Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: jaEmVyZGyi3lJemPixt0MiyefX6zGb4tTh11/U2HlE0=
Subject key identifier: E4:F2:70:53:85:91:C5:E9:80:90:A6:01:EB:3D:DE:D4:AD:67:F9:40
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019A011108A0E77C47C4775B4AFB4D775073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: AA
Signing time: Mon 20 Oct 2025 10:01:24 +0000
Manifest this update: Mon 20 Oct 2025 10:01:24 +0000
Manifest next update: Tue 21 Oct 2025 10:01:24 +0000
Files and hashes: 1: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: PUfCaO/q1OiaQk9mhFHnhtuxfu0w6++f4aeThxmmejU=)
2: tE2-w8GfKCp0rc9wUQGDCMDaXtA.roa (hash: 2MgwOZTjIHEb4mTC8CdutjmxgqJ5RVv+wXieNgEA//M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:11:08:a0:e7:7c:47:c4:77:5b:4a:fb:4d:77:50:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Oct 20 10:01:24 2025 GMT
Not After : Oct 21 10:01:24 2025 GMT
Subject: CN=e4f270538591c5e98090a601eb3dded4ad67f940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d1:ec:04:5e:60:51:5e:87:c5:dc:c8:8c:de:
36:97:18:a3:1a:53:80:83:21:fd:6d:10:b3:40:fe:
e1:b4:ba:63:99:43:40:30:dc:93:fb:5e:49:70:a1:
71:ad:47:0a:24:ba:c2:18:37:40:fd:60:aa:ed:30:
82:c1:26:0b:3c:b1:49:26:32:54:41:50:d6:df:f8:
d4:5e:7d:71:fb:e9:91:47:af:e0:3d:7e:bb:67:f2:
9d:13:6c:80:25:ab:9d:24:c7:4c:91:2c:87:84:5f:
c0:26:df:e6:e0:25:14:1e:94:b3:ba:11:3e:a8:b8:
c1:e6:9b:48:d9:50:f2:0b:d3:ac:ba:60:2a:29:73:
e6:40:ab:39:36:52:8f:48:79:b1:42:56:56:67:08:
2d:c5:57:bc:12:bb:6c:5f:ec:e7:e4:38:31:f2:11:
7c:58:0f:60:98:3b:5e:db:5e:3e:56:39:d9:ef:8e:
db:72:32:e8:84:b2:79:fd:ed:c0:aa:9c:58:dd:0d:
52:60:44:4a:60:44:25:3c:e3:cb:7c:62:2b:7f:57:
47:f2:bd:3c:31:3a:a0:54:ab:9b:46:89:3f:d1:d1:
54:76:24:62:bf:16:be:3d:6d:a8:b5:5a:e8:44:21:
58:47:7c:ab:5a:87:a7:14:e8:39:e6:17:af:5b:02:
9b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F2:70:53:85:91:C5:E9:80:90:A6:01:EB:3D:DE:D4:AD:67:F9:40
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:6e:70:f5:95:1a:7e:b7:fe:e2:e7:38:6e:c2:b6:d2:79:ac:
ab:64:e6:2f:86:20:a9:a8:25:4e:be:81:ad:ea:d5:8e:e7:99:
ba:03:84:7b:52:6c:b1:ae:2b:d9:a7:5b:c2:87:a7:b7:2e:fe:
c4:85:51:ca:14:7f:65:3e:6c:e5:ed:e2:b2:ad:02:57:fc:c8:
c9:70:fd:be:34:ae:2f:bc:f0:f8:13:71:2c:f1:c6:62:d6:fb:
de:e9:29:de:3f:5f:d2:84:8a:82:e6:73:b7:35:8f:90:10:55:
a2:28:08:e5:da:85:1c:00:65:57:61:17:b1:07:4b:52:aa:96:
0e:d7:a3:cb:09:9d:82:1e:fc:f7:3f:f6:1e:61:c5:e6:df:68:
88:87:15:e8:be:b7:c4:98:d4:01:43:ef:4d:74:6e:49:df:23:
10:63:26:0d:43:43:99:e4:b8:7f:30:26:6e:12:b1:d5:99:67:
fb:12:dc:86:03:93:94:1a:28:df:c8:15:b3:fb:e9:7f:1b:49:
bd:62:62:89:19:40:fd:97:27:1a:c6:1a:98:ef:a8:20:0a:59:
c5:27:34:7a:4f:01:a6:37:46:cf:53:23:d6:5d:27:e2:61:73:
1a:bf:7f:e0:b1:c9:ad:7f:7a:4c:73:8c:bd:78:e1:10:d7:8b:
9f:f3:cf:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:41:13 2025 by rpki-client