Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: n/Z+V1oIFjpBadhrRL4/APU/0VV2GfntD65o0WTfzWc=
Subject key identifier: DC:F1:4C:7D:C8:42:57:61:95:C1:C8:B8:1D:EC:4B:A5:8A:5B:8E:F6
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 0199627DFD433F688D4E3EA44A6E7ADDFAA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 017C
Signing time: Fri 19 Sep 2025 15:00:47 +0000
Manifest this update: Fri 19 Sep 2025 15:00:47 +0000
Manifest next update: Sat 20 Sep 2025 15:00:47 +0000
Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: VAWT4RxFWxRqgzHDQLS9duh4Uch7JUROIoH9fFZ5hP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 14:36:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:62:7d:fd:43:3f:68:8d:4e:3e:a4:4a:6e:7a:dd:fa:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: Sep 19 15:00:47 2025 GMT
Not After : Sep 20 15:00:47 2025 GMT
Subject: CN=dcf14c7dc842576195c1c8b81dec4ba58a5b8ef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8e:67:7c:20:74:1d:7a:24:e5:9d:f7:a9:6d:
6c:cc:77:3e:43:4d:bc:ad:79:a6:0d:10:f4:f1:30:
af:18:3f:70:aa:73:5f:16:2f:de:f1:5a:5c:a8:e0:
f5:4e:68:2b:75:00:dc:08:e7:31:08:62:4c:0b:ba:
1f:5c:ce:56:7c:3e:ab:ce:05:7b:aa:21:ad:c3:8b:
e7:3a:3b:2d:a3:1c:88:ff:b2:28:11:00:64:b5:d3:
0f:e2:f0:44:9a:15:6b:7f:33:64:ee:ae:4d:38:76:
58:b6:77:b6:46:98:0c:46:03:c0:55:52:7c:8d:19:
ac:9c:93:a7:53:2c:b0:51:76:19:63:07:01:16:c4:
1c:5f:27:d2:4a:9f:93:7f:81:86:13:36:08:05:44:
d9:2d:6c:ee:ff:ae:64:e2:b3:c7:49:26:df:42:86:
c7:41:3d:07:4b:e6:2d:10:c1:aa:eb:0f:3e:92:58:
2c:8a:64:b5:2c:16:20:db:0a:ba:fa:a0:2a:b2:9e:
6b:80:19:84:bd:99:1d:25:64:35:c5:59:54:85:06:
e6:9e:e2:88:98:1f:83:76:4d:7f:12:50:4c:57:40:
9d:e4:eb:08:35:50:05:9a:5f:2d:a1:87:c2:25:9a:
29:18:a5:cd:a7:6e:73:da:b2:08:50:70:ef:c1:15:
fb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F1:4C:7D:C8:42:57:61:95:C1:C8:B8:1D:EC:4B:A5:8A:5B:8E:F6
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:2a:ba:c1:50:6f:90:cb:11:d7:4f:f5:8e:32:16:a1:fc:30:
36:d8:f4:cc:6c:60:e4:a6:9f:06:64:7c:b9:63:21:c3:60:8b:
eb:e5:23:27:d5:69:ec:05:4a:f9:af:b3:5a:ca:89:38:f2:59:
84:f3:c0:e5:b7:50:7c:97:ca:df:71:6c:9e:19:d4:13:fb:56:
b4:52:73:d3:4e:4a:e0:c9:a9:8e:ae:cf:91:8c:07:95:f6:01:
d5:17:21:65:bc:c0:11:d4:6c:a6:1c:73:6a:f3:ad:93:1b:3b:
73:04:55:d2:d7:71:01:79:f9:9c:38:5a:a7:85:1a:25:b4:2b:
d5:a5:74:82:c5:ae:72:e8:87:37:f1:fc:57:b1:9b:be:f7:e7:
70:20:81:9c:bf:9d:13:00:1a:b5:09:9d:6c:ae:c9:bd:bc:02:
2d:35:44:00:ef:ec:c3:93:0d:05:4e:41:45:49:82:ac:f7:bb:
61:8b:4a:1a:cc:50:33:6c:28:34:bd:04:00:c8:62:39:ca:6e:
70:33:18:b4:6f:96:3d:b2:be:74:26:78:92:3a:c0:dd:f8:d4:
24:e0:d3:3f:1f:68:9e:7a:8d:32:4d:81:37:04:65:25:f4:b2:
43:dd:f0:0d:af:8c:4e:65:47:42:3c:1a:07:87:2f:f4:03:67:
52:8d:92:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 18:02:05 2025 by rpki-client