Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: h8VNgp+Cjg5kTO1bDV+qseT1o8IudY2RG3rDSnWBXo0=
Subject key identifier: FB:9D:DC:5B:06:FD:A7:1B:DC:22:80:8B:44:9D:38:B2:35:D5:20:90
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 0199FD344F583C585885EAA7C188BE033543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: A8
Signing time: Sun 19 Oct 2025 16:01:27 +0000
Manifest this update: Sun 19 Oct 2025 16:01:27 +0000
Manifest next update: Mon 20 Oct 2025 16:01:27 +0000
Files and hashes: 1: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: Ng5pq2e6T981uCDDyAbcrNGoRHD4khjXYocOQCZK/Zo=)
2: tE2-w8GfKCp0rc9wUQGDCMDaXtA.roa (hash: 2MgwOZTjIHEb4mTC8CdutjmxgqJ5RVv+wXieNgEA//M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:4f:58:3c:58:58:85:ea:a7:c1:88:be:03:35:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Oct 19 16:01:27 2025 GMT
Not After : Oct 20 16:01:27 2025 GMT
Subject: CN=fb9ddc5b06fda71bdc22808b449d38b235d52090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:58:37:06:4f:45:ee:44:f1:6a:b5:4e:0c:86:
f4:2a:d6:99:c3:bd:c2:d3:18:db:7c:98:d3:23:75:
cc:cb:68:40:87:f6:2e:88:37:ee:65:f4:97:67:eb:
22:2d:6e:43:23:67:36:12:56:8b:63:3b:a8:9b:a5:
63:7e:84:fb:40:6d:f9:f2:c5:57:ce:2a:6c:32:b0:
2f:cf:76:c9:4f:47:c1:b4:7d:71:5a:62:04:fa:d9:
f6:be:4f:db:99:d5:f5:77:bc:e1:78:61:f0:58:95:
49:49:4f:ba:4b:f9:ed:90:fe:61:21:be:81:f0:67:
fb:b7:97:6e:4f:fe:17:7e:be:4e:cd:7a:88:fe:36:
94:21:38:e3:c4:57:f9:8f:90:37:68:c1:20:b1:7f:
db:bd:f7:0e:62:88:67:36:e6:8c:82:fd:f3:c7:79:
28:a3:a1:b9:63:1e:26:7f:90:ce:12:39:e4:54:a6:
d9:15:34:13:11:70:9f:f1:9f:f5:b6:7d:6a:7c:43:
28:ba:69:99:9d:08:4a:77:66:29:44:30:38:10:dc:
ab:a9:9c:aa:79:ba:4d:70:29:37:54:f6:dc:d1:1a:
d3:fb:f2:ee:47:73:9c:5a:83:17:6c:36:e7:47:58:
7d:b5:7e:e0:e0:37:b9:18:23:47:fc:1b:69:0f:87:
49:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9D:DC:5B:06:FD:A7:1B:DC:22:80:8B:44:9D:38:B2:35:D5:20:90
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:09:bb:49:66:a1:15:ca:27:2f:37:3c:75:3b:2a:12:51:68:
8e:11:12:e8:6f:d7:5b:24:8e:93:45:bd:33:ae:a5:28:51:24:
51:d3:f7:57:52:99:b1:e5:e8:0b:8f:48:53:67:d4:cc:b3:fd:
26:3c:bb:1f:83:89:97:5d:77:78:7f:54:40:64:b2:ff:9b:0d:
65:72:9b:dc:f3:dd:48:7c:39:ed:5b:47:f8:ed:6b:c5:7d:dd:
9e:57:83:51:d1:32:80:ab:81:cb:2a:df:69:56:8a:d4:a5:7c:
b0:4c:c1:c9:cc:cf:c8:af:96:35:b6:d2:f2:81:08:18:a5:bf:
a7:ee:4c:a7:a4:70:07:a4:6b:0c:82:00:77:04:b6:a9:05:7a:
80:8e:25:0d:5a:ab:66:60:4e:35:44:f0:0d:4a:24:5e:6b:a6:
04:31:a5:a9:e5:e2:77:0e:f6:f9:a8:bb:b9:a3:49:b2:db:93:
61:3f:11:58:12:0d:b7:7c:e6:f8:77:03:4f:d4:1b:9b:31:2f:
45:3d:9c:06:b8:55:0c:63:ad:08:ce:af:f9:0b:dd:80:26:17:
8c:13:9f:cc:ac:88:d8:8b:c2:e7:d5:5a:60:e8:85:fd:70:1d:
29:4d:90:5c:12:47:03:5e:68:37:08:51:00:26:2a:9a:20:bd:
d5:df:a0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:47:29 2025 by rpki-client