Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
File: fdw2QUyZG_qNkvYCflMINwsitqY.mft (raw, json)
Hash identifier: k/wLSyFsReLmot/kWqQ61lk3Rhtk2Pvr+rS2SGvUOzM=
Subject key identifier: B8:35:E9:CB:E1:48:A6:C6:9A:4C:F5:C3:1D:48:CC:A8:F2:71:9D:7A
Authority key identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
Certificate issuer: /CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Certificate serial: 0199FB7CF78E5EA113CD1B952E4340395466
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
Manifest number: 0838
Signing time: Sun 19 Oct 2025 08:01:35 +0000
Manifest this update: Sun 19 Oct 2025 08:01:35 +0000
Manifest next update: Mon 20 Oct 2025 08:01:35 +0000
Files and hashes: 1: fIi6Y7TMQAIgGM-S2BYF-rhLP0U.roa (hash: frVihHDK+8j5US3CUXtBypHsqdv++cToSbTh8ao+mTk=)
2: fdw2QUyZG_qNkvYCflMINwsitqY.crl (hash: okEmzhncYaTxYPEe4MVc5f0xeiT468e4qQ0GMGZyJJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f7:8e:5e:a1:13:cd:1b:95:2e:43:40:39:54:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Validity
Not Before: Oct 19 08:01:35 2025 GMT
Not After : Oct 20 08:01:35 2025 GMT
Subject: CN=b835e9cbe148a6c69a4cf5c31d48cca8f2719d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0f:09:ab:b6:40:17:3b:be:09:f2:f0:8b:9a:
0b:41:8c:91:ab:54:62:71:ee:1c:c7:68:e9:42:bb:
98:27:f8:d8:59:be:7c:a3:0a:ea:bb:9f:c0:b3:d5:
b8:06:72:8c:2b:ff:18:69:58:77:a2:c8:6f:2b:97:
d5:45:d1:21:14:b7:90:d0:07:91:5d:93:1a:85:45:
c8:3c:74:fb:a6:99:94:71:65:ae:48:d0:d1:53:36:
10:89:77:33:23:2c:75:c0:ec:88:27:bb:56:7b:18:
f9:1c:81:36:2c:49:25:07:01:7b:24:26:e0:7b:eb:
90:08:a7:73:a6:38:55:ce:02:93:90:03:a4:5b:4e:
2d:b1:db:40:50:4c:82:76:e8:24:21:9c:cb:be:e0:
a6:aa:af:49:f6:69:02:86:9f:7f:43:36:2d:4a:b8:
05:58:4b:3e:09:d1:d2:ce:17:21:fb:e1:4f:7c:c8:
09:35:16:59:c8:f6:a8:4d:6d:60:c9:60:9f:2b:cb:
6e:e3:c0:97:1c:44:27:48:fe:42:f9:cb:72:46:27:
e9:82:ab:38:ca:bf:e1:74:72:29:2e:3f:66:90:a2:
36:07:f7:bb:28:d0:e8:dd:ca:69:5d:f0:9f:19:32:
44:9b:a6:0e:36:83:80:35:65:84:7d:73:3a:61:e3:
82:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:35:E9:CB:E1:48:A6:C6:9A:4C:F5:C3:1D:48:CC:A8:F2:71:9D:7A
X509v3 Authority Key Identifier:
keyid:7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:21:4f:e3:e8:ca:4b:20:cb:38:b2:33:06:46:04:0d:e0:d4:
28:78:d0:7e:df:69:4f:17:13:3c:d9:fa:0e:3f:c2:1a:c9:da:
d1:78:92:eb:79:7a:f2:23:5a:e6:95:97:93:cf:bd:89:b6:4b:
3e:c4:89:bb:e9:d5:75:71:1f:ef:1a:c9:25:4a:a9:6e:18:7d:
57:4f:cc:83:a4:88:95:ff:17:92:52:58:82:ac:50:dd:a5:0c:
cf:5f:ff:7a:03:e7:d8:83:8d:11:ee:6f:24:15:0e:9f:40:82:
4e:4d:c1:9b:d4:da:a5:96:02:14:4a:09:c6:a9:08:1b:f2:8c:
ac:d5:72:c1:50:cb:6c:f3:cd:45:38:4a:f8:ef:f0:70:b0:f0:
bb:c3:e0:0b:11:1c:93:e1:f9:98:eb:49:a6:00:a9:da:84:2f:
fd:56:dc:ea:af:3b:ad:85:2b:e6:3b:44:8c:77:f0:d7:23:42:
09:5a:ba:f8:be:ce:f9:7a:a2:83:bb:e8:55:07:6c:bd:a7:2d:
5c:d3:e7:33:1a:72:2b:38:9f:6a:7d:ef:09:a8:c6:fa:5c:1e:
14:ce:ba:60:2b:25:04:ff:0c:48:de:b2:7e:86:ab:fe:6b:f7:
8d:cb:02:b0:a1:06:6f:dc:fd:6a:63:40:35:cc:7b:e8:28:ee:
c8:83:07:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:47:28 2025 by rpki-client