Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: ZmaB80fRm3yvuwPFIZbJ3DoQhMf/Y2vazDMFAM/6CM0=
Subject key identifier: 8D:37:D5:50:3F:80:E4:B5:8E:41:70:63:53:4F:25:61:07:49:E0:8E
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 0197C2A4A7C3DD57CC5A0059F25197CA0412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 0219
Signing time: Mon 30 Jun 2025 21:01:00 +0000
Manifest this update: Mon 30 Jun 2025 21:01:00 +0000
Manifest next update: Tue 01 Jul 2025 21:01:00 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: t72LRBAxpZy7rYglB5y2YkVXNHoOhgwcfPn91imRvvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 21:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:a4:a7:c3:dd:57:cc:5a:00:59:f2:51:97:ca:04:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: Jun 30 21:01:00 2025 GMT
Not After : Jul 1 21:01:00 2025 GMT
Subject: CN=8d37d5503f80e4b58e417063534f25610749e08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2d:be:68:8c:65:e4:c1:e1:5e:9f:c3:f6:d6:
c6:02:1a:81:41:bc:e4:c1:1e:63:12:28:08:19:65:
c7:3f:33:5a:47:48:86:4b:30:ed:e9:4c:fa:6f:18:
5d:4e:c4:35:3e:ba:e4:71:ae:83:79:56:6d:46:77:
a2:4d:2c:de:5c:0b:91:22:a3:8a:67:cb:dc:b0:fa:
a5:f2:1a:fa:ed:95:39:b0:2a:c6:37:2c:97:e3:b6:
02:1d:e8:9e:f8:b0:9b:8e:3c:7e:69:3f:ae:28:a9:
9c:27:47:74:7b:70:9c:a3:99:2f:f5:42:b6:14:39:
60:2e:31:61:a9:fe:55:db:fc:1f:16:71:7f:1b:fc:
9f:f2:4e:9b:9a:6f:90:cc:d3:16:60:c8:70:ef:45:
97:3b:3b:ca:cc:4b:47:13:92:36:65:7b:43:9b:ee:
87:f5:8e:b7:cc:f8:35:96:07:a8:3b:7f:56:a5:c6:
d4:84:60:3b:7f:eb:ab:bc:4c:f8:01:c2:8b:40:44:
07:a5:b6:ab:57:f6:cd:0b:b8:c1:84:85:d7:89:36:
f7:d9:13:8c:60:9c:2e:86:a6:69:c6:78:07:54:8d:
aa:7f:5d:84:d1:07:c1:73:72:f7:19:c8:d2:29:dd:
cd:22:8f:d4:13:5e:11:0a:fd:26:8b:49:69:c8:5b:
0f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:37:D5:50:3F:80:E4:B5:8E:41:70:63:53:4F:25:61:07:49:E0:8E
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:27:6e:aa:46:81:42:87:27:77:db:8a:86:a4:46:28:24:ba:
f4:b2:80:3e:4c:fb:6a:e1:e3:4c:fe:c2:56:23:b1:02:5b:f0:
e8:61:aa:d0:83:9c:7e:cb:3e:ef:67:64:d8:3d:32:8a:70:71:
09:e0:40:f5:5d:d9:fe:6e:35:f1:6d:ba:45:80:6a:4d:73:68:
8f:23:07:d0:f2:0e:86:c3:1d:f8:ab:21:75:97:a3:2d:4d:5e:
a7:72:38:e9:7a:3c:4c:88:11:e6:6a:19:f7:97:0b:0c:52:b7:
2a:0c:c4:6a:8f:c2:65:a1:76:dd:e8:9e:74:4a:62:fe:99:17:
60:bf:2c:28:ed:88:4c:84:2c:1a:95:6e:f2:53:37:f6:af:97:
a0:12:31:33:da:ca:13:02:c0:53:ae:00:8b:02:a4:f3:1c:64:
52:81:97:a7:ad:62:14:0c:37:86:5a:a7:29:97:ab:3f:07:58:
a7:fb:d4:21:6c:3c:03:79:7e:b5:ea:b7:45:b1:08:32:b4:a4:
e2:4a:e8:02:17:b1:c7:05:58:40:22:92:80:8c:e1:a2:99:5f:
95:b6:30:fd:3d:62:23:d8:54:dc:ae:e2:8a:e9:e2:62:a4:6d:
79:ad:1f:f0:6f:ac:8d:3e:79:74:ad:be:a3:ff:9b:f1:58:53:
2d:4d:e1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 02:36:50 2025 by rpki-client