Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
File: fi4pGEMoSetx6V3EDRB56oZfYQk.mft (raw, json)
Hash identifier: KOyMPkxB0sQIRPhRGBxZOp2cb0oajmzaA2Fo75S6zdw=
Subject key identifier: A1:D2:21:D3:48:DA:03:25:FA:E6:F6:B5:E2:C3:22:20:DE:D5:11:78
Authority key identifier: 7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
Certificate issuer: /CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Certificate serial: 019A4EF53291470CCDB9F945181860BD8548
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
Manifest number: 0A28
Signing time: Tue 04 Nov 2025 13:01:23 +0000
Manifest this update: Tue 04 Nov 2025 13:01:23 +0000
Manifest next update: Wed 05 Nov 2025 13:01:23 +0000
Files and hashes: 1: S1dC-8FvWd5r91Ep_3NW-RYRFSM.roa (hash: WN6IJU4enC30WWGrEp1TUJBHxrmIxnrzAFySxPEWWA0=)
2: fi4pGEMoSetx6V3EDRB56oZfYQk.crl (hash: Mib+rYmNgdZ/HwsCY5izR2Q5ocV356OzwNl8GGMOT5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:32:91:47:0c:cd:b9:f9:45:18:18:60:bd:85:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Validity
Not Before: Nov 4 13:01:23 2025 GMT
Not After : Nov 5 13:01:23 2025 GMT
Subject: CN=a1d221d348da0325fae6f6b5e2c32220ded51178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:69:b5:f6:5c:43:c5:9b:ab:0e:de:bf:bb:8d:
71:ba:d9:27:73:f4:b6:f7:81:78:fb:06:82:e1:a1:
8f:8b:a3:de:1b:ae:06:57:c2:fe:2a:cd:31:72:e9:
0b:29:9b:42:95:57:c8:6f:59:d5:18:60:78:4f:a9:
9e:fb:9e:ab:bc:77:9b:09:e6:0f:03:25:64:29:b8:
31:3d:76:68:13:9c:04:1e:ed:01:97:14:b8:b4:10:
51:09:f1:bd:91:3b:5b:1c:e5:89:ce:e8:22:4a:58:
20:96:c8:fa:06:ec:ec:26:2a:0c:ef:fa:b5:2c:3e:
8b:62:67:06:ee:84:c6:40:0a:b2:c3:7c:bc:8c:67:
de:ed:e8:ee:85:84:6c:8d:b7:22:50:5b:de:8a:83:
a5:33:86:30:75:f9:00:1f:a9:1b:96:21:7a:35:68:
40:8c:13:05:84:f3:84:f1:1d:d7:13:80:e7:f1:a9:
88:b1:95:fb:98:eb:c0:6e:f2:55:a5:fa:cc:eb:d9:
9d:2b:4e:1c:12:6a:46:5f:c9:dc:b8:6b:94:71:cf:
79:1f:ab:69:67:96:68:32:06:fb:fb:24:55:c7:50:
63:1a:71:dc:53:87:df:f1:07:e3:81:38:fc:88:47:
1e:4d:a6:32:e2:57:86:df:d8:c9:af:b2:95:e2:c1:
81:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D2:21:D3:48:DA:03:25:FA:E6:F6:B5:E2:C3:22:20:DE:D5:11:78
X509v3 Authority Key Identifier:
keyid:7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:22:75:0f:91:75:84:ae:33:f0:01:54:10:98:b3:ef:62:9d:
76:8c:75:0f:46:ae:05:4d:2f:01:4e:2e:d5:a3:a0:41:b5:08:
94:65:1d:6f:1c:c1:d1:04:8e:3e:81:3a:22:69:fb:93:bd:10:
29:fb:22:95:70:2b:a7:5f:01:2b:7d:8b:da:fe:be:b5:89:c8:
23:52:6e:bb:22:2f:7d:bc:0e:f9:0d:ab:15:5c:4f:bc:dc:9f:
c4:3c:ee:5f:04:c1:9a:76:8f:57:22:11:51:fe:71:48:8c:fa:
e0:9a:fb:1c:69:99:2c:f3:90:a6:11:7c:e0:54:da:f2:79:d8:
7f:b4:64:94:fe:ea:98:13:de:c0:7c:30:e4:4f:dc:d4:40:93:
ae:2f:44:0d:8e:c4:a7:f8:41:3b:b3:a3:d7:05:31:e6:b1:22:
43:08:14:12:b9:bb:c7:93:a2:be:fa:1c:b6:bc:d2:4d:78:62:
f4:8d:69:8a:d5:72:9a:bf:59:15:8c:71:81:a8:90:42:bc:cb:
8c:01:3a:a5:45:ac:90:8e:5e:ed:ca:3b:4d:e9:fa:c7:ca:ab:
00:7a:0a:c7:d9:78:0c:c5:8c:2f:b8:a3:3b:4f:1b:b7:c8:1a:
1f:7d:1d:6e:9e:45:a2:61:5d:a0:5f:72:49:c4:1e:0b:d1:97:
15:5e:6b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:00:53 2025 by rpki-client