Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: BSt3LoHarwxlIv0mKzMvvjzx8b+By3xQnLBtfAEaRqY=
Subject key identifier: C5:62:A3:F1:87:66:0A:45:39:DA:CB:A7:51:3A:0D:D2:12:E5:A5:01
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 0197B7B2F427CE9F138769031A93814A7D30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 9F
Signing time: Sat 28 Jun 2025 18:00:47 +0000
Manifest this update: Sat 28 Jun 2025 18:00:47 +0000
Manifest next update: Sun 29 Jun 2025 18:00:47 +0000
Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: sxvaI7zd68OCG/9Nr6W3zYqFDSoXWAiepr2GsaIZzdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:f4:27:ce:9f:13:87:69:03:1a:93:81:4a:7d:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: Jun 28 18:00:47 2025 GMT
Not After : Jun 29 18:00:47 2025 GMT
Subject: CN=c562a3f187660a4539dacba7513a0dd212e5a501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:a5:fe:43:87:da:f7:b9:f9:80:f0:4e:58:
8b:b8:dd:6e:c1:80:8c:6e:74:ba:c3:72:a1:dc:01:
b3:92:02:9b:22:a2:60:29:fc:88:d7:1b:6f:16:f5:
b2:ee:4f:10:44:bf:e6:2a:03:6f:ee:b7:5e:2b:c0:
92:0c:a2:8e:8d:79:03:08:67:2a:52:b9:b4:37:c7:
55:1b:ea:90:58:a9:38:31:7c:d6:ba:da:be:ae:bc:
7e:56:c6:01:16:ab:60:42:84:1d:5c:71:6e:25:21:
5c:50:36:03:01:00:38:c3:a1:62:aa:9f:07:bc:85:
74:5b:e5:d5:18:c1:73:b4:db:3c:85:6c:8b:7e:da:
03:90:a2:88:49:bd:fe:1c:76:c2:e1:d1:c7:24:f1:
29:33:02:03:bc:78:7f:8c:be:42:a3:ed:19:59:f8:
81:c5:93:e5:fe:75:60:df:35:d7:7e:f1:02:6a:c7:
9c:6c:f2:c3:c3:5b:32:c8:f5:ad:c2:6d:76:8c:87:
66:87:80:8c:b6:70:39:c6:df:a5:68:28:be:08:db:
c2:6a:e7:a7:5c:3b:7d:56:ae:8a:9c:ff:21:64:c8:
ed:d6:f2:e8:3c:f8:1f:5d:f5:36:46:2b:e2:24:df:
87:14:f8:da:4a:56:fe:39:38:bb:9b:5c:84:98:41:
b2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:62:A3:F1:87:66:0A:45:39:DA:CB:A7:51:3A:0D:D2:12:E5:A5:01
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:3f:dc:ab:90:5b:fa:2b:67:f4:bd:a7:06:c3:6e:e0:9f:96:
59:62:fc:58:ec:0e:0e:e5:aa:9e:70:38:bb:f0:7b:eb:3c:0a:
83:5e:7d:bb:8d:c2:19:ee:fe:50:d9:63:52:02:af:96:aa:ce:
b3:4e:b7:1a:1d:3d:90:39:c4:0f:80:5f:d9:20:44:ef:8f:2c:
b6:63:1b:59:19:85:fc:16:25:0c:0a:4e:e6:94:83:24:3e:30:
ae:f5:c3:d2:88:b3:bb:92:d1:4c:21:ae:73:9a:c4:2a:96:15:
24:a8:dc:8c:10:69:7b:94:c5:98:5b:cb:67:ac:dc:51:f4:38:
ee:58:13:c9:67:30:de:40:88:d8:da:36:a6:61:82:38:5e:97:
68:3f:9e:76:55:e1:13:4e:bf:c3:fd:e5:9d:71:74:21:70:0f:
ab:67:3e:c9:82:4d:66:cd:8f:4f:09:20:3c:1c:39:cf:5a:d4:
a6:b8:77:25:89:ce:5a:20:69:a9:6c:d6:72:cd:45:54:99:6e:
a4:cd:63:23:70:b9:32:a7:97:b2:6d:a1:9d:24:8c:66:76:32:
8e:de:81:35:35:90:06:d6:74:b5:6e:53:b4:4e:3b:a3:9e:01:
2d:e4:c7:e1:61:ec:ba:56:88:b2:97:a1:04:c6:73:d4:56:18:
4d:60:9f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:53:25 2025 by rpki-client