Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: WPvpI3RUXbuDVSiC09h2ssknG9wQv1M/R6ysm68+fhE=
Subject key identifier: E5:3F:D0:2B:AF:4B:A0:84:C1:FF:09:B3:26:02:FE:4B:9D:C7:5B:B8
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 01984B53E05EF26ACD0C717CC871F2430E3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1603
Signing time: Sun 27 Jul 2025 10:00:44 +0000
Manifest this update: Sun 27 Jul 2025 10:00:44 +0000
Manifest next update: Mon 28 Jul 2025 10:00:44 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: Db71vC4J+BQLCk49bcw4qRwtSvKt6z3VhH4WDmpLR0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:53:e0:5e:f2:6a:cd:0c:71:7c:c8:71:f2:43:0e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Jul 27 10:00:44 2025 GMT
Not After : Jul 28 10:00:44 2025 GMT
Subject: CN=e53fd02baf4ba084c1ff09b32602fe4b9dc75bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cc:c4:2a:2e:4c:3f:b9:65:1b:11:46:23:c6:
fd:f0:7b:eb:fd:4f:1a:33:2d:53:6e:5e:17:cf:3e:
83:ea:0a:a5:c4:1c:f4:3a:c4:8a:19:7a:d4:1a:6d:
d3:98:61:cb:69:7e:0b:49:97:c5:e0:03:39:7b:53:
70:f1:ce:ff:c4:50:85:81:86:4b:04:89:85:b2:ee:
7d:ca:0c:22:33:0c:6b:f5:a2:92:8f:1b:33:9c:6f:
1d:a6:b9:e0:ea:f9:d6:bd:ce:f6:15:3d:54:6c:5b:
fe:09:75:df:75:3d:0f:bf:1a:c2:ed:d1:ed:b9:a4:
b2:ff:e2:2a:2a:a7:3d:c2:06:9c:f3:f2:55:a2:67:
f2:76:e5:82:5f:6a:ca:5b:a8:47:9b:3d:92:0f:d2:
bd:53:f2:ea:3d:d5:98:e7:e2:9a:84:8e:62:91:d5:
31:20:9d:13:4e:f0:a1:4b:de:b6:d3:af:f6:dd:06:
16:18:25:f3:7a:11:78:e7:31:59:a2:29:68:85:b9:
fc:b6:ef:1c:06:1d:c8:09:77:ba:e2:ca:63:35:19:
bf:c7:3a:e1:1f:a5:d3:15:d3:b3:6e:05:55:fa:9d:
0a:44:05:8d:7f:cb:ef:cb:ab:94:9b:0c:00:eb:4c:
10:99:38:ee:f0:66:de:2e:dd:0a:2c:db:ed:8d:f4:
ce:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3F:D0:2B:AF:4B:A0:84:C1:FF:09:B3:26:02:FE:4B:9D:C7:5B:B8
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c6:d9:65:15:37:d5:aa:4c:2a:5b:14:03:20:07:ff:03:3e:
cd:e7:65:47:4e:ab:be:b5:f7:77:e7:f0:7b:ef:19:3c:95:01:
3b:85:f1:27:54:9c:80:1c:79:28:d5:a2:82:dd:14:bf:80:f5:
56:02:1d:46:c9:39:51:d6:4e:ce:87:06:93:20:68:e0:8d:2d:
4f:50:98:cc:8b:ea:07:ef:6a:35:08:01:b6:c5:4f:f6:18:80:
bc:75:c8:5d:18:c1:e5:31:e4:f1:92:0a:11:66:f2:e6:90:ce:
6c:0e:02:e7:ac:d1:93:ac:bc:50:19:04:71:6b:e1:4e:12:fa:
88:09:a6:10:d7:b1:56:4a:ba:c6:c7:e7:03:58:bb:89:72:13:
c0:9b:d1:be:fe:c9:ca:ab:50:d9:cb:b7:52:5b:9f:68:bc:fd:
aa:65:d5:79:7a:a0:9b:49:1e:97:4d:c0:6d:2e:4f:3d:11:2f:
7b:56:14:e4:7b:40:0c:2a:65:de:d3:4b:ee:f1:7e:35:b3:fb:
87:e4:b6:fd:ce:d3:ae:78:87:3e:91:69:ed:a6:62:11:1b:51:
3c:57:af:f5:51:29:b0:43:9f:90:37:bc:e1:2d:b6:63:6d:4e:
36:8c:cc:96:ba:05:32:6c:88:3f:b4:48:55:d8:5f:61:87:d6:
db:9d:54:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhLU+Be8mrNDHF8yHHyQw46MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YmYxYzVhMjFjMzgyNWI4Yjg2NTE2YTFhNTk3MTIxYjU0
YjNjYzMwHhcNMjUwNzI3MTAwMDQ0WhcNMjUwNzI4MTAwMDQ0WjAzMTEwLwYDVQQD
EyhlNTNmZDAyYmFmNGJhMDg0YzFmZjA5YjMyNjAyZmU0YjlkYzc1YmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1szEKi5MP7llGxFGI8b98Hvr/U8a
My1Tbl4Xzz6D6gqlxBz0OsSKGXrUGm3TmGHLaX4LSZfF4AM5e1Nw8c7/xFCFgYZL
BImFsu59ygwiMwxr9aKSjxsznG8dprng6vnWvc72FT1UbFv+CXXfdT0PvxrC7dHt
uaSy/+IqKqc9wgac8/JVomfyduWCX2rKW6hHmz2SD9K9U/LqPdWY5+KahI5ikdUx
IJ0TTvChS96206/23QYWGCXzehF45zFZoilohbn8tu8cBh3ICXe64spjNRm/xzrh
H6XTFdOzbgVV+p0KRAWNf8vvy6uUmwwA60wQmTju8GbeLt0KLNvtjfTOIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOU/0CuvS6CEwf8JsyYC/kudx1u4MB8GA1UdIwQY
MBaAFGi/HFohw4Jbi4ZRahpZcSG1SzzDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2Et
NTVlYjViYjk5ZTQ1LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2EtNTVlYjViYjk5ZTQ1
LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjMbZZRU3
1apMKlsUAyAH/wM+zedlR06rvrX3d+fwe+8ZPJUBO4XxJ1ScgBx5KNWigt0Uv4D1
VgIdRsk5UdZOzocGkyBo4I0tT1CYzIvqB+9qNQgBtsVP9hiAvHXIXRjB5THk8ZIK
EWby5pDObA4C56zRk6y8UBkEcWvhThL6iAmmENexVkq6xsfnA1i7iXITwJvRvv7J
yqtQ2cu3UlufaLz9qmXVeXqgm0kel03AbS5PPREve1YU5HtADCpl3tNL7vF+NbP7
h+S2/c7TrniHPpFp7aZiERtRPFev9VEpsEOfkDe84S22Y21ONozMlroFMmyIP7RI
VdhfYYfW251UHQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 11:55:55 2025 by rpki-client