Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: cimjviofay0HzbI+or7+sjBP6LR5BlN/e+eNqHFDJvw=
Subject key identifier: 08:85:61:09:02:59:DB:36:26:01:1E:E7:A5:AF:7D:E8:4E:4B:D4:C2
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 01987DF7FD36B3E512B38A84A98F2F9BF4B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 027A
Signing time: Wed 06 Aug 2025 06:01:00 +0000
Manifest this update: Wed 06 Aug 2025 06:01:00 +0000
Manifest next update: Thu 07 Aug 2025 06:01:00 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: WIv2VH/c/M9KdPFL8FW1HaoMi1XnX9ZmJK2+nnHU1+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:fd:36:b3:e5:12:b3:8a:84:a9:8f:2f:9b:f4:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Aug 6 06:01:00 2025 GMT
Not After : Aug 7 06:01:00 2025 GMT
Subject: CN=088561090259db3626011ee7a5af7de84e4bd4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5a:ae:80:f4:5a:87:33:8f:a3:ae:87:7f:1f:
a5:0a:bd:3e:60:f2:f9:5e:af:68:d3:6c:c8:de:81:
25:04:d6:28:a5:80:4a:62:e4:a7:14:33:26:01:dc:
5c:61:a1:6e:08:02:43:7d:f6:8c:6b:2c:73:b2:57:
fe:45:8f:d8:c5:3f:84:15:cd:96:de:8a:77:49:4e:
9f:8a:5b:04:00:ea:b2:3d:53:0c:b1:b9:0c:8b:95:
5a:48:4a:ea:75:1f:b8:5c:ea:84:ea:ef:4c:af:fa:
ca:e0:27:0c:b0:77:bc:0c:50:2a:22:ce:9c:92:16:
03:f4:08:a6:7d:46:52:cc:5b:39:8c:9c:97:78:68:
47:79:6d:29:d2:7b:aa:dd:c7:cc:11:3a:0c:96:7f:
b5:d8:01:f0:94:ff:25:24:d0:97:ad:0e:52:46:28:
cb:a7:4b:1d:12:c8:2e:e5:34:4b:75:ea:03:a0:64:
39:a9:5a:9d:e4:9d:fc:77:e8:67:e7:68:33:5b:f1:
72:2d:8a:68:fa:25:ea:12:ea:3f:24:b5:ed:f2:67:
c3:14:cc:2d:ab:00:f2:5e:88:fa:d8:00:42:ef:ac:
61:8b:20:0e:38:4c:34:a4:4c:e1:09:c1:de:b0:14:
e6:35:d0:21:f9:64:e7:ca:87:5d:06:7c:04:fc:da:
0f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:85:61:09:02:59:DB:36:26:01:1E:E7:A5:AF:7D:E8:4E:4B:D4:C2
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:88:37:61:a8:1f:48:2a:85:9f:46:e9:ec:6a:3e:d9:97:6c:
c9:6d:3c:cd:2b:46:77:3c:d5:c8:38:35:ca:e2:e0:09:c5:20:
4f:74:4a:99:81:c9:1d:b9:b8:14:f2:bc:3b:fe:50:b6:aa:9c:
47:ce:4b:63:4b:43:6e:79:6f:fc:25:8a:5c:3f:d7:3f:7a:09:
f6:ba:e6:b1:a0:2f:d8:50:95:fa:ca:c8:6f:a0:13:24:2d:f8:
ee:ab:06:04:c3:f1:02:3b:41:1f:dc:1b:5a:af:ac:1d:b2:48:
c0:ee:3d:b2:f5:db:1e:78:2a:e7:3a:b8:4c:8f:c2:bf:02:66:
90:cc:75:cf:f9:4e:6f:20:f4:84:6d:71:aa:0a:e5:e6:76:e1:
16:81:9f:cf:41:34:ea:c7:81:a5:33:2f:7a:49:11:de:d1:ad:
f2:4e:22:84:49:29:ea:ba:d7:21:b3:92:45:6b:f2:e9:d0:2e:
03:c6:5a:33:22:9a:5b:16:04:0d:2d:fc:37:e9:86:85:0a:cf:
3a:c1:fd:9c:56:2d:7c:d8:51:cb:a9:4c:07:14:a9:19:b4:dd:
5c:ec:1d:2a:bf:09:1a:a4:0f:60:ea:0a:a1:ff:b4:19:48:b9:
67:98:be:e7:8e:65:86:42:8c:ef:39:f5:16:35:62:ec:95:90:
39:dd:a2:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:31:31 2025 by rpki-client