Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
File: AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft (raw, json)
Hash identifier: If4OF5LmP3hcG1hjMRIG8Sq8LFPW+E6JPC9lVf0rsjw=
Subject key identifier: 33:86:52:30:6E:23:B8:31:68:34:D8:6B:B4:D7:33:F6:46:91:21:16
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 019A7225DB935908410EA67719C135ACD76F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
Manifest number: 0C4D
Signing time: Tue 11 Nov 2025 09:01:14 +0000
Manifest this update: Tue 11 Nov 2025 09:01:14 +0000
Manifest next update: Wed 12 Nov 2025 09:01:14 +0000
Files and hashes: 1: 7elRG4gqnvY-kvee5EC-ljUx8zc.roa (hash: EBapcQW4LSNex4n/3b9OtP2KhuUXB5IUoQf2KZKkJ6Q=)
2: AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl (hash: 7Fe5yn8I6C970zHD0wde96IQeTZgcnUaNkqqqatJhsw=)
3: GAzN8JgljKfA3A30CpTpB9I-ljg.roa (hash: rKanLHq74yk8hIMHAP3lf3yTM47zrxq0k/XrA6g5TqI=)
4: KlGeCuL83ckpFDxEzckjMn7_6RE.roa (hash: sQSDNJGP0PRAc42NznmCEsFt8+XssPeUkQMlKcFGyeg=)
5: cI0Z3sLe1xjrCwyg19NbzVWgf58.roa (hash: RgqBJJ2OAbbh0xonFH0+36oQyNXiwKW4rTJMbCMMDzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:db:93:59:08:41:0e:a6:77:19:c1:35:ac:d7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Nov 11 09:01:14 2025 GMT
Not After : Nov 12 09:01:14 2025 GMT
Subject: CN=338652306e23b8316834d86bb4d733f646912116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0a:27:f1:1e:6b:69:cb:b5:e1:33:87:f2:4c:
17:22:bf:67:e6:40:00:20:22:92:ac:eb:9f:d7:87:
d2:86:ba:0f:6e:14:8a:09:9b:d0:f2:81:c5:c3:68:
96:41:59:90:40:b2:15:e2:2d:16:7f:b5:5b:1c:ee:
1a:a0:0d:d6:5f:76:fd:ba:82:02:16:80:ec:d2:b8:
85:95:bd:cb:47:5e:3d:e0:b3:e6:fb:34:1f:62:f5:
99:4b:18:aa:93:61:e1:b2:27:92:27:ec:19:b8:ec:
11:3a:99:e2:a2:cb:80:eb:94:e3:49:16:ec:a8:c8:
06:22:7e:54:88:07:76:0d:ad:e7:f8:05:e7:70:1d:
76:90:11:17:00:c8:4f:1c:3d:81:e7:e2:dc:b1:11:
95:94:5d:2f:65:c1:0d:1e:49:64:4a:be:c5:d1:24:
c1:65:28:b6:77:25:63:a2:f5:4f:e7:e3:a8:1c:97:
d1:53:bf:8d:6d:20:13:39:d4:7a:6d:33:98:1f:f3:
e7:23:01:dc:9a:e3:c8:30:08:56:b6:9e:2f:f4:66:
58:81:77:f5:a2:f4:12:cf:3b:1f:80:09:34:29:e2:
44:d2:88:5a:b7:06:d1:02:0f:73:48:01:bb:e5:d7:
35:17:31:49:4e:c1:54:ec:cb:3e:ba:4f:a2:9d:8a:
e9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:86:52:30:6E:23:B8:31:68:34:D8:6B:B4:D7:33:F6:46:91:21:16
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0e:e0:ea:1b:79:2a:70:f1:5f:08:ce:11:be:de:51:86:2f:
31:05:4f:ca:73:55:9b:39:ed:4c:51:5d:9e:5f:75:e5:a0:1f:
2f:76:84:a7:be:af:70:f4:89:45:5f:d3:ad:18:d2:d4:3c:2b:
5e:c8:17:4f:70:d7:d7:2d:78:f1:b8:2a:f8:24:f0:ec:cc:2e:
23:a2:a6:af:29:2b:04:16:51:32:11:b1:b2:d5:b3:f6:78:d7:
67:3a:cb:cc:d2:88:92:14:57:3d:cb:1f:6a:64:8d:0f:1c:4e:
e9:4e:55:e6:57:1f:ed:4d:82:aa:0d:97:b9:1f:82:f0:2f:f7:
ac:c2:14:37:66:02:dd:ee:ee:dd:c3:ac:92:8c:90:3b:fc:c6:
30:cd:1f:be:44:1b:c6:71:44:bf:84:1a:cb:ba:cc:12:da:2b:
44:52:dd:c3:36:f0:56:c0:f9:f8:07:ba:2c:f8:6c:04:3a:bc:
5d:38:5e:64:f8:60:f4:41:fa:63:52:ae:41:de:92:d6:79:14:
a5:a9:80:e8:24:8b:72:25:37:12:3f:58:02:0b:45:45:91:ba:
75:de:9b:dc:57:82:24:c8:df:18:50:12:dc:0e:4d:67:cd:cb:
ac:2b:74:37:b8:91:ad:4c:64:6c:bf:08:cb:81:dc:aa:63:bf:
ed:7c:c0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:38:14 2025 by rpki-client