Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: B8aeZnZWvuAtBEpqdQG9UNn1vLLj+nKeTf8T1GJn6Cw=
Subject key identifier: FE:5B:CE:13:E3:72:82:A4:E0:23:44:DB:ED:0B:29:C1:E5:1C:86:CA
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 01974CD75E5B1963073276BBFB001289A6B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 01DC
Signing time: Sun 08 Jun 2025 00:01:12 +0000
Manifest this update: Sun 08 Jun 2025 00:01:12 +0000
Manifest next update: Mon 09 Jun 2025 00:01:12 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: WvNwkJFJJCXq/XbWKLr+4h7LbaIlzUPb0gkS3+fbwO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:5e:5b:19:63:07:32:76:bb:fb:00:12:89:a6:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Jun 8 00:01:12 2025 GMT
Not After : Jun 9 00:01:12 2025 GMT
Subject: CN=fe5bce13e37282a4e02344dbed0b29c1e51c86ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f3:d8:46:65:66:b5:b9:5f:60:32:84:c6:7b:
f6:24:7f:ef:f9:11:16:30:74:5f:01:53:8c:1b:d0:
9a:29:c0:68:a9:f4:38:57:4c:7c:b2:ad:1a:54:65:
0f:0d:cb:b8:2e:25:8b:ea:12:15:15:63:f1:fc:b9:
f9:35:85:0a:7d:02:d8:73:80:54:eb:95:62:6c:d8:
c7:64:1a:b6:15:7c:26:a1:09:b3:53:a6:10:df:bb:
fd:f6:1d:41:ca:3d:17:95:b6:db:e7:7c:e6:34:e7:
67:ef:23:a8:ae:56:a2:fb:ff:b4:dd:da:2d:5d:8d:
c3:aa:e8:13:26:30:9e:b4:85:28:47:8f:66:63:4f:
44:ec:23:84:08:48:85:64:12:d2:ae:4b:66:0a:c7:
d3:98:95:39:54:dd:42:f7:b6:7e:64:25:c7:9f:48:
ca:c4:23:46:ee:49:32:70:df:9f:ab:96:66:94:2c:
05:a1:dd:86:ca:08:25:c7:ef:5c:53:9e:f6:5d:b7:
aa:71:c6:cc:0d:28:25:74:9d:51:8a:8c:7f:c9:7c:
b4:41:7e:d8:06:3e:42:95:73:18:06:0e:72:fd:42:
57:d2:f8:17:02:9e:62:bc:c4:21:71:65:4b:85:78:
1e:3a:c6:59:0a:2d:59:d0:73:e6:00:ce:f4:83:1e:
4d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:5B:CE:13:E3:72:82:A4:E0:23:44:DB:ED:0B:29:C1:E5:1C:86:CA
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:c5:86:ff:1e:98:a2:cc:2b:5d:b7:46:f3:3f:ff:33:7f:88:
c0:d8:56:ff:1b:25:77:c8:e1:92:87:f6:ae:ce:e3:fb:3f:7e:
3d:ca:27:e1:15:d3:c7:e3:31:e7:27:ea:1a:01:da:72:1a:27:
ab:d8:9d:f3:ff:e0:01:ba:91:da:80:21:8e:99:d3:96:06:94:
19:fa:dc:e2:78:10:f1:cc:63:df:f7:59:13:48:ba:bf:ee:8f:
2d:ed:e4:37:db:ce:ca:2c:01:a4:ac:d0:4b:eb:ff:50:63:5f:
92:c8:5e:37:d8:78:b4:df:86:29:9a:c9:e4:ef:c5:0e:dd:ae:
be:2f:1e:03:52:40:5f:0a:66:01:f0:ec:c9:d1:94:64:c3:fb:
17:8b:ac:c2:b1:5e:43:58:b7:cb:a6:a5:6d:61:10:fd:5d:06:
8f:7d:bd:48:2c:f0:d0:3a:8e:39:c7:71:0a:6c:8e:b1:4a:c0:
9c:fc:01:25:6a:c6:e6:49:d3:e0:28:85:c3:84:fa:aa:20:3a:
57:2a:39:90:78:dc:56:2f:5b:48:5c:5e:59:28:f1:c5:e7:9c:
c8:a8:2e:52:22:37:37:e2:20:c3:e5:71:b6:f6:8d:bf:4c:68:
ed:47:da:a2:82:7c:f8:b5:fd:76:42:60:8e:8d:8e:cd:4c:34:
02:07:1e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:29:26 2025 by rpki-client