Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: wqlKcyErCs3P3eEDjJCjRLUFPXyR8ELaZif9pFTEoRI=
Subject key identifier: 5D:88:D0:49:31:A6:19:20:43:CE:12:79:E5:D6:D7:27:F9:5C:38:E0
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019A71B8DEE524729003C23FCD5FF7E52550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 07:02:12 +0000
Manifest this update: Tue 11 Nov 2025 07:02:12 +0000
Manifest next update: Wed 12 Nov 2025 07:02:12 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: cMKzFCrh15eEzKOSpsGtAZh4AZqvGYBtfmouCbfUw3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:de:e5:24:72:90:03:c2:3f:cd:5f:f7:e5:25:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Nov 11 07:02:12 2025 GMT
Not After : Nov 12 07:02:12 2025 GMT
Subject: CN=5d88d04931a6192043ce1279e5d6d727f95c38e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3d:6d:aa:a8:05:a2:da:39:41:f9:0a:17:91:
d0:bd:f0:7c:ef:49:d0:11:de:23:8d:a6:d8:cc:ea:
a6:ad:bd:89:6b:c6:20:10:b2:b1:28:4e:dd:03:0f:
53:2d:8b:38:d4:15:56:23:3c:e8:62:63:96:f3:01:
17:e1:1b:21:18:62:a7:be:f3:27:65:d6:a3:c5:49:
32:1f:e8:de:cf:a9:8c:39:e1:2a:2a:6a:1e:94:88:
a0:c3:e8:18:a0:72:fa:7d:e7:35:1b:d7:54:4b:5f:
82:d0:b3:b0:ce:1d:67:f3:74:2c:03:f8:1c:d7:7f:
62:0d:37:14:bc:16:31:ae:85:b6:52:08:8e:ce:b6:
7b:e5:cf:9f:1e:93:f2:f7:e5:f8:33:8a:b7:a5:71:
8f:64:ba:5e:8f:b0:61:0a:6c:6e:96:83:74:d0:4f:
08:f7:13:4a:72:3d:22:64:e1:6c:75:58:3a:d4:c0:
b2:3a:95:36:7e:4e:f7:c5:ea:04:0a:83:56:25:09:
a2:16:dc:ec:a5:6e:4b:6b:b3:7c:c6:89:2b:73:c4:
2d:c1:ff:34:3c:a7:1c:b4:51:9d:8a:95:2c:42:b6:
65:54:8b:b6:e1:ab:6e:23:ce:9e:ad:32:06:8d:2d:
f7:d7:e0:f5:bf:13:d9:11:e9:2e:ac:16:52:fb:aa:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:88:D0:49:31:A6:19:20:43:CE:12:79:E5:D6:D7:27:F9:5C:38:E0
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:20:af:17:22:fb:04:ad:43:da:67:7b:33:a2:b8:7f:1a:26:
2f:a4:86:0b:63:2f:e2:4d:11:3c:8b:00:2c:be:3c:3f:45:5d:
8a:35:c2:e7:25:a7:ec:df:ec:ab:b7:1f:f5:85:a5:76:d0:24:
9f:dd:7a:3d:06:07:d7:be:04:7c:a1:4c:80:b6:aa:36:f8:ba:
37:0b:36:74:7c:4a:1e:94:e3:db:a9:11:cd:a9:f7:c3:de:11:
b9:56:df:61:96:82:83:c3:99:ff:f1:3a:55:16:e1:06:9c:c4:
29:b3:b1:78:33:be:9d:69:54:3e:1e:6b:58:58:f8:ec:27:f7:
71:5a:04:fa:c0:7a:a2:9c:d1:1f:80:16:ab:29:e1:1f:47:ed:
18:f7:5b:19:2c:21:7c:33:a6:f3:eb:d9:25:29:b4:28:3e:fd:
de:82:e0:fd:1d:49:72:a8:3d:44:43:45:29:bc:00:65:be:d7:
04:06:d5:ef:51:de:83:b4:d1:f8:e3:57:c7:7d:ef:dd:cc:29:
6c:06:20:6a:40:e8:4c:9f:9f:d0:35:4d:00:7c:12:29:a7:f3:
26:01:e4:0a:81:d1:f6:f6:2b:b0:e2:01:78:27:ee:fe:2d:71:
e0:42:5f:78:6d:e3:a9:23:7b:cc:2b:10:76:8e:2e:4f:20:9e:
2b:8e:46:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:02 2025 by rpki-client