Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: YabMpVCncAUbec+g4lieILFeLS4KhbhPr/LrzfjtGcA=
Subject key identifier: AC:10:55:5D:90:00:72:E1:05:EC:E1:03:45:8F:0D:03:11:21:ED:A7
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 0199FC590AFAFBF85EC522BCAC0FA16BC63B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 0340
Signing time: Sun 19 Oct 2025 12:01:57 +0000
Manifest this update: Sun 19 Oct 2025 12:01:57 +0000
Manifest next update: Mon 20 Oct 2025 12:01:57 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: 9ny3YLj61rTyDLndGGLZ1dht+9ZWzaAtZl8UjAe+DMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:0a:fa:fb:f8:5e:c5:22:bc:ac:0f:a1:6b:c6:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Oct 19 12:01:57 2025 GMT
Not After : Oct 20 12:01:57 2025 GMT
Subject: CN=ac10555d900072e105ece103458f0d031121eda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:43:96:10:0b:99:29:d5:94:24:d0:ab:2d:d7:
84:0e:da:86:89:81:39:1f:59:49:a3:d2:1a:60:d0:
fc:a6:6f:4c:d3:7a:72:b7:2e:9f:7a:ae:e3:19:64:
ba:25:6b:b8:ed:1a:08:b5:23:13:54:86:e4:e5:c0:
08:81:15:12:5d:e1:ac:bc:1f:91:1d:5e:35:ef:96:
fa:23:32:43:32:26:04:6a:18:0d:01:1c:bc:64:78:
51:cb:d1:7f:7e:d9:21:f8:1a:68:61:8a:a4:c6:33:
35:1b:cb:4b:76:32:64:52:c0:23:51:bd:10:60:59:
fc:74:fa:47:4c:55:b1:63:d9:c2:92:cc:20:f3:ce:
ea:34:07:7d:c7:32:4f:6d:4f:ce:1d:1c:d1:a6:76:
92:a8:da:82:1a:c6:ad:3b:67:87:75:11:61:6b:bc:
39:45:1e:13:90:5d:f3:60:40:e1:ae:3b:3b:0f:1b:
94:b0:8e:1b:8d:40:2f:fb:02:05:62:80:b0:68:4c:
ee:97:16:56:9e:5a:3f:a3:c5:52:cf:44:aa:d8:c1:
05:d8:f5:80:76:16:ff:bc:53:97:10:3c:eb:cc:a0:
f7:50:03:32:07:81:2a:85:05:ca:08:22:b5:89:a8:
3f:92:49:39:de:bc:3c:1a:92:21:79:d7:20:85:4c:
7b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:10:55:5D:90:00:72:E1:05:EC:E1:03:45:8F:0D:03:11:21:ED:A7
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:a2:ed:be:c2:cd:51:af:db:83:d4:07:f9:16:d0:c5:fe:d6:
25:f1:a5:df:49:a4:93:24:13:e8:ca:25:49:b9:ef:90:74:a8:
b6:75:ae:c6:47:bf:42:64:a4:85:6a:7e:ee:44:43:4a:dd:eb:
15:39:41:a3:0a:46:1c:69:77:c8:59:45:33:71:41:5b:58:a4:
24:47:73:73:3a:db:bc:cc:bd:89:db:94:50:80:aa:a2:ee:f6:
0c:86:f2:18:b6:f9:13:fd:c2:bc:44:59:2f:8b:46:d3:1f:82:
73:ab:af:e2:08:aa:12:dd:b4:f8:fc:9f:a5:f8:fc:2d:2d:88:
6e:2a:ee:42:a3:ca:e6:42:8b:9a:87:6d:c1:c9:a7:01:9f:3c:
2c:67:c7:88:91:38:1d:24:17:3f:cc:19:d7:cd:47:8a:96:80:
2f:ec:b9:bc:2c:9b:8d:92:94:a8:cc:9a:e2:32:a2:79:e7:28:
cb:e1:ab:11:db:16:f6:ab:9e:b7:8b:ae:60:b6:5b:0d:47:b7:
ad:32:06:c3:05:d7:b5:70:6c:b6:a3:4d:c4:f5:de:1f:c7:c6:
da:11:88:a0:8a:45:5c:9a:53:5d:40:9e:32:ea:b6:5d:32:44:
4d:16:84:7f:6e:ce:61:c7:76:e1:67:15:fb:7b:0d:b8:aa:0b:
82:5c:8a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:46 2025 by rpki-client