Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: k6bYn4+DjARlSedhTj0Px0L2J/UwbH3HJTXk79XQ+4Y=
Subject key identifier: F2:89:49:13:32:7B:E6:03:31:50:B0:80:06:F6:45:CC:2B:31:55:14
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 0199221E82300044A9731CB3D1416F4B307D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 02CF
Signing time: Sun 07 Sep 2025 03:00:48 +0000
Manifest this update: Sun 07 Sep 2025 03:00:48 +0000
Manifest next update: Mon 08 Sep 2025 03:00:48 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: xGAsu+01kcla4MrecB6otIW0V28RAxMuTwkm+8rfPvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:82:30:00:44:a9:73:1c:b3:d1:41:6f:4b:30:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Sep 7 03:00:48 2025 GMT
Not After : Sep 8 03:00:48 2025 GMT
Subject: CN=f2894913327be6033150b08006f645cc2b315514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:22:dd:eb:0a:21:71:26:e3:93:8c:bc:4e:ab:
07:11:ed:01:67:b7:f2:d1:f3:17:22:a7:bd:8a:0a:
4d:a8:f8:4a:28:8c:1c:a2:77:ef:56:2c:92:09:10:
d2:79:f0:57:b6:3b:92:4e:a9:8a:7d:3a:03:c1:36:
e3:3e:ea:36:1b:38:94:5d:6c:02:04:2a:d3:15:2a:
1a:29:32:13:06:12:47:9d:86:8d:f9:03:bb:3e:b9:
84:c3:f6:18:88:b8:83:92:22:e0:af:74:0d:e2:8d:
60:de:1e:2c:2c:37:c1:8c:79:1b:ce:f0:bf:3e:57:
7a:2d:db:61:a5:85:d0:ac:90:84:2e:30:5b:a9:f4:
ca:cd:5c:13:39:69:8d:66:10:35:c8:b0:e9:99:c9:
79:70:1f:6c:5c:f2:3a:70:05:58:d7:5c:ac:89:90:
d8:62:16:13:fa:ae:24:f1:98:2e:1b:08:83:99:87:
75:d8:4f:66:47:96:17:70:fa:4e:a0:13:fc:95:eb:
19:44:24:19:a7:e5:fa:8b:75:57:14:e6:ff:79:de:
88:b1:14:4a:c5:9a:03:c5:0c:fc:73:3e:60:2e:0b:
89:f4:c3:41:41:de:b6:d7:d6:b9:3c:d2:e1:0c:e4:
a6:42:52:df:c6:4e:cc:80:45:72:c7:11:f6:d7:7f:
7d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:89:49:13:32:7B:E6:03:31:50:B0:80:06:F6:45:CC:2B:31:55:14
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:31:24:18:e1:a1:e1:8b:e2:50:8d:e7:3b:e2:0d:bf:d2:6f:
e5:33:5f:a2:69:35:27:6e:ee:f2:81:a5:b0:c7:8a:48:32:cb:
9f:ef:7d:92:43:65:8f:35:ad:dd:9c:9d:a4:b2:c9:7c:62:c8:
49:fc:7d:37:d2:52:49:37:70:28:fb:86:e6:f5:ae:fb:e1:af:
c6:26:23:b7:c0:13:b0:c1:5d:35:8f:f8:80:83:20:4c:fa:59:
77:d5:59:1a:9a:1e:c5:3e:a0:e6:8e:8d:c7:81:fb:1d:94:d2:
f7:d1:5c:96:81:fa:76:b5:4c:55:e0:ef:95:e3:9f:9f:3f:db:
da:6b:45:6a:08:83:46:4e:82:0b:79:7e:30:4d:45:7e:18:cd:
04:3f:e1:42:da:55:88:f3:bb:58:fc:8e:21:36:2b:e0:4d:25:
af:d9:64:5b:1b:06:e7:a6:f0:b4:ba:32:c2:48:d8:17:f2:20:
72:a2:c3:03:20:17:64:06:f2:ec:62:b0:3c:c9:40:b3:1f:76:
0a:ad:4a:61:87:47:b6:5c:8d:08:81:93:63:f8:91:72:33:9c:
ce:ae:82:19:93:3c:9f:79:f5:45:77:a0:b8:f2:78:67:48:2f:
30:31:a5:18:a9:b8:62:73:60:96:02:a2:28:d9:83:4b:34:be:
ba:a9:7f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:28 2025 by rpki-client