Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
File: aZhQBALIIVz1cQc6SVzcgMdC8sw.mft (raw, json)
Hash identifier: NwLiCEK4x/8MbUiRWiPsU12cemIcMtzQis0NQXd6qlE=
Subject key identifier: 3E:F5:1E:6F:21:50:71:B3:01:13:E0:42:90:F8:94:E9:10:C2:1E:21
Authority key identifier: 69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
Certificate issuer: /CN=6998500402c8215cf571073a495cdc80c742f2cc
Certificate serial: 019A7293FB5812CC6B0D3C4E9A3BE8BBEED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
Manifest number: 1722
Signing time: Tue 11 Nov 2025 11:01:32 +0000
Manifest this update: Tue 11 Nov 2025 11:01:32 +0000
Manifest next update: Wed 12 Nov 2025 11:01:32 +0000
Files and hashes: 1: Pnnishmz6mmH1kDhubH1FM1N764.roa (hash: JeO+A8KCko5cL5TRf164ytYgaJ9iXP1K2ZTbCsQa/GY=)
2: aZhQBALIIVz1cQc6SVzcgMdC8sw.crl (hash: o2igH4r4whNCycQQg8B7KKhX4aDxv/CEZXZRkgdLazY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:fb:58:12:cc:6b:0d:3c:4e:9a:3b:e8:bb:ee:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6998500402c8215cf571073a495cdc80c742f2cc
Validity
Not Before: Nov 11 11:01:32 2025 GMT
Not After : Nov 12 11:01:32 2025 GMT
Subject: CN=3ef51e6f215071b30113e04290f894e910c21e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7e:7b:de:fd:73:e5:1c:2b:c8:e3:70:c7:c0:
38:70:b5:a8:24:be:70:0b:e3:10:5a:c1:a0:1e:f1:
cb:aa:86:d7:33:84:dd:e0:99:e6:62:8b:92:f5:8a:
9c:9e:fb:ad:bc:b2:e1:e6:3d:6c:62:a5:fe:c6:b4:
0a:51:aa:6a:e3:d5:88:aa:a2:2e:db:1f:ae:da:89:
6e:c0:08:62:29:32:ab:a3:ed:34:a6:7a:81:de:be:
eb:d5:d9:bd:09:7c:86:5d:b5:67:08:2f:22:fd:81:
cc:b3:57:39:1f:50:03:5b:68:b3:4f:bb:4c:09:8e:
7a:66:b5:33:27:67:dd:de:21:15:a5:9a:07:3a:da:
47:c5:f2:dc:9f:7c:2a:be:77:b7:5a:ce:2f:cd:a5:
9b:ac:2a:38:3b:40:7e:62:89:c0:ee:d0:92:73:23:
9e:3d:c2:60:b2:c3:ce:fb:52:1b:e4:16:db:1d:e3:
12:2e:84:14:07:58:d2:ef:a9:2a:b6:6d:8e:c4:4d:
95:44:98:f7:32:a3:96:26:98:b7:db:fc:3d:1f:86:
31:f3:b6:9f:00:d2:26:82:e4:97:e3:47:4b:13:db:
74:59:93:c0:1a:d5:27:5a:d7:0b:50:b8:ee:2b:c1:
aa:ff:9b:77:a7:0a:b4:63:f1:67:b1:fc:be:c0:bf:
a0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F5:1E:6F:21:50:71:B3:01:13:E0:42:90:F8:94:E9:10:C2:1E:21
X509v3 Authority Key Identifier:
keyid:69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:f5:9f:6b:c0:12:ce:0d:b0:0d:1a:d9:6f:19:05:15:40:6d:
bf:d4:9c:06:f6:e3:a4:89:43:78:eb:bb:e0:ef:7d:f7:0d:83:
ef:63:27:78:c6:4d:95:ba:45:8d:ce:95:03:c8:8a:b9:06:97:
1f:36:4b:94:b6:c7:89:37:77:25:d9:75:b7:e0:a6:c2:c8:bc:
b2:c8:1b:36:cf:28:1f:15:bb:32:da:8b:e3:49:78:b7:fa:38:
14:82:ae:07:eb:c3:8a:f8:1e:5b:46:20:c6:72:db:22:a6:6e:
4f:f1:3a:9f:73:ff:45:52:a2:d6:cf:6f:b0:5f:43:58:9f:ec:
2b:28:41:e2:30:5d:37:60:ae:bf:74:32:52:4f:d8:d7:ac:02:
0d:05:ac:3a:0c:05:6f:ad:86:d7:78:2f:fd:4d:a3:5d:2f:cb:
cd:c8:6d:0b:19:67:55:4e:5e:87:3f:2e:bd:e8:38:b5:0b:c9:
8c:9c:eb:26:13:70:08:e3:a0:76:c8:aa:54:ba:2c:24:1b:e5:
7a:e9:d9:53:3f:5a:8f:02:31:4e:e2:96:e2:90:35:62:a3:7b:
10:40:be:0c:f0:18:10:b4:e5:ca:82:6c:68:82:ff:bc:4f:f3:
86:ac:5f:f5:47:c9:77:ea:9b:04:68:85:e2:4c:99:23:03:09:
36:43:53:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:15:24 2025 by rpki-client