Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: f0To3nbGVHiXWGknKq42H9E5JN66WhkABv8zzQvijfI=
Subject key identifier: 7A:0D:61:4F:E6:D5:4C:B7:F8:CF:90:5D:09:25:81:91:32:73:20:52
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 0199FB0ED3B2B41C3AD9DBF68B358BC00200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 01CB
Signing time: Sun 19 Oct 2025 06:01:16 +0000
Manifest this update: Sun 19 Oct 2025 06:01:16 +0000
Manifest next update: Mon 20 Oct 2025 06:01:16 +0000
Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: ZgdCk1bMbbzAa1XZks+cRVlzMdG5s5dZ7CBz1AXokNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:d3:b2:b4:1c:3a:d9:db:f6:8b:35:8b:c0:02:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: Oct 19 06:01:16 2025 GMT
Not After : Oct 20 06:01:16 2025 GMT
Subject: CN=7a0d614fe6d54cb7f8cf905d0925819132732052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:94:b7:97:09:13:c7:72:df:35:3f:7f:b6:c4:
d6:91:3f:37:11:da:af:c6:6b:b7:89:5e:95:49:3f:
47:b6:ac:7c:3d:d7:ce:11:4c:a4:85:38:e1:d0:4a:
c3:20:4b:b1:fc:1b:b2:97:d8:7a:e2:e4:d4:ac:58:
42:39:49:b9:ee:81:c9:6c:8b:e1:28:e2:56:61:e6:
53:77:c5:7e:e1:13:35:eb:c2:98:33:24:9d:13:b1:
05:52:a6:ce:ff:9b:ae:4e:2f:10:d7:f5:72:27:fa:
07:c4:fa:aa:6b:d2:3c:3d:c8:e5:a4:a5:16:e9:7c:
ab:78:c0:69:aa:63:e5:31:1a:83:af:3b:d0:ad:bc:
43:b1:e6:9f:65:92:ea:52:87:a3:3d:6d:31:ae:ca:
a7:a6:90:2b:01:92:b9:bc:8d:28:f8:34:16:46:60:
78:84:5a:82:75:dc:1f:c2:c0:17:62:64:5a:78:34:
88:4f:79:8b:5f:45:7a:76:8b:ab:c9:6b:16:95:be:
0e:4e:81:8f:42:61:ae:c5:16:85:f1:0f:6a:79:99:
4b:53:58:89:89:5a:33:24:42:38:e8:a4:9f:a4:88:
69:f2:5d:17:17:4c:84:b5:e1:fd:ad:02:6e:fe:21:
8b:47:4e:bf:42:cb:fd:26:62:3a:49:17:5e:1a:c3:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0D:61:4F:E6:D5:4C:B7:F8:CF:90:5D:09:25:81:91:32:73:20:52
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:28:b9:bf:54:a2:af:16:6c:67:8f:05:1f:d3:69:40:05:5a:
54:ee:5f:12:c7:95:e0:53:b2:0f:56:32:c6:f7:ad:1d:15:38:
f8:c1:f1:ee:b2:ab:8e:ff:b9:35:0b:dc:ad:f6:bd:d3:d4:08:
d8:82:a5:64:3d:ab:46:ab:42:9a:7b:90:4d:8a:11:a7:de:e8:
49:81:c5:2f:65:4a:c2:14:c7:6d:6d:1d:ff:61:e6:bd:aa:6c:
ab:20:43:8a:a6:dc:25:02:42:bb:6d:16:45:26:e6:bd:df:c3:
79:db:5d:64:a9:eb:e1:f1:91:d5:aa:3f:b6:19:7e:0e:86:8c:
e4:6f:43:6c:c0:c4:00:34:60:bc:26:b0:0d:bd:9b:f6:5d:58:
60:07:9c:b3:5a:da:ac:84:43:f2:0b:f2:48:df:c9:10:e4:2b:
42:e4:1c:cc:0d:e0:23:32:8a:85:46:0a:3c:73:b4:44:30:2c:
56:63:7f:98:2f:bd:ac:05:b7:55:5a:8d:1d:c6:01:eb:f4:ce:
03:2e:7a:cf:f2:9c:60:65:8c:35:7c:7b:a3:3c:af:e7:c3:ef:
cc:80:95:53:8f:45:55:99:28:7b:1e:80:7a:60:ee:70:b6:77:
bc:2c:28:88:22:2c:21:e9:ce:e0:9f:69:18:3c:95:9f:fe:15:
b0:ec:87:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:48 2025 by rpki-client