
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
File: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft (raw, json)
Hash identifier: 9Ais0zp2op8TxnDirLehH3TQMr9mfHlYZFgaHBqX1KE=
Subject key identifier: 16:D8:90:93:97:5E:08:59:EC:93:A4:95:93:E3:B2:91:D3:BC:02:80
Authority key identifier: 68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA
Certificate issuer: /CN=6809515d093644678703c024d92014c532f316ea
Certificate serial: 0199FEB4D64F5EB1F387A990DCAA32DFB18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
Manifest number: 12E2
Signing time: Sun 19 Oct 2025 23:01:28 +0000
Manifest this update: Sun 19 Oct 2025 23:01:28 +0000
Manifest next update: Mon 20 Oct 2025 23:01:28 +0000
Files and hashes: 1: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl (hash: lCc62RRWKnsEy8K+nFkRQ2T2GVWumzb33EJi/9h3Rts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:d6:4f:5e:b1:f3:87:a9:90:dc:aa:32:df:b1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6809515d093644678703c024d92014c532f316ea
Validity
Not Before: Oct 19 23:01:28 2025 GMT
Not After : Oct 20 23:01:28 2025 GMT
Subject: CN=16d89093975e0859ec93a49593e3b291d3bc0280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0a:4f:77:8c:cf:90:8f:4c:48:70:46:9f:c5:
d1:22:c5:16:32:58:fe:b2:6a:c7:98:8a:6d:0e:19:
ce:5c:c4:b9:6e:cd:69:a1:29:52:01:9f:cc:b4:bd:
b2:67:68:b5:9a:e2:09:94:fd:ef:ed:92:74:1f:d6:
c1:1e:77:6d:f6:86:3f:1a:63:cc:3d:19:47:8a:f2:
cf:33:ec:65:b6:c5:a5:bd:c3:9d:84:a5:16:fc:28:
79:a0:75:70:78:62:67:5e:88:d6:7a:16:66:0f:4f:
86:76:7a:af:35:58:f6:eb:1d:65:54:e1:04:77:52:
e9:16:4e:62:08:1f:38:9a:49:61:79:9a:50:12:13:
a9:a3:50:e4:15:40:2e:f4:a8:64:c6:35:98:b9:86:
94:fe:62:ef:71:24:55:47:6a:19:59:f7:01:07:0d:
50:24:da:78:db:0d:97:f5:3a:49:1e:af:00:b2:d2:
8a:d9:7f:97:11:61:94:51:62:b7:eb:b1:f3:14:4f:
82:1d:72:1d:a5:32:52:a0:06:94:63:84:59:84:05:
79:69:94:85:57:ab:b1:8d:a7:25:fb:66:f1:dd:c5:
c6:1b:9b:b8:21:66:95:a8:e7:7e:1b:32:42:2c:e7:
36:17:16:48:32:72:d7:09:8f:23:9f:5f:6e:83:3e:
0c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D8:90:93:97:5E:08:59:EC:93:A4:95:93:E3:B2:91:D3:BC:02:80
X509v3 Authority Key Identifier:
keyid:68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:e2:ed:e9:36:3c:0d:55:a1:b2:8b:2d:94:5d:4b:84:bd:c6:
06:f9:b8:f2:a2:f4:f3:41:8f:bd:ab:4c:72:5b:b0:a4:4c:ba:
d8:09:be:80:e1:18:d3:c1:0a:87:2c:a7:80:8f:0c:7d:b9:da:
02:86:d0:a9:07:7d:f5:7b:ff:13:a2:dd:1f:db:58:56:61:18:
1f:4c:f4:20:ca:f4:13:65:d4:57:5a:3c:4e:75:d0:66:5f:bb:
20:84:44:a5:cb:30:45:0e:4c:fb:3e:c7:d9:0b:8a:8e:15:20:
5e:45:86:12:f2:58:20:af:78:c8:f1:e7:98:7b:27:2e:86:35:
6b:c1:b1:fb:d2:e0:ef:36:5d:bc:06:d7:8f:46:f0:76:f6:70:
20:f2:c2:7e:8e:d6:ae:4a:06:31:94:a3:7c:89:76:52:85:70:
fb:91:44:90:e0:2d:f6:6e:05:07:fc:25:c0:80:95:9f:6a:d0:
7a:f1:7c:fe:84:4c:ad:e2:7d:02:56:1f:00:57:60:cc:8f:11:
96:d2:8e:86:67:c2:57:94:d8:e7:eb:67:aa:a3:8e:f6:82:9a:
43:f6:a5:f2:21:92:12:12:89:2a:20:74:c8:09:c2:5c:78:58:
56:03:d3:d1:9a:fc:95:26:1f:52:19:a2:15:16:9a:19:be:34:
93:46:c8:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:43:50 2025 by rpki-client