Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: xDpLrw62cKsT0P3oQSh4cpsxkOvaXwlig2PTCKnPq9o=
Subject key identifier: E6:35:2C:B9:C3:AF:B4:F3:3B:A4:BF:20:99:23:5B:1F:5C:4C:74:8B
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 019A4EF47BBD385D49180D751926263C9BC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 124B
Signing time: Tue 04 Nov 2025 13:00:36 +0000
Manifest this update: Tue 04 Nov 2025 13:00:36 +0000
Manifest next update: Wed 05 Nov 2025 13:00:36 +0000
Files and hashes: 1: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: gQCFE19dgs5jzguKEZNSPlIcVdkVoZG5vmAYQF0TkWs=)
2: lx4r-_of66D7nj4_JxEX4B7iGSo.roa (hash: nBmUpTvMg37xBiu7Iw7rIz0CmSBaScYekCzZq9oCvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:7b:bd:38:5d:49:18:0d:75:19:26:26:3c:9b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Nov 4 13:00:36 2025 GMT
Not After : Nov 5 13:00:36 2025 GMT
Subject: CN=e6352cb9c3afb4f33ba4bf2099235b1f5c4c748b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:21:78:f4:d6:80:c4:90:8f:3b:c5:b4:7d:
db:37:72:79:37:53:28:02:ba:78:04:78:46:66:d5:
25:00:08:ea:5e:9b:75:35:02:06:d1:fd:db:fe:97:
45:2d:13:0a:62:05:7b:bc:bf:d2:40:46:fc:0f:ce:
4c:f9:f4:e1:ef:87:8a:27:b1:2b:bf:e5:28:aa:66:
fe:8d:1d:00:71:da:13:9f:57:eb:0e:fe:0d:9c:8f:
f5:68:bc:ef:3b:c4:b6:12:28:b1:ea:db:ef:26:a2:
26:6f:05:2f:08:eb:0c:98:29:86:2b:b7:a8:75:ea:
26:33:36:7a:38:86:20:ce:a6:79:70:5f:1f:d2:54:
37:89:96:5c:c5:aa:a1:e9:d6:04:cf:bf:c9:73:31:
68:61:3c:c7:9a:11:e6:d5:0b:99:2a:a1:10:75:72:
ad:8c:a2:38:7c:e1:d1:40:e0:b3:96:3b:aa:c3:84:
d4:96:d4:2b:9b:49:75:ea:fd:c8:fc:3a:c9:d9:b7:
77:07:26:73:9a:b4:8a:98:63:3c:c3:87:10:af:7e:
da:eb:36:11:d1:25:a0:89:e8:eb:36:78:7c:b5:27:
54:83:bc:aa:e9:5d:39:b4:65:4c:8c:3d:86:c9:db:
ef:03:5f:17:21:7e:95:9f:e5:02:f6:2a:d4:be:af:
88:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:35:2C:B9:C3:AF:B4:F3:3B:A4:BF:20:99:23:5B:1F:5C:4C:74:8B
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:df:8d:0f:36:b5:13:72:86:c0:f3:19:57:3d:85:d3:98:fa:
78:ff:67:13:32:8d:7c:35:65:86:d5:fe:b7:4b:49:a1:d8:f1:
11:74:a9:5e:7f:65:b5:54:47:03:d8:0d:4d:d5:d5:da:1c:07:
2f:86:d7:79:0f:86:6a:ad:d5:c3:54:a3:e0:be:6f:fc:8d:bd:
2a:04:60:ec:50:0b:8b:e4:51:56:fc:5b:e7:1d:98:dc:1d:4a:
da:2f:6c:ac:92:a1:e7:91:17:90:d6:34:31:79:ff:97:03:a4:
61:b3:1f:6f:8d:13:27:a7:2b:9d:a0:1b:fc:15:83:fd:99:f3:
84:54:6d:95:67:f0:05:eb:db:60:d3:bd:e5:07:e5:57:33:82:
f3:7c:af:7c:b9:b2:76:c1:63:55:30:8a:eb:79:45:e5:c4:2f:
c4:8e:32:fd:4b:42:4e:af:4e:8e:80:62:eb:99:2b:8d:76:ba:
74:e0:88:39:5c:a9:ef:9d:54:16:32:76:da:cb:51:61:72:e7:
f4:5c:80:c0:45:e3:b2:ef:a6:ca:5c:4a:e8:c7:0b:94:92:0c:
b0:df:62:db:4f:da:ce:fd:ef:67:fa:70:0d:c0:93:06:15:b0:
4f:28:aa:90:a0:95:55:13:b7:0a:0c:9c:e5:d5:70:d0:cf:2d:
f7:e0:e8:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:48:03 2025 by rpki-client