Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: 4XjeDpO4uSl5e4a42aumgepPhqLdendNlroIC3f0QBY=
Subject key identifier: 28:A9:CF:79:81:2E:48:98:DD:79:FF:2A:B3:12:9D:CC:CD:ED:AF:78
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 019A4E86995EF3CAA95B0638F54CDA5F0C56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 1716
Signing time: Tue 04 Nov 2025 11:00:34 +0000
Manifest this update: Tue 04 Nov 2025 11:00:34 +0000
Manifest next update: Wed 05 Nov 2025 11:00:34 +0000
Files and hashes: 1: 2EgNkY8LCfJBqiF5G8pJe3q0hB4.roa (hash: wdnhU8m5AMaVCnPJuJ1ikMuyahXryJ7xnwDGzqvqxIk=)
2: B9gQbAB9xsN6pQfQdJIwTw0mN8w.roa (hash: x4fcMnOhpMuR2+7kVYptH+8Mn3pldQm1ilWOcm4WRJw=)
3: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: FPG16t2NCOiGCaLRIbJCSd3VHgUiYQGyPjJwEmu18DA=)
4: jKTi0IFy2Gsl-io5IjP67e8YnpY.roa (hash: zmbRyxceh2NVjEHPxC/G8V+VaBl1rJ3CnIcL4cBiYPg=)
5: onHMu3bAahxq_cU4SfKfk6E_UV4.roa (hash: iPBBLCVey8nRw59EFOtKkUkXyLv07ioTCFN/ZWTNZaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:99:5e:f3:ca:a9:5b:06:38:f5:4c:da:5f:0c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: Nov 4 11:00:34 2025 GMT
Not After : Nov 5 11:00:34 2025 GMT
Subject: CN=28a9cf79812e4898dd79ff2ab3129dcccdedaf78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:fc:3c:76:6d:c3:63:a2:b6:9d:29:20:65:
22:a0:b3:46:bb:b4:3e:3f:e4:2e:02:b8:a1:0a:d1:
6f:6e:7c:2b:66:bc:fd:b5:61:2c:e8:d2:e3:f6:08:
69:5a:c0:7d:fd:37:85:41:e8:35:f9:ea:1f:8f:c6:
82:f0:80:49:7d:da:7f:16:d5:d1:68:b7:7c:93:59:
ae:a5:fc:7b:db:2d:c3:e8:dc:e0:cb:c4:2f:1e:f8:
94:e5:90:3d:88:e8:7a:55:77:e9:d2:88:47:bb:a5:
49:16:33:99:48:c1:80:1a:b6:6d:9c:e0:e0:fd:9d:
a0:f4:fc:08:4c:ce:e1:d3:47:72:91:41:f7:b0:c8:
d1:45:41:18:3e:d6:cb:db:6e:a8:71:e4:6c:a9:ab:
af:e4:78:49:ee:e1:57:a4:fe:67:cb:03:33:45:61:
8b:a5:11:12:c9:1c:19:ac:63:e9:f3:b8:1a:75:bf:
c1:5b:3e:ae:bb:5f:20:64:6e:f5:fb:f8:9c:0b:ba:
a4:f6:97:c3:3a:d5:5f:30:41:44:da:2d:2f:aa:fd:
63:a2:85:83:69:8c:f6:d6:a7:bc:60:5c:6a:81:c2:
8a:b6:41:c3:b4:f4:e3:64:87:16:9b:b7:c2:85:c6:
e7:b6:2b:09:11:c6:7e:00:a0:4a:60:8a:61:9f:80:
66:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A9:CF:79:81:2E:48:98:DD:79:FF:2A:B3:12:9D:CC:CD:ED:AF:78
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:34:ba:05:a6:c9:05:22:17:3d:5f:bf:df:76:70:1c:eb:42:
2b:f5:b6:7e:50:0f:a4:07:e8:b3:3b:a8:b8:c7:f4:59:c9:84:
02:48:da:f7:b4:07:da:bb:58:f0:ae:15:de:8a:b9:ee:4d:b6:
16:71:c9:2b:bd:ef:83:1f:df:23:20:a1:b9:12:12:e0:f7:57:
38:3f:10:44:2a:8f:6a:89:06:17:ca:43:35:87:73:65:7f:c6:
3a:97:d2:31:33:3a:8d:a9:8a:56:4b:be:c9:de:ae:b2:4d:6a:
07:84:5d:cb:5b:a8:92:5d:ab:d8:17:46:5e:be:e3:c5:3e:24:
61:23:75:5b:2f:3b:38:f7:d5:7a:96:b7:8c:52:a4:65:26:ed:
96:8e:de:7b:39:ab:be:3a:ea:52:f1:14:2b:a7:01:4a:31:48:
bf:6b:ea:3d:ed:ba:89:75:00:1d:97:a1:64:38:c4:56:1e:d9:
96:82:72:fb:0f:05:2c:cd:18:7f:a8:a4:35:8f:90:bb:87:d1:
99:6d:bc:74:37:d4:a4:e8:0f:02:e3:6d:8f:d3:f0:17:36:38:
96:ac:3d:32:7d:95:c2:0a:49:e5:2e:e7:29:61:23:6c:98:34:
d6:4b:53:9e:76:d5:2e:4e:86:fe:e9:97:8b:4c:5b:8a:ca:34:
cd:f8:6b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:16 2025 by rpki-client