Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: JwKieXirNcfgEELntsSvXXQMnmt8brDgsgedLx1MDk0=
Subject key identifier: 7D:A9:73:EC:22:EA:17:F0:14:C7:83:87:B6:59:8C:D6:30:D6:14:35
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 019A53E3F59566E596AD4A2F6F94DA310C0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 1712
Signing time: Wed 05 Nov 2025 12:00:39 +0000
Manifest this update: Wed 05 Nov 2025 12:00:39 +0000
Manifest next update: Thu 06 Nov 2025 12:00:39 +0000
Files and hashes: 1: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: ZoPIuAA1lZj3TbLbZNYKIcX7MdeOBfIqg4aFUKeS+qU=)
2: aUKOJrnyNsDVraosl-1-341781M.roa (hash: omnP8BEQZ4v0uR+9FGHR3kGU8+xYRsRiJd27fBInyzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:e3:f5:95:66:e5:96:ad:4a:2f:6f:94:da:31:0c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Nov 5 12:00:39 2025 GMT
Not After : Nov 6 12:00:39 2025 GMT
Subject: CN=7da973ec22ea17f014c78387b6598cd630d61435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:93:67:52:27:50:9a:0c:00:e0:c5:4a:93:3e:
76:0c:2c:5a:7f:3c:ab:ce:01:14:51:9a:54:a8:68:
b9:f4:fc:de:f9:4e:46:59:fa:64:20:36:9f:20:53:
4a:be:ba:a9:e0:22:5b:8a:98:a0:ba:3d:87:92:4c:
e2:4e:05:c1:6b:3f:87:92:2a:35:92:4c:ad:5d:7a:
89:90:9f:06:cb:f1:46:c8:fd:7f:0d:73:9f:4d:4f:
af:bb:f0:97:03:dd:c8:3a:44:f2:c6:cf:da:c1:d0:
ac:12:d8:05:2f:e1:30:98:c2:a0:f3:ee:f9:47:73:
7b:48:b2:1d:6c:66:17:c3:cd:3d:5f:11:9d:52:90:
2b:60:d8:7b:f1:bf:d9:56:14:31:ca:9e:64:27:42:
8d:af:81:d6:55:ac:08:05:04:82:af:7d:a9:5b:0b:
22:e4:26:f1:3a:cd:8e:bc:60:48:8d:06:34:15:a6:
5e:79:33:72:c0:43:cf:03:4a:79:9f:ee:eb:bc:f2:
c6:3e:fd:b9:4d:74:8c:96:51:9f:46:e0:cc:7a:b4:
e7:7e:1c:d7:50:c2:e8:62:30:64:e6:16:77:79:b1:
65:53:15:fc:8b:c6:97:b2:30:7b:3f:9c:85:a1:5e:
fa:02:99:86:c2:b2:1c:95:76:9d:cd:d3:23:f3:f9:
68:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A9:73:EC:22:EA:17:F0:14:C7:83:87:B6:59:8C:D6:30:D6:14:35
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:ec:a0:20:71:9f:1d:b4:a8:62:64:23:9e:53:e0:83:1b:49:
93:95:3d:d1:0f:60:ee:2c:9c:69:b1:08:e0:73:76:95:e3:8f:
92:ae:fd:37:02:ca:b2:ab:44:73:b2:bd:08:31:0b:c8:6b:15:
79:3e:19:b3:ff:e6:08:50:62:15:8d:90:ad:df:bf:86:79:69:
c6:9f:34:80:f2:00:c1:18:f5:02:b3:26:c1:42:c1:1c:eb:9c:
e7:2a:79:b5:fb:70:72:28:77:14:23:56:88:8a:55:81:a0:23:
f4:f2:ae:eb:3a:c2:aa:7b:54:b9:b9:b6:36:48:42:75:87:23:
9f:82:9f:46:68:ec:75:93:be:fc:48:8b:d2:a8:ae:e2:ee:7e:
c7:49:1e:82:dd:15:6f:88:2d:80:8a:80:c9:2f:70:d5:96:18:
87:93:2e:fd:55:0e:a5:6d:81:08:31:f5:25:19:e0:a6:f8:92:
b2:04:7b:3c:c2:cc:2f:d3:b1:0c:ca:e9:b8:a1:a1:5f:b4:05:
ff:41:fe:7b:f3:15:24:c8:5b:6c:58:1e:2b:dc:d9:ae:31:ad:
c4:21:ec:ba:80:b8:9c:52:3b:78:aa:48:b0:84:be:c4:52:68:
3f:d4:15:54:3a:63:7a:63:e4:7b:fe:00:f8:08:bf:79:fb:a0:
95:bf:8c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:10:25 2025 by rpki-client