Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
File: fXrxi3mJleFLOBNhoGu2aEm36Fo.mft (raw, json)
Hash identifier: e4xPXcdXzl2eiNfQplGcHjPxUXbV7hfLbUWJAyhTHiY=
Subject key identifier: 10:86:0D:3B:6F:0E:EA:3B:E7:86:BE:3B:39:27:F4:AD:EC:35:DE:35
Authority key identifier: 7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A
Certificate issuer: /CN=7d7af18b798995e14b381361a06bb66849b7e85a
Certificate serial: 019A4F9943EE9DF0F0934B2D83C0B862751A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
Manifest number: 0838
Signing time: Tue 04 Nov 2025 16:00:35 +0000
Manifest this update: Tue 04 Nov 2025 16:00:35 +0000
Manifest next update: Wed 05 Nov 2025 16:00:35 +0000
Files and hashes: 1: fXrxi3mJleFLOBNhoGu2aEm36Fo.crl (hash: yvIMiAuEA/H0wC3WXEGYP2WIotoYJqJ8I4SUNYL4L0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:43:ee:9d:f0:f0:93:4b:2d:83:c0:b8:62:75:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7af18b798995e14b381361a06bb66849b7e85a
Validity
Not Before: Nov 4 16:00:35 2025 GMT
Not After : Nov 5 16:00:35 2025 GMT
Subject: CN=10860d3b6f0eea3be786be3b3927f4adec35de35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f9:c5:0b:a6:8f:f0:e7:e5:21:1c:21:8e:70:
fc:5d:f7:97:40:ef:1a:00:5b:43:f5:9e:da:ff:fe:
0e:fc:15:e9:c5:83:dc:5f:10:c1:7b:19:da:05:75:
a0:c1:f1:a0:1d:4e:e5:71:a8:c2:17:25:d0:65:78:
9f:ee:e8:13:40:f2:f6:3f:8b:33:e9:47:8e:09:df:
ba:75:f4:85:a1:6b:bc:f0:f6:04:cf:75:66:19:e1:
93:29:a4:53:4b:78:8a:d9:63:eb:3a:c4:e3:7e:4d:
e3:c0:bb:a8:7b:cd:c9:28:7d:a0:89:a7:cf:9f:02:
be:59:37:97:0e:87:26:7e:9a:d4:7d:1e:b7:53:60:
91:e4:a1:f2:47:f3:9f:fa:7e:55:73:b0:ca:1b:12:
b8:eb:a9:b5:5e:20:aa:8a:55:ae:7f:00:0f:d9:36:
cd:b4:81:95:32:a8:bb:f8:8b:7e:cb:0c:ff:b3:21:
d1:58:c9:9c:9d:d3:18:7b:91:88:eb:ad:04:a8:a0:
4a:87:17:0b:6c:a9:19:08:0b:bd:d1:57:17:cd:7a:
57:89:51:c0:d3:41:a7:2e:f9:45:2a:89:ff:6f:33:
53:ce:c3:8d:81:ae:42:1b:7e:06:ee:16:e2:85:cb:
fe:ff:8e:02:2c:2f:b9:65:8d:ef:70:bb:cd:65:f2:
8a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:86:0D:3B:6F:0E:EA:3B:E7:86:BE:3B:39:27:F4:AD:EC:35:DE:35
X509v3 Authority Key Identifier:
keyid:7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ef:26:f6:14:3e:6f:48:ca:ef:02:2b:4c:d6:43:fa:7b:21:
57:29:ae:32:2b:28:ed:93:bd:4d:ff:a3:89:46:a0:2e:9c:ed:
7d:c9:bf:88:8d:0f:7f:62:34:f7:68:3b:3f:99:49:cf:08:75:
02:0a:ec:7f:fd:90:c8:15:61:5c:8c:af:7d:80:7b:1b:43:14:
73:11:09:12:bc:0e:fc:b8:84:42:9c:76:12:5f:d5:da:77:1a:
bc:cb:33:a5:7b:13:8e:f3:92:64:77:18:62:d5:12:1d:34:bd:
68:27:e5:d2:6c:12:c7:8b:0e:68:ff:c6:8b:ac:65:50:5f:8b:
2b:cd:81:14:60:44:44:b7:87:59:55:5a:0f:ec:c4:fa:16:35:
47:47:be:5a:3a:81:78:6a:84:c2:fa:71:8d:02:9e:2c:17:3b:
69:5c:e9:02:2e:4a:72:44:f5:96:ac:31:f5:d2:bb:6e:51:f3:
53:91:d2:a5:72:38:38:a5:2f:51:05:6c:3a:cc:7a:a4:46:49:
d8:68:9f:d0:ac:70:89:b1:b1:f6:5c:9c:d6:f2:db:f5:f7:a0:
98:9e:87:f4:3b:8e:00:e3:4b:1b:c2:d9:30:4e:dd:30:3c:09:
d0:87:27:a6:cb:7e:c0:71:57:53:eb:fe:cb:30:04:f7:eb:97:
e1:28:a3:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:43:31 2025 by rpki-client