
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
File: vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json)
Hash identifier: BHjjuVSt2p/0nD8GKlh7pCWTkSXIl3yNrkMAa89yvHU=
Subject key identifier: E8:7E:C8:72:3E:64:8A:DB:A0:29:5E:2E:8B:90:78:77:97:C6:DC:D5
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial: 0199FC58AF3B981934290B78F991870864F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
Manifest number: 0800
Signing time: Sun 19 Oct 2025 12:01:34 +0000
Manifest this update: Sun 19 Oct 2025 12:01:34 +0000
Manifest next update: Mon 20 Oct 2025 12:01:34 +0000
Files and hashes: 1: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (hash: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=)
2: tAG_ogHK36F9dYARrabqMiVm7WI.roa (hash: XyLTR6YvVH7wVie2ZS7kPXzKlWsXCj8THEJuI5lJwIg=)
3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: jUb0dfTbFkH4xJPZKw61m0e+vO4/07pmH46vDEHyiWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:af:3b:98:19:34:29:0b:78:f9:91:87:08:64:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Validity
Not Before: Oct 19 12:01:34 2025 GMT
Not After : Oct 20 12:01:34 2025 GMT
Subject: CN=e87ec8723e648adba0295e2e8b90787797c6dcd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:97:76:73:5e:ef:33:6b:80:06:6b:60:b1:ae:
6e:6d:f3:33:5f:ba:13:35:c2:12:7d:33:e7:52:07:
26:e4:58:63:e6:c7:f8:26:cf:81:ab:b3:5e:61:6d:
ce:b8:8c:74:43:68:2d:29:07:a4:db:35:d6:e2:47:
31:7b:78:69:bf:c2:97:55:3e:9d:53:90:be:ff:f2:
ac:b5:f0:47:c2:d2:bb:fb:38:2d:ac:2a:27:ff:3a:
00:86:85:da:e8:aa:39:82:20:51:e0:31:8f:d0:53:
65:04:9b:a4:28:6e:39:e3:5c:f4:69:6d:c7:61:06:
3c:13:c2:d8:0a:3a:2a:e8:bc:52:0b:0b:26:34:43:
0d:c7:49:1f:b7:c5:2f:bf:86:20:98:2c:31:1f:b0:
ba:72:aa:00:04:e4:7d:96:ec:34:33:96:68:99:b1:
05:29:0d:37:57:e6:88:01:f7:e6:2f:69:32:1a:7c:
6f:c8:39:5a:36:13:38:07:9c:72:48:ea:ca:2e:41:
50:e4:d9:c8:5f:49:79:6f:a7:be:69:a0:16:80:a8:
33:f7:78:ad:70:45:13:40:96:f1:f4:0d:38:4e:a6:
81:bb:38:5f:be:51:78:e1:54:00:52:52:f1:a8:ef:
83:9e:e0:4d:ea:61:72:02:a8:79:08:50:20:f1:e6:
73:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7E:C8:72:3E:64:8A:DB:A0:29:5E:2E:8B:90:78:77:97:C6:DC:D5
X509v3 Authority Key Identifier:
keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:73:d6:79:10:b8:7f:59:85:3d:f1:af:fd:e9:1f:68:38:54:
ca:bd:34:db:3a:96:3e:55:ce:a7:85:9b:ed:9b:ea:7b:7d:20:
1e:cf:db:e3:29:39:c2:cb:79:f1:53:ae:95:96:85:06:bf:cb:
f0:c2:ec:7b:42:b0:af:64:c1:c8:69:e4:90:9a:cb:bc:6a:3f:
fb:31:07:75:93:5b:86:d3:9e:23:d8:d3:78:78:13:38:5b:b5:
23:c1:45:6f:3a:11:8d:53:dd:08:19:cf:a8:60:b9:71:23:10:
5e:d2:f2:ae:5f:9c:f7:23:a3:0c:65:8c:58:5d:4a:2f:be:38:
db:79:d8:b2:b7:ea:24:0f:9e:55:8a:bb:28:87:88:3d:d9:e6:
36:e9:3d:b8:60:7b:c8:ce:8d:a8:b1:ab:91:02:09:fe:e3:53:
1c:63:e1:53:2c:69:0d:9a:47:c2:36:6e:e4:a6:1b:9d:8e:ca:
0c:dc:e5:80:46:19:a9:81:b0:cc:38:d7:18:3d:e5:83:37:56:
d6:c2:44:ae:e2:78:b4:66:2a:77:bc:1e:5b:49:ea:48:8a:2e:
24:0f:27:26:9a:eb:b5:ce:22:6e:bf:db:1e:0d:99:fa:01:f7:
11:d0:4d:fd:00:aa:fe:e5:cf:08:f2:8a:8b:ad:f1:73:e3:ea:
2b:3e:f2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:19:05 2025 by rpki-client