Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
File: rFPL63FQhLMioaFJyW4JxA7W2IM.mft (raw, json)
Hash identifier: zqipOy41/kRdRG4vGENQ/33XLVL99KYyQhITOTT2Mw0=
Subject key identifier: F5:0B:FD:B2:8C:E1:08:2C:D1:37:DA:13:2A:07:CD:8E:D2:E3:95:35
Authority key identifier: AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
Certificate issuer: /CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Certificate serial: 019A725C9F346D1CD8A9CC9B50CEC4C35147
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
Manifest number: 1346
Signing time: Tue 11 Nov 2025 10:01:03 +0000
Manifest this update: Tue 11 Nov 2025 10:01:03 +0000
Manifest next update: Wed 12 Nov 2025 10:01:03 +0000
Files and hashes: 1: Wfce3ZtHFc99tmFyN64Q-vZ2RpA.roa (hash: Y3X9Ri7kJ6o/ebs+JUXNiJ+ZA7lhHw1uv9ydtQHMGRI=)
2: rFPL63FQhLMioaFJyW4JxA7W2IM.crl (hash: USBi96aIFKeEXU84DhyMj4K52yWT8S6P/1c1m4OVeDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:9f:34:6d:1c:d8:a9:cc:9b:50:ce:c4:c3:51:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Validity
Not Before: Nov 11 10:01:03 2025 GMT
Not After : Nov 12 10:01:03 2025 GMT
Subject: CN=f50bfdb28ce1082cd137da132a07cd8ed2e39535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:61:a7:a3:e5:2c:28:7a:71:35:fc:71:21:36:
9e:38:2e:44:dc:fb:c7:28:dd:bb:f6:d7:b7:91:b1:
04:77:9d:ce:db:69:e4:d9:0e:db:3d:93:e0:a2:b8:
2d:b2:6b:67:b9:4e:87:7b:cd:14:6a:b1:a5:69:2a:
6c:87:4a:b1:04:60:96:72:52:1a:6a:2d:71:29:86:
2c:a8:64:83:8a:3b:76:2e:d0:bd:01:78:12:7a:48:
d2:43:b4:fb:10:d9:d7:8d:f3:16:af:cd:4c:47:33:
bb:8b:bd:3d:5b:e1:ff:69:a0:6a:04:df:26:c6:1e:
ea:98:bb:c1:99:45:df:7e:66:bf:e0:a4:81:da:11:
5e:83:3c:37:0a:0b:92:74:0d:c6:77:e9:9a:00:cc:
08:02:53:ab:68:d5:5f:14:2b:b1:da:84:ab:52:dd:
12:54:2b:9f:12:18:20:53:78:7d:7e:30:88:b7:81:
c6:74:a3:6b:ed:64:03:67:68:7b:41:f9:23:50:5d:
d6:5f:f3:c6:dc:25:4c:48:8a:8f:dc:cb:c7:0a:3c:
4a:55:96:27:0d:05:e0:16:c8:76:00:c5:90:c8:42:
6f:37:d8:4c:9f:95:e1:3a:58:f2:47:12:90:66:b5:
b0:e9:c1:94:7a:d0:35:9b:b0:7f:a7:cb:48:cc:91:
7e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:0B:FD:B2:8C:E1:08:2C:D1:37:DA:13:2A:07:CD:8E:D2:E3:95:35
X509v3 Authority Key Identifier:
keyid:AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:57:4b:c2:74:3e:5c:07:e8:c4:37:03:ea:f7:28:33:f8:f0:
f0:d3:39:e2:3d:56:de:5b:04:5c:e1:77:f1:c9:c6:a2:a4:bd:
a8:42:e8:45:4e:e6:e7:2c:88:72:8c:80:01:9b:5e:89:74:2e:
c7:2b:b1:e8:fe:8a:22:00:f5:a5:5c:85:a4:cc:6a:8c:df:11:
7d:81:85:81:53:c4:5e:a9:2d:2b:db:52:23:d1:88:f2:b2:4d:
1b:75:f2:dd:8b:54:8b:48:72:60:9a:ef:75:49:02:f8:36:33:
23:40:15:4e:ee:cc:f5:fe:2b:a2:bd:77:84:69:0d:13:4e:37:
9b:b0:69:0c:af:1f:fc:ab:72:31:cb:cb:80:74:10:c9:0f:f2:
5c:ed:1f:22:d3:66:e6:61:68:ac:31:28:29:97:69:d8:e1:02:
39:54:55:8a:b2:ec:92:49:91:a0:db:07:b6:ae:c0:90:7e:de:
f3:96:cb:48:9d:a8:ef:3a:34:6b:c7:9c:58:d2:3f:27:f5:96:
af:ba:64:1c:85:d8:1d:37:e5:1a:c7:77:ca:85:92:8a:65:ce:
28:31:de:4b:54:8c:0c:72:4c:fc:d0:a7:eb:42:06:b4:f6:7c:
b7:7b:82:29:02:d1:40:ea:50:1a:8d:ea:1f:9b:30:78:f4:84:
aa:ed:b5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:52:04 2025 by rpki-client