Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
File: FXaJHPKx2OxWwDvHqW3pWKDgADI.mft (raw, json)
Hash identifier: 7s/1TS4GXwjacU3gutQwpyeArdDLqEJyeHx+JHIOeX8=
Subject key identifier: 51:21:41:47:8B:EE:6C:ED:05:E8:E1:EC:C9:A8:33:1D:C7:3C:E1:D2
Authority key identifier: 15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32
Certificate issuer: /CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032
Certificate serial: 019A7226711159AA66F08C306D5D68F9DD45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
Manifest number: 04C8
Signing time: Tue 11 Nov 2025 09:01:53 +0000
Manifest this update: Tue 11 Nov 2025 09:01:53 +0000
Manifest next update: Wed 12 Nov 2025 09:01:53 +0000
Files and hashes: 1: FXaJHPKx2OxWwDvHqW3pWKDgADI.crl (hash: 0BF7OVspnaO90njOh4ebMCi28MisKuvh/PuorQwqPLg=)
2: pkUWU7hoqn1MoMfV_e6H2-KJHtM.roa (hash: pNc3IO7oSLkfW6eqPtj4TJMlIbS8z2hqWPYZAIIHzEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:71:11:59:aa:66:f0:8c:30:6d:5d:68:f9:dd:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1576891cf2b1d8ec56c03bc7a96de958a0e00032
Validity
Not Before: Nov 11 09:01:53 2025 GMT
Not After : Nov 12 09:01:53 2025 GMT
Subject: CN=512141478bee6ced05e8e1ecc9a8331dc73ce1d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b6:3c:45:62:14:39:2e:6a:21:e9:e1:e5:73:
2e:01:2c:80:16:35:cd:01:da:26:73:15:ac:c9:f8:
df:70:63:2c:3f:50:94:f7:d6:98:61:a7:2a:25:e7:
c0:e0:be:c3:f7:42:7f:a7:96:d1:c8:dd:92:dd:79:
ef:cc:ce:ee:70:f7:1f:66:11:67:0d:02:f1:5b:5b:
5c:68:0f:b0:44:3f:8e:47:80:96:cf:18:fd:10:29:
f9:9c:bd:d4:d5:cf:08:1f:de:ab:d4:00:3d:7a:0f:
65:2a:0e:b4:2a:04:fc:f7:62:2a:08:37:99:95:c4:
1c:a1:6f:e3:bf:5c:30:58:54:df:e3:ae:a3:65:11:
15:d3:e5:b6:91:45:c5:3d:48:f6:80:5e:e4:8e:09:
2a:87:73:c9:49:a8:5f:4d:74:30:09:d5:a1:a1:6d:
4b:5e:21:1c:93:cb:f3:49:f0:d5:0b:75:e3:89:d7:
0f:d6:21:d3:33:e5:bb:8c:b1:90:fb:07:7d:b1:47:
c5:77:ab:de:a3:89:63:9b:74:6c:a2:65:bb:54:95:
c9:91:e8:9a:51:6d:dc:e7:2c:c3:49:2a:39:b5:1c:
08:f3:ca:f3:d9:65:6e:11:50:81:78:e5:69:92:cd:
c2:e0:9a:93:f8:1a:19:ff:4c:32:e5:f9:a8:10:39:
f4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:21:41:47:8B:EE:6C:ED:05:E8:E1:EC:C9:A8:33:1D:C7:3C:E1:D2
X509v3 Authority Key Identifier:
keyid:15:76:89:1C:F2:B1:D8:EC:56:C0:3B:C7:A9:6D:E9:58:A0:E0:00:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXaJHPKx2OxWwDvHqW3pWKDgADI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf5fa-f69b-417c-bc0b-5d5bb7fe571a/1/FXaJHPKx2OxWwDvHqW3pWKDgADI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:69:32:22:cb:2a:6a:29:ac:da:44:7e:e0:d0:f0:0c:57:9c:
55:46:91:0d:60:8a:ea:b3:27:e6:ca:13:83:7c:fd:85:8a:0e:
d8:1b:a9:88:d7:70:64:8e:c8:cb:8b:9f:55:6b:61:f7:ec:83:
15:e6:b1:ce:1a:21:7f:b4:58:ef:0a:65:f2:d5:5f:67:1b:16:
cd:a5:c1:38:88:39:4a:c8:9c:8a:ac:00:6e:34:bb:9c:aa:0d:
cd:87:ec:ff:5f:f1:05:1b:bb:b8:6e:d6:2c:c7:04:87:a9:d5:
79:b9:8a:8a:e9:ac:9d:f9:6c:ff:83:f6:09:6d:f9:8f:8f:0c:
66:0e:95:c9:4e:3c:cc:b5:b1:d6:76:bd:ad:a4:c9:dd:dd:91:
ed:a0:6d:ae:af:73:bc:bc:66:9c:ab:40:ed:26:21:48:67:2f:
cc:b9:39:26:ae:ab:a4:76:93:8f:ae:91:66:fa:49:71:5e:32:
ec:fe:1b:18:30:d1:6b:9c:e6:a1:cc:e1:01:dc:4a:a4:cb:70:
cd:82:44:09:03:43:a1:17:09:bd:37:e2:b7:23:2f:d0:95:6b:
b3:d0:e1:da:98:bc:04:1f:45:c7:26:72:59:55:5e:00:81:90:
9f:4c:3f:76:fd:b4:fd:5a:61:eb:e5:ae:3b:a3:a5:94:6f:73:
11:f6:cb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:00 2025 by rpki-client