Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: 1ZR7B47jSbTruLOt5o1HSoGRGwJjP6PN03DD9RrPfrk=
Subject key identifier: FE:E4:C5:3D:F9:1F:E6:7C:F3:70:7F:DF:46:8D:F3:F3:75:8E:22:88
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 019A4F62EE818C24F7C0729CB22418587B06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 036B
Signing time: Tue 04 Nov 2025 15:01:14 +0000
Manifest this update: Tue 04 Nov 2025 15:01:14 +0000
Manifest next update: Wed 05 Nov 2025 15:01:14 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: C8nU5c7WkOJD+8496u5BGJiWg5gQT0fYS4zqi4EmXcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:ee:81:8c:24:f7:c0:72:9c:b2:24:18:58:7b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Nov 4 15:01:14 2025 GMT
Not After : Nov 5 15:01:14 2025 GMT
Subject: CN=fee4c53df91fe67cf3707fdf468df3f3758e2288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:10:3c:fd:7d:4f:25:cc:36:f1:a0:38:53:23:
36:2a:e1:90:3e:b9:41:b8:67:f2:6a:24:64:2c:c2:
8d:a2:27:9c:77:bd:23:01:db:9e:3b:d1:07:d2:ed:
1b:96:65:96:36:24:82:e1:d5:d8:11:9b:00:03:05:
19:51:57:ab:5e:ee:f8:cb:3a:d4:f8:8f:c9:8f:5c:
9d:e7:d7:04:71:47:22:0d:4e:55:c4:e6:91:19:3f:
cd:48:a2:f7:16:6b:79:f5:83:ff:3b:60:e8:f5:98:
c5:5e:46:5c:a4:ab:6c:a1:7d:51:12:1c:06:ae:02:
29:5c:48:7b:e6:eb:76:a5:87:66:ca:0b:dc:0b:1f:
cd:40:27:2e:05:6c:8e:1b:c6:3c:82:0d:4d:27:a5:
36:49:42:8e:09:f6:6c:d8:3d:57:1c:f4:8f:fd:1b:
b8:bd:4e:23:b8:11:84:47:2d:83:a9:30:56:01:43:
15:fb:a3:88:a9:f7:5e:fa:f5:d6:09:b2:d3:e5:19:
bf:24:61:21:08:17:59:a1:40:46:64:00:69:d2:24:
06:93:0c:9c:0f:bf:ea:3d:bb:49:d1:84:75:b6:7f:
0f:4c:57:52:20:30:dd:d4:d3:4d:5a:27:ed:d3:cb:
38:35:69:8f:94:c3:b4:50:f8:ed:08:d7:1e:8a:db:
e3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E4:C5:3D:F9:1F:E6:7C:F3:70:7F:DF:46:8D:F3:F3:75:8E:22:88
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:81:a8:63:d4:de:b3:53:5d:e6:1c:93:4c:8c:b8:8d:56:0a:
04:12:7e:e9:6f:9c:57:15:be:4a:ec:0a:b7:9b:5f:30:ac:00:
c2:00:85:a5:ec:18:ec:09:31:7e:cc:02:45:a7:3c:59:ef:d9:
0f:9c:d4:8f:f1:15:ee:fd:23:6b:26:ca:24:de:82:ec:f5:5e:
49:a4:b9:20:28:e0:90:1c:9d:1d:96:38:c7:cc:da:29:3e:44:
aa:c3:1d:fb:ef:95:54:a8:4d:d5:75:86:d3:59:f0:0f:c0:66:
6f:6e:d8:6b:9a:8e:86:e4:e4:cc:71:eb:83:b3:5f:fa:2f:8e:
91:2e:85:9e:89:d9:57:50:b4:f7:d7:cf:15:7a:9d:5f:9c:5f:
c4:05:06:ae:28:ce:92:f8:ac:6c:08:89:ce:7d:9c:4a:f7:0d:
80:5b:f9:6b:18:5d:a1:b8:74:79:02:a4:50:62:d9:f2:40:9b:
c2:8d:95:bb:ce:85:68:92:50:f4:5d:89:57:03:9b:47:80:79:
84:20:d4:c5:0f:2b:9e:33:48:79:36:28:44:ee:1d:48:b0:bb:
bb:65:73:99:0a:10:1d:6a:e1:c1:2b:33:b5:da:48:62:85:ff:
a4:b6:2e:4f:71:3d:71:f3:de:2d:d5:ad:9e:88:94:b7:62:a2:
d2:0c:ef:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:23:14 2025 by rpki-client