Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
File: fexyg377vE6m3dS-lDYZFrTDYto.mft (raw, json)
Hash identifier: J/ihiCk/FJ4S6PuchxkImPaUqVzdSy7H8+B0NrZhMlw=
Subject key identifier: 1F:A6:9E:B8:20:75:30:6B:51:F1:94:02:89:D9:35:B2:48:BB:56:5C
Authority key identifier: 7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
Certificate issuer: /CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Certificate serial: 019A4DE1C47D7B556D33546F5B37CE5A4E50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
Manifest number: 0DF4
Signing time: Tue 04 Nov 2025 08:00:32 +0000
Manifest this update: Tue 04 Nov 2025 08:00:32 +0000
Manifest next update: Wed 05 Nov 2025 08:00:32 +0000
Files and hashes: 1: U2BvE4zbzFJTHLJzSmZ1W9x-kCM.roa (hash: CneTmiRYnA+2gIbWw8P2gftXT9GSMXZurQf8UEQYJtM=)
2: fexyg377vE6m3dS-lDYZFrTDYto.crl (hash: 5qwqtgiAxqKiVRMmWgPjJaZeLA0DA2LwEY+hs5SWLA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:c4:7d:7b:55:6d:33:54:6f:5b:37:ce:5a:4e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Validity
Not Before: Nov 4 08:00:32 2025 GMT
Not After : Nov 5 08:00:32 2025 GMT
Subject: CN=1fa69eb82075306b51f1940289d935b248bb565c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:5f:b7:b3:fc:6e:ca:b7:03:80:9e:51:38:
57:d3:0f:70:c6:22:e5:95:39:82:7f:35:9c:5c:f5:
77:99:e7:eb:c4:0c:ce:8e:8d:4a:9d:ea:ad:a5:ed:
ae:17:89:ec:cb:82:d9:af:70:0a:59:c3:e9:2d:b6:
b5:ec:30:cf:64:e5:ff:8d:69:36:30:04:12:03:17:
8e:7f:26:c7:88:39:ed:ec:f7:a9:13:4e:04:e0:ec:
d0:89:38:ee:f4:4a:40:1b:5c:06:c3:44:7f:05:9c:
3d:bf:75:ab:03:e4:d2:07:07:a9:32:93:29:17:be:
11:6e:01:d8:29:d7:ef:d4:e8:42:23:bf:95:e5:db:
59:79:01:55:82:0f:82:f3:9b:e3:60:c0:66:a8:2f:
de:3b:4a:ca:15:4b:1f:88:2e:ca:84:8b:1e:f9:18:
38:23:4f:c7:01:1c:14:ec:d9:3c:b4:23:cd:5d:ab:
2b:1a:0c:7f:73:b6:85:7e:e4:38:73:91:be:eb:b6:
1a:44:c4:06:71:8c:74:4f:18:18:0d:1e:f5:b3:3a:
af:83:fd:1a:56:69:f4:0e:91:ac:f6:6b:5c:9e:c9:
b6:34:a8:91:60:6c:48:d3:e8:9c:14:fa:ec:54:53:
91:78:9e:86:3a:51:62:94:10:1b:c9:b5:02:1a:38:
f2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A6:9E:B8:20:75:30:6B:51:F1:94:02:89:D9:35:B2:48:BB:56:5C
X509v3 Authority Key Identifier:
keyid:7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:01:1a:e7:00:83:79:98:d7:8e:17:c0:db:30:ef:4b:a7:7a:
06:85:6d:e3:89:63:3b:82:fd:d0:c8:bc:ea:f8:50:59:75:78:
3b:c8:8c:de:bf:7e:8c:30:bc:9c:51:0a:2f:2e:cd:13:50:5c:
4e:b6:b7:41:1d:dc:cb:fb:fa:f4:c3:41:15:86:76:99:04:60:
f3:cf:cc:35:34:2b:6e:c5:f6:d7:90:50:bd:57:c9:7e:83:1a:
5e:27:5a:36:06:d0:c4:7d:43:40:8c:74:e4:57:e5:29:01:a1:
68:96:c0:f6:99:29:c1:41:87:c9:1d:98:ab:31:1b:f0:65:2a:
2e:70:68:ee:d9:dd:44:e7:43:76:44:47:48:cf:c6:50:dd:c2:
f1:a5:6a:29:2a:c5:77:ca:82:b8:ea:b2:e6:60:94:7a:f5:f2:
07:ac:10:e0:73:09:46:ae:6d:a8:54:9a:6e:61:03:8b:af:b8:
97:2a:4b:c0:a5:69:1f:93:95:82:f4:53:2e:0a:58:e5:ea:ae:
40:f0:70:c7:fa:2f:de:2f:cf:06:7c:40:fc:e7:c6:25:6a:8c:
35:f1:d0:13:ea:a1:59:1c:94:03:a0:c1:fa:8a:16:13:62:2e:
14:42:c0:92:0d:16:58:64:9b:56:46:b3:1c:07:59:5e:3c:eb:
70:b3:24:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:48 2025 by rpki-client