Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
File: FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft (raw, json)
Hash identifier: bAl3OdHal3gS3ScngAZAvOA59O6A/xrTmmtJ6QDoTws=
Subject key identifier: 3E:7D:DF:00:40:AE:8C:5C:5F:19:B0:EF:28:D3:56:F6:B0:54:8F:57
Authority key identifier: 16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
Certificate issuer: /CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Certificate serial: 019A7226786B692F7768FC18C038CB8E1F62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
Manifest number: 109D
Signing time: Tue 11 Nov 2025 09:01:55 +0000
Manifest this update: Tue 11 Nov 2025 09:01:55 +0000
Manifest next update: Wed 12 Nov 2025 09:01:55 +0000
Files and hashes: 1: FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl (hash: zvK1AitOnpl1shAIQILhsUmeBmI93n4ONhaFq3WHhRc=)
2: sdQpr9vBWbo2oFyAIJwywqV94V0.roa (hash: q2Hm5+yXKjxuN/cBMa4LO9usoHIS/gexRqRStEbsYf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:78:6b:69:2f:77:68:fc:18:c0:38:cb:8e:1f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Validity
Not Before: Nov 11 09:01:55 2025 GMT
Not After : Nov 12 09:01:55 2025 GMT
Subject: CN=3e7ddf0040ae8c5c5f19b0ef28d356f6b0548f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b8:08:b9:7b:7b:f6:7b:05:e3:08:3b:08:62:
4e:98:76:b0:2e:e7:46:b0:74:b4:82:a8:8d:e8:18:
6c:55:95:56:d9:37:d4:5b:40:d6:b7:86:f6:c7:c6:
2f:ce:31:41:2a:0e:b5:4d:11:80:4c:b2:23:1a:eb:
78:a7:1f:73:2f:b2:0e:ae:2b:76:45:9a:f3:47:5c:
2c:5d:86:1a:a2:e7:e5:94:40:ca:ae:f9:c9:65:6d:
6f:86:dc:40:1c:be:97:93:a0:9a:14:82:0e:b8:80:
85:57:b1:c7:91:7f:a8:09:b7:b5:e8:b3:dd:fb:06:
db:88:ec:9f:e1:f0:ff:9a:26:65:0d:f4:85:87:eb:
ed:8b:07:29:d9:45:bb:e9:20:f2:2d:53:cc:36:47:
2b:aa:b3:28:7d:07:63:8d:7f:f5:d6:7a:c3:14:c3:
c5:ff:96:21:27:dd:f6:77:a6:07:61:e1:71:19:f0:
28:41:32:04:5c:34:e2:db:d4:b7:af:55:b5:a9:25:
05:63:f0:c3:f2:ec:a1:fe:93:57:1c:ed:06:48:e5:
b1:30:ee:bc:df:13:1b:ba:3d:12:96:9d:1c:45:a8:
bf:39:1a:35:6a:29:46:c1:30:dd:a9:63:f3:0b:de:
a9:c9:78:16:ad:b0:a0:f2:dd:8c:c7:68:6c:fd:60:
03:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:7D:DF:00:40:AE:8C:5C:5F:19:B0:EF:28:D3:56:F6:B0:54:8F:57
X509v3 Authority Key Identifier:
keyid:16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:81:5b:8b:cb:89:a3:27:ff:86:97:e4:a0:4f:80:ae:9e:39:
19:ec:26:02:09:66:38:7b:d0:f1:4a:a2:2f:6a:30:01:b9:c7:
61:86:9d:0a:63:c2:c6:35:3a:79:f5:67:eb:0a:92:f5:38:10:
ad:87:a8:41:2e:13:fb:b2:59:b0:b2:c9:7e:08:cb:5c:52:91:
51:0a:f3:75:7c:3f:6a:2a:39:74:1d:f9:8c:44:cc:89:18:31:
6d:b0:e8:5d:95:37:f9:28:d4:ee:a8:82:75:6b:0b:62:aa:2d:
6d:85:13:77:6e:4b:fe:6f:79:70:df:a1:09:6c:de:e5:6b:85:
73:a4:00:4c:3f:38:d9:89:32:6d:f9:f6:02:92:ff:5f:03:17:
fd:d2:b8:8c:ec:86:a8:d4:94:bc:64:b0:6b:04:37:9e:c1:3d:
d3:da:b0:d9:ba:97:86:a6:ec:0e:99:08:18:8c:71:92:2c:fb:
60:98:c9:3d:86:0e:cd:a2:3c:2d:35:a6:c8:ed:86:be:7a:22:
9f:59:5b:25:12:ab:ab:a6:05:63:d0:06:eb:ce:8c:ad:06:01:
c6:d2:d3:fb:cb:9c:59:fd:7e:e8:a3:cc:59:64:17:79:cd:58:
27:8c:da:ed:b3:2e:f4:eb:5e:d7:39:dc:db:ab:6f:64:24:e1:
47:4b:87:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:16 2025 by rpki-client