Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f3ffd3-31b8-472c-abfb-7a2a2172ec4f/1/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.mft
File: fe7H67XMhzzHF5ZgrPyoBNkRq2Y.mft (raw, json)
Hash identifier: WOv2j51cym5i32i6kpo1lLszzvnbew3rb5/E4QEOKOc=
Subject key identifier: F7:69:82:02:D2:15:98:13:41:F5:F0:F1:3B:90:FF:06:55:55:73:93
Authority key identifier: 7D:EE:C7:EB:B5:CC:87:3C:C7:17:96:60:AC:FC:A8:04:D9:11:AB:66
Certificate issuer: /CN=7deec7ebb5cc873cc7179660acfca804d911ab66
Certificate serial: 019A5150FC740636CC0497D593A4A68CFB87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f3ffd3-31b8-472c-abfb-7a2a2172ec4f/1/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.mft
Manifest number: 0543
Signing time: Wed 05 Nov 2025 00:00:53 +0000
Manifest this update: Wed 05 Nov 2025 00:00:53 +0000
Manifest next update: Thu 06 Nov 2025 00:00:53 +0000
Files and hashes: 1: OxZ_SQFVJ8uzPWSjGADnIMI-uGA.roa (hash: cxXlIHKPRbElTrIxapfIyNaAYnC9ppfTzQIGpRQ/AhY=)
2: fe7H67XMhzzHF5ZgrPyoBNkRq2Y.crl (hash: UOK/CYJ6KtGGUYC6r0xomFjy7x2E9XmTjtQiLwE83p8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/f3ffd3-31b8-472c-abfb-7a2a2172ec4f/1/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/f3ffd3-31b8-472c-abfb-7a2a2172ec4f/1/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 00:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:fc:74:06:36:cc:04:97:d5:93:a4:a6:8c:fb:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7deec7ebb5cc873cc7179660acfca804d911ab66
Validity
Not Before: Nov 5 00:00:53 2025 GMT
Not After : Nov 6 00:00:53 2025 GMT
Subject: CN=f7698202d215981341f5f0f13b90ff0655557393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a4:b2:25:d9:c2:b0:1c:87:93:92:1d:93:c9:
1a:47:9d:af:15:52:e6:9f:eb:f7:13:f1:1b:b8:6a:
6f:82:c9:e4:9a:20:75:d7:69:b2:a3:2d:7e:68:ac:
6a:06:43:24:83:55:41:90:67:de:6e:97:7a:08:85:
8c:55:1a:86:9c:59:09:05:c6:b9:0a:44:93:7a:f4:
0d:a1:68:11:5f:d7:e0:66:9e:68:27:fe:6f:4a:f8:
a7:ef:f1:cf:fb:92:ec:2d:0d:86:42:f6:3f:b0:d0:
28:15:97:79:f9:39:e3:e4:ae:68:92:8f:66:f1:9b:
b3:f0:8f:ef:a6:61:f0:65:7e:fc:c1:9a:66:8a:41:
39:15:aa:19:97:07:8c:ae:1f:8b:f3:09:3d:88:b1:
40:d3:70:6a:d3:e0:eb:af:0c:09:6f:80:72:17:36:
49:52:93:bd:20:eb:df:23:b5:eb:00:09:db:30:8d:
bd:73:2f:86:b6:b9:cf:0b:a4:9b:b9:a0:0b:ae:09:
41:18:ca:be:e6:27:36:37:c8:ac:93:01:00:d2:12:
77:aa:d9:ec:f6:e2:0f:c5:28:c0:51:3c:e7:13:86:
11:60:1d:f8:a5:0f:ef:74:da:be:c1:e7:e7:33:17:
0f:d2:36:fe:68:12:c3:5e:d6:b0:ea:7f:d5:c8:6e:
b6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:69:82:02:D2:15:98:13:41:F5:F0:F1:3B:90:FF:06:55:55:73:93
X509v3 Authority Key Identifier:
keyid:7D:EE:C7:EB:B5:CC:87:3C:C7:17:96:60:AC:FC:A8:04:D9:11:AB:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f3ffd3-31b8-472c-abfb-7a2a2172ec4f/1/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f3ffd3-31b8-472c-abfb-7a2a2172ec4f/1/fe7H67XMhzzHF5ZgrPyoBNkRq2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:4d:cf:a3:97:10:ea:2a:06:3e:89:11:f8:33:d8:dc:08:c2:
ac:9a:1e:56:96:88:b8:77:87:45:a1:e9:55:2d:6c:61:9a:ec:
f0:a5:22:d0:30:73:93:d3:6a:f8:8d:b6:3a:51:00:46:48:38:
1d:58:6a:6e:d6:75:5b:b7:33:e4:81:de:6c:3e:e4:b1:58:c4:
d4:ad:af:52:e3:86:05:d5:fe:c8:8d:f5:d9:fe:ff:ae:d0:ab:
63:5a:86:59:22:d7:d2:a4:96:19:e2:56:17:b0:46:3f:25:0e:
1d:d8:eb:3c:29:10:71:4e:cc:6a:b3:a4:36:7a:07:b2:f1:84:
45:b4:24:db:db:b8:dd:6e:15:e6:4f:f2:d0:95:b8:83:c5:23:
aa:43:08:71:98:e3:ae:2c:99:21:dd:48:37:5f:93:ea:28:49:
a7:66:a9:ce:8f:8d:3a:f9:b9:2e:41:9f:b0:d0:1e:46:ce:76:
89:59:98:6e:51:ce:ca:6e:64:a3:c5:a3:af:75:59:96:46:57:
69:36:bf:99:c9:37:76:2f:af:ea:ee:1c:e4:9a:04:d6:de:dc:
29:25:c2:c4:27:ce:6b:22:32:c2:5c:8d:2b:6f:b2:71:c3:e6:
06:17:d0:b5:12:f0:f7:68:0c:c8:a7:71:76:25:79:6e:8c:01:
e9:8b:ef:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:35:56 2025 by rpki-client