9:
79:84:fb:ba:6e:f2:4b:d0:de:41:8d:16:14:b3:96:
d3:32:e7:d5:4b:9b:56:99:08:ad:96:9e:b2:b2:47:
af:2b:85:b6:c9:96:9b:17:b7:1d:9e:32:7b:7d:9d:
01:1c:93:fb:b8:02:62:bf:93:bc:f2:a2:ff:60:2d:
72:e3:03:81:2d:35:9b:95:3b:01:c9:14:28:52:9c:
9e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B4:EA:19:48:AF:BA:51:1B:12:4F:05:36:C9:18:52:96:46:AE:7D
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:2e:25:e9:fa:43:70:6c:25:84:59:ac:17:4e:cc:37:67:55:
4a:87:19:89:54:52:1e:db:28:87:0b:df:61:fb:c9:be:95:19:
f9:54:1a:a4:d7:a3:de:ad:5f:ca:ac:bf:f4:4e:77:a8:55:2e:
eb:6e:a0:46:17:f4:14:f7:ce:28:b5:f8:43:25:80:c6:05:56:
15:4b:c6:50:31:93:42:8e:41:1d:50:a5:38:11:42:ea:19:6a:
b5:ca:e7:ff:f4:08:3c:b5:8c:bc:c0:cc:76:d9:2a:2c:9c:fe:
77:cd:03:28:46:c1:f7:60:7b:c1:16:d8:29:86:9d:f0:92:8b:
c3:e3:da:b8:b9:44:62:f1:3b:9d:93:02:94:bf:70:ef:bb:97:
4c:be:43:bc:ad:19:85:43:52:e1:df:5a:b8:aa:45:bb:9e:35:
70:0b:21:0f:79:7c:d6:30:9b:d9:59:96:03:c8:08:31:71:63:
4a:53:43:00:40:c2:22:95:07:da:dc:65:0a:31:a2:15:89:59:
3c:bb:a4:0a:e6:61:43:bb:51:b6:c1:1f:a7:d6:57:38:8e:2d:
2f:41:1d:64:89:99:86:c6:ac:d1:54:26:d1:96:ec:03:ad:6a:
4f:09:b4:2a:86:21:e4:87:7a:be:f4:7e:86:6f:96:39:a9:8b:
56:c2:6b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:40:53 2025 by rpki-client