Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: dR4BSHjmcStC+AqkAKZCPpmIXC1ZsgPUt2XGauFelz8=
Subject key identifier: 54:0F:B6:5D:9D:95:C2:21:06:AD:28:D8:D4:C3:02:F6:11:3D:E0:29
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019A522CCAF88C93C01DF2D37E65502F8227
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: D4
Signing time: Wed 05 Nov 2025 04:00:58 +0000
Manifest this update: Wed 05 Nov 2025 04:00:58 +0000
Manifest next update: Thu 06 Nov 2025 04:00:58 +0000
Files and hashes: 1: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: vNgTcZhFzrW9s8NC1lIHbtfldOX4KoudheEwx81tTpE=)
2: tE2-w8GfKCp0rc9wUQGDCMDaXtA.roa (hash: 2MgwOZTjIHEb4mTC8CdutjmxgqJ5RVv+wXieNgEA//M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:ca:f8:8c:93:c0:1d:f2:d3:7e:65:50:2f:82:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Nov 5 04:00:58 2025 GMT
Not After : Nov 6 04:00:58 2025 GMT
Subject: CN=540fb65d9d95c22106ad28d8d4c302f6113de029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:de:6e:ce:73:d0:58:a2:49:e2:df:34:fe:
ca:23:1e:d2:a4:7c:a3:cf:2e:dd:7d:8c:2e:89:9d:
ac:c3:1e:b9:52:83:64:76:6b:60:4c:fe:50:00:91:
c0:90:d4:5c:3f:b3:4e:13:e2:fc:ad:1f:1a:0f:c2:
55:f6:cb:49:f7:d2:df:cd:b6:86:04:2b:a6:73:10:
a2:8a:df:bc:8e:d7:40:ba:c5:93:00:15:fe:8c:c0:
73:c0:5a:72:7d:0d:a9:4a:34:76:9a:b3:26:00:45:
03:62:30:2a:55:53:d5:d1:b1:2e:8b:ae:4e:25:00:
4d:fc:de:43:ee:7f:89:39:9d:e6:6a:89:5a:2e:a2:
fa:c6:80:a0:e5:09:c3:7c:46:eb:44:2a:72:f1:cb:
91:09:9f:57:7b:6a:c9:70:a7:41:08:be:48:d2:72:
6b:fb:b4:d7:75:5a:4b:fa:57:5c:45:15:19:5f:88:
22:7d:16:b9:ae:e2:6f:60:c7:56:6d:53:ef:ff:8a:
6c:a1:82:4d:a4:3e:ea:6b:99:cb:dd:79:e3:c3:ab:
ac:19:55:d3:9e:68:65:00:ed:a8:22:b9:e4:c7:a3:
a9:cf:49:d9:e9:c1:ed:34:f9:5e:0f:b0:bb:e7:43:
30:f1:7f:69:1e:e6:bd:15:f2:e5:bd:ac:e9:96:6c:
d6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:0F:B6:5D:9D:95:C2:21:06:AD:28:D8:D4:C3:02:F6:11:3D:E0:29
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:18:56:00:b8:3c:10:3a:a9:cf:af:aa:24:ed:67:5c:65:78:
09:e4:53:9f:fb:25:a8:a1:ab:c4:ca:6f:31:08:89:0a:d5:a6:
53:9f:f7:d5:10:a7:72:0f:28:60:5e:78:93:0b:af:0c:a8:07:
c8:a5:38:e3:7a:c6:1c:3f:3c:32:74:3f:e2:6e:23:89:7e:35:
0c:cd:ae:f1:f1:15:13:3a:b6:15:1b:6b:19:37:a8:bf:3f:a6:
41:e9:72:25:06:47:8b:f6:01:eb:e6:29:7a:1f:37:e7:c0:77:
ff:3e:39:7d:a0:67:8d:2c:62:44:0c:b6:53:f9:3a:d9:29:9b:
88:fe:45:5a:e9:51:14:fb:c3:81:fb:50:73:d6:a4:6f:52:0d:
9b:43:47:e3:a6:99:1d:9a:f7:97:cd:22:53:8d:42:58:1f:92:
6d:5b:43:95:8d:18:42:c2:d3:fb:c3:8b:55:10:57:57:bc:f9:
45:b0:c2:1f:f1:c9:a8:04:3a:3d:b1:83:61:b2:96:a6:b7:b1:
64:0c:21:84:02:ad:6c:5f:f9:62:c2:65:25:35:7b:8a:b0:ad:
4d:ba:cf:6b:50:1e:f1:b6:d0:18:da:49:9b:4e:4a:5e:31:27:
dd:04:02:6e:fe:69:30:3e:b9:7a:e3:a8:b4:3d:27:12:6d:95:
76:6f:fe:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:38:50 2025 by rpki-client