Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: 1cqlqQvbIczjJcEWTM6YmMjvJpM4xoCHYYsZh+cb+xk=
Subject key identifier: 6C:05:03:FE:5B:BC:5D:37:B7:F5:AB:C1:23:08:C4:BE:75:51:FF:D2
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 0198D7A96BFAEBC7CD0442290F9011E8C974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 10
Signing time: Sat 23 Aug 2025 16:01:01 +0000
Manifest this update: Sat 23 Aug 2025 16:01:01 +0000
Manifest next update: Sun 24 Aug 2025 16:01:01 +0000
Files and hashes: 1: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: yIkHMDTvQXUne/50T7hOJTPMXvL5jJUpPgXWwnRapLs=)
2: tE2-w8GfKCp0rc9wUQGDCMDaXtA.roa (hash: 2MgwOZTjIHEb4mTC8CdutjmxgqJ5RVv+wXieNgEA//M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:6b:fa:eb:c7:cd:04:42:29:0f:90:11:e8:c9:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Aug 23 16:01:01 2025 GMT
Not After : Aug 24 16:01:01 2025 GMT
Subject: CN=6c0503fe5bbc5d37b7f5abc12308c4be7551ffd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:77:43:47:8c:9b:66:14:50:13:38:19:31:
5a:70:fd:10:0e:13:08:95:3f:5c:3a:91:42:da:73:
53:36:89:1e:3f:9e:9b:b4:62:f3:06:87:6d:2f:c2:
16:9d:da:b1:64:a6:1a:59:f7:e5:55:4f:0e:50:1f:
73:a5:33:d6:27:a2:70:ad:73:60:5e:ff:0a:85:6b:
ea:c0:3b:f3:4f:fb:08:b0:9f:78:2c:dc:34:6e:c7:
83:f4:59:cf:42:ef:36:95:19:80:9a:6b:97:6a:e3:
f9:11:74:80:47:74:bb:1a:e4:d6:16:48:f5:19:43:
c0:e6:34:38:3c:cc:95:78:46:18:6c:7f:0d:f1:28:
98:8a:e5:0e:b9:b3:a2:81:a8:b6:c0:da:f9:d0:11:
e3:03:d6:3b:cd:7a:92:24:51:e3:3d:27:f4:bd:55:
13:2d:69:e7:6f:74:01:24:26:57:fe:aa:d6:0b:cf:
fe:4f:40:43:19:e3:d0:92:ab:58:fc:db:33:1f:9a:
d3:53:0c:29:41:2d:95:1c:ef:c5:c2:a9:03:2d:1f:
bc:8c:78:ea:96:06:5c:18:ba:e0:c6:a1:25:93:46:
64:71:f1:1b:79:19:f9:70:62:67:19:31:8c:d6:45:
f6:5d:f6:a7:64:50:09:24:1f:15:a3:b3:7e:87:0b:
ef:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:05:03:FE:5B:BC:5D:37:B7:F5:AB:C1:23:08:C4:BE:75:51:FF:D2
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:2f:f8:77:a9:6e:a5:99:51:c3:c8:f1:12:fe:9f:bf:74:ac:
f9:56:87:65:f8:c8:97:ff:38:9a:60:1b:60:c9:15:a3:1c:af:
8a:ea:4a:7c:88:7c:41:a0:5d:60:73:2b:2b:f6:3f:12:94:25:
2f:6a:38:db:05:7e:3c:59:77:18:0a:0d:73:3b:56:e2:df:d4:
4b:8a:b7:92:c3:52:2d:83:59:3d:98:59:af:b2:55:13:97:4e:
d7:59:cd:30:9f:b8:bc:5d:f4:1e:1a:66:11:a8:d7:d9:97:ef:
00:81:87:e4:7f:fc:52:5f:e6:d9:fa:18:b8:e6:a7:03:2b:a1:
18:50:7f:67:af:a6:1e:d1:98:0d:64:37:48:61:3e:65:83:86:
b1:17:51:19:5f:2a:80:c6:f2:86:a7:17:47:13:63:bc:1a:5b:
20:98:88:fc:03:22:6e:3e:17:0e:c5:3c:ee:ed:d5:36:73:9c:
64:21:d8:76:fd:1c:90:14:a4:2d:78:0f:f3:a1:5d:80:42:f5:
b7:12:02:31:08:e2:f9:af:d3:03:e9:10:54:6c:04:cc:43:bc:
27:07:8d:1e:8a:99:fb:ba:d6:02:31:5b:4f:87:a4:6f:71:c8:
14:b9:c9:ba:d8:c0:c0:dd:a8:f8:90:e6:7f:82:2d:82:45:07:
40:ae:dc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:43:00 2025 by rpki-client