Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
File: aMwyXIrZdpobVNopYwX-DDZXN3U.mft (raw, json)
Hash identifier: IeDuMn0cly43zOh0sgZPmVnFxm7Kiz6TN5QPiY1EXmo=
Subject key identifier: D5:05:65:48:A1:D2:09:72:0C:90:CC:1C:A4:C0:22:85:A1:11:60:61
Authority key identifier: 68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
Certificate issuer: /CN=68cc325c8ad9769a1b54da296305fe0c36573775
Certificate serial: 019A4EF5B33C47FAE57D1173FF10C7F143B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
Manifest number: 0A4D
Signing time: Tue 04 Nov 2025 13:01:56 +0000
Manifest this update: Tue 04 Nov 2025 13:01:56 +0000
Manifest next update: Wed 05 Nov 2025 13:01:56 +0000
Files and hashes: 1: 8SXa1LGEgRchazaJtCn45wimFzI.roa (hash: aarcdMLMUD+vhP2Nt/G/Xfb4TI1KlOo20WqPIWfHmGk=)
2: 9h0zhhREd-POjncfc-zEp4ug01M.roa (hash: JFrWYEIaG5U63hgpJ7xXhrCvo1w1GUW7UsCloYFy5DI=)
3: aMwyXIrZdpobVNopYwX-DDZXN3U.crl (hash: 7cyL14i+vk69BnBbS3RbRTVroSUQF+9AzFiQIoGjJ7Y=)
4: hOg_cmo_1iPWo-TSIDavHMMiNf0.roa (hash: x2NoBu31Yw8pVlDgk5TVKt6dy/zU3kvxFv7RpieFwqA=)
5: mrLaA1eR5ZA6ZP7iWY4b8XRMWTY.roa (hash: jJecCTBKKFO9xnb082mcb8oh5M5FNk8lCFd2JS7Xlls=)
6: zZ03RoGozbT1HFe4mhpawTrExsc.roa (hash: lLn9Wn1De0ejD1AHiJO5yX30r5UE6GRrj/0NmZ5bxR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:b3:3c:47:fa:e5:7d:11:73:ff:10:c7:f1:43:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cc325c8ad9769a1b54da296305fe0c36573775
Validity
Not Before: Nov 4 13:01:56 2025 GMT
Not After : Nov 5 13:01:56 2025 GMT
Subject: CN=d5056548a1d209720c90cc1ca4c02285a1116061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f7:77:f5:74:9e:69:63:40:7b:07:6e:ba:1c:
ab:55:f4:40:28:b6:05:c1:af:39:51:ab:bf:da:b5:
59:4a:b1:43:bb:3c:d7:4d:db:bf:4d:2d:a4:53:e7:
6a:67:68:95:1f:b9:4d:5d:56:25:20:bf:2e:42:9d:
6f:8d:06:2d:11:7f:aa:34:da:37:9a:54:a4:b5:a2:
6e:3a:14:ea:ee:1f:6a:af:8e:38:97:a5:b1:24:d2:
c1:5a:7c:d5:99:c7:2f:e4:14:d5:b9:19:63:d8:fc:
c4:05:a5:dd:04:0b:f1:6a:c8:4d:2c:4d:09:9e:9e:
25:39:4c:38:3f:65:6b:a9:4a:70:b5:bd:0a:de:ac:
ff:84:ec:18:9a:dc:9f:4c:76:52:7f:ea:16:ed:70:
71:61:63:42:68:60:ad:a1:45:fb:1e:52:82:db:80:
09:8c:70:be:be:d3:f2:56:be:0e:73:b0:9d:17:b1:
be:48:ee:f7:96:99:ec:0d:e9:60:f2:4d:cd:aa:f0:
c0:ef:34:f5:73:3c:56:9a:39:6f:d8:d5:d3:1a:3c:
8e:c0:57:84:b3:43:76:3f:ac:e4:57:05:4c:ba:a9:
ee:2d:c9:3a:48:2a:dc:77:dc:87:65:fb:30:1b:b2:
75:ba:0d:1d:43:61:1f:27:2e:d4:55:96:77:18:85:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:05:65:48:A1:D2:09:72:0C:90:CC:1C:A4:C0:22:85:A1:11:60:61
X509v3 Authority Key Identifier:
keyid:68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:58:21:b8:42:e3:cc:6f:91:13:ca:72:11:cb:9c:df:a7:54:
b5:36:b2:25:ce:5f:70:41:59:1e:4d:f2:62:4a:59:29:7e:7f:
6e:79:9e:0a:64:74:d9:20:d2:7d:35:e4:20:11:97:0a:3f:42:
c7:22:53:51:10:cf:61:1f:1e:c6:c3:f7:69:22:53:d6:35:e1:
ea:d8:43:40:e1:cd:a3:3d:fe:cc:ea:d6:df:d6:ff:45:9b:26:
63:eb:89:88:f0:cf:30:61:5a:05:60:17:a9:ee:7d:60:d9:7c:
3c:72:ef:99:69:7f:44:a6:84:c0:ef:9b:de:70:a7:50:db:13:
bc:d4:89:77:ab:d3:4e:0d:93:a5:ee:cc:bb:5b:b2:de:a1:d8:
10:10:ba:85:b3:16:04:fa:87:72:1f:a4:b1:01:c0:ba:cf:69:
27:5d:77:7d:d6:5a:85:c6:40:8a:a3:f7:18:b3:7b:6c:0d:0d:
5f:70:9c:4f:1a:6d:79:4a:60:9c:c9:1e:32:71:ab:38:44:88:
9a:09:74:02:9a:2c:37:57:9e:74:93:7d:3f:ec:8b:a0:ec:95:
53:3b:0a:55:be:3b:c1:de:ce:87:6c:48:33:dc:36:a9:aa:ea:
06:1e:d9:9d:68:14:af:7a:b7:6e:63:a2:e0:43:ef:78:80:43:
61:c1:a9:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:51:57 2025 by rpki-client