Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: OR4MQpK6CFCp+kdrwx0ouQklIA1U2+f9lnlSP/Ovz54=
Subject key identifier: 18:42:CF:2E:93:7E:45:F2:96:7A:F2:88:CD:4B:F2:0B:ED:FF:2C:4B
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 0199FDD9E46B66818D97EC7AB98D3E82F11B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 19:02:19 +0000
Manifest this update: Sun 19 Oct 2025 19:02:19 +0000
Manifest next update: Mon 20 Oct 2025 19:02:19 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: noeNPd1+cMJoVjtbJoNK+iinRt1QrKWRLhPIyCtqpuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:e4:6b:66:81:8d:97:ec:7a:b9:8d:3e:82:f1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Oct 19 19:02:19 2025 GMT
Not After : Oct 20 19:02:19 2025 GMT
Subject: CN=1842cf2e937e45f2967af288cd4bf20bedff2c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:87:97:c4:63:02:9a:4e:a7:6b:24:fc:68:16:
81:0a:a3:7e:1b:50:fe:29:7b:96:8b:11:3b:4b:35:
3a:a5:0d:6d:7c:84:d0:ac:e5:aa:bf:b3:c0:8b:19:
9d:39:d2:63:83:6e:b4:67:cf:54:89:c6:c5:0d:6e:
5d:fe:ac:de:58:96:66:88:dc:1d:d1:b4:ac:e3:cc:
24:9c:f0:e5:85:41:11:31:dc:3b:69:7c:b9:5c:39:
f5:85:38:f0:83:55:50:ed:c8:a5:85:90:a7:c7:b3:
82:df:d8:e7:34:04:63:80:ec:45:94:20:94:a0:58:
ad:80:62:c7:48:0a:fd:6b:1c:7d:41:9d:8f:8f:ad:
d9:02:e8:11:26:7b:55:48:37:a9:a1:a5:0a:a4:9a:
1d:6d:85:ec:69:8d:bf:3c:81:0c:72:d9:8c:6d:2e:
63:bd:a9:cd:2e:53:4e:db:c6:8e:1f:34:55:44:17:
aa:39:2d:e0:ff:ef:c2:8a:db:a2:5c:94:b9:f9:bd:
44:bd:0a:05:60:73:9d:fb:75:5c:cf:24:3e:e4:6f:
c5:2f:9a:7d:dc:b1:fe:88:07:34:76:2b:02:13:96:
04:8a:0d:5f:5c:44:f8:a1:c9:98:b8:18:c0:f3:1f:
86:43:20:73:9d:74:c8:32:cf:02:c8:57:80:88:32:
02:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:42:CF:2E:93:7E:45:F2:96:7A:F2:88:CD:4B:F2:0B:ED:FF:2C:4B
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:27:58:6d:09:fd:fe:1b:14:76:7f:bb:ca:38:bc:a6:29:c9:
d7:c4:ec:2d:f8:c2:c6:86:2d:82:c9:e0:52:ba:3a:03:ae:79:
b6:49:99:6d:2b:fc:84:eb:c2:23:d3:2a:4b:4d:8c:11:fa:44:
c7:05:b3:38:9e:2a:fc:f3:1d:e0:a2:87:e6:6f:b3:49:9d:6e:
7b:26:e4:e3:ee:f8:b0:d1:a5:62:8c:cb:fe:fb:32:17:fb:bd:
00:6c:7d:0a:3d:86:fa:4c:f1:f8:e7:aa:83:46:c6:a1:15:9d:
11:ef:ee:68:ee:b0:ee:d3:21:8c:e8:9f:9c:26:d4:06:99:16:
8c:53:2e:be:b4:ac:31:5b:e4:19:92:1f:50:c9:13:7a:5c:65:
4a:7e:85:a9:a0:ec:fc:4a:47:d7:35:76:f9:13:e3:a2:43:20:
69:c3:f6:3b:bc:0a:2f:75:6a:c8:75:a8:8f:5c:f1:a8:5b:65:
b3:36:34:0f:ec:88:0e:b5:f4:4a:15:46:f0:ee:01:37:b4:b9:
7d:8d:49:41:22:f3:16:3d:7e:b2:b6:3b:6a:af:15:e4:a9:8d:
3d:53:cf:3b:ba:f3:9f:1f:b5:80:53:44:6e:df:27:df:ec:64:
6e:f1:3a:e2:b7:d4:07:ab:85:da:ea:74:1e:b7:ab:d0:38:28:
76:46:6a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:56:04 2025 by rpki-client