Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: oUawNVsUquWbJ2aCcOEV/qgrSdThoye7Fc+d4tg+pPQ=
Subject key identifier: 1E:B0:15:5B:5A:2A:B0:FB:B4:99:4A:DB:DB:29:24:10:AD:9D:13:63
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 0198D65FB149D14FA2AE0CC45597FAEEFFD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0F58
Signing time: Sat 23 Aug 2025 10:00:52 +0000
Manifest this update: Sat 23 Aug 2025 10:00:52 +0000
Manifest next update: Sun 24 Aug 2025 10:00:52 +0000
Files and hashes: 1: g2pmYdtMoiuQPm1G35LS-gM4tuY.roa (hash: CWDorRb0FA7mvx2YHncFLS9iEAAHLTBxgOQlA6dQKII=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: LoQChbsachvnyq5+V97hNqKHrXOgahNWw3OVQAoA9aA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:b1:49:d1:4f:a2:ae:0c:c4:55:97:fa:ee:ff:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Aug 23 10:00:52 2025 GMT
Not After : Aug 24 10:00:52 2025 GMT
Subject: CN=1eb0155b5a2ab0fbb4994adbdb292410ad9d1363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8c:a8:69:5b:f5:49:d9:a9:7d:3e:de:74:90:
ed:a8:b8:f6:11:0c:5b:89:f8:85:ab:30:4f:36:16:
53:89:ed:59:e6:80:54:24:0e:fa:d9:6a:8c:c9:ad:
6a:a5:6f:c3:53:42:6b:cd:08:a5:fd:e9:12:87:57:
74:e8:4f:4b:b6:bf:2c:09:f6:9e:cf:5e:77:95:15:
c4:4d:b6:ed:21:eb:89:39:c0:da:a2:b6:1b:8a:f4:
df:69:23:0e:bb:9e:b2:47:7b:1c:52:75:7a:5e:30:
c9:89:c3:53:12:a7:96:af:f7:98:e9:0e:18:0f:48:
00:50:b4:36:9d:87:e1:42:db:28:10:f7:4e:2f:a0:
fc:58:4b:4e:85:2b:a5:b7:90:b0:a4:14:16:08:31:
3e:e3:18:39:e6:7a:83:5c:f6:f9:98:23:b1:5d:81:
d6:b0:16:1b:da:a2:9e:66:61:1e:4f:48:1b:98:1c:
a6:d7:14:71:58:d2:5d:b3:27:fe:fc:57:3d:0e:54:
ba:07:90:c8:94:cd:f1:77:e2:fd:bb:ef:08:af:71:
fd:73:da:e8:8a:8b:6a:f6:f3:5a:e7:51:6e:d3:dc:
fc:48:a3:5e:33:4f:7c:d4:de:93:5a:a3:06:6b:dc:
48:3e:f5:03:6f:94:4a:40:00:14:9a:b8:fe:c9:c0:
fd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B0:15:5B:5A:2A:B0:FB:B4:99:4A:DB:DB:29:24:10:AD:9D:13:63
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:1a:94:3a:79:c9:63:7a:69:03:cb:ba:10:85:54:36:9d:f9:
60:d6:42:40:92:3d:dc:a8:8b:2a:73:5c:1f:bb:dc:cd:7d:5f:
33:5b:7c:52:b8:53:c5:15:08:e8:10:c1:b9:6a:27:07:40:97:
de:90:bd:7a:93:49:e6:b5:4d:74:f5:b8:4f:a8:89:c5:ca:ee:
42:fe:34:53:7b:7d:ee:27:b2:6c:72:be:67:b0:ee:56:d6:de:
7e:6f:2f:17:f7:80:90:bf:89:4c:dc:c4:45:10:20:a2:ae:77:
6b:a0:d2:1e:4d:9f:0c:59:de:78:43:5c:be:95:11:55:72:57:
21:b6:cc:14:46:2d:3d:21:b7:83:a6:5b:d1:98:28:9b:68:56:
a2:2e:f5:c3:23:ed:76:ff:f1:ea:38:f9:79:b5:91:60:8c:bb:
39:cc:3b:24:d6:8e:73:11:aa:af:23:8a:c9:2c:fa:37:17:82:
46:1e:26:6f:0c:3d:d6:77:d7:f5:ff:00:ec:62:0f:5a:0b:3e:
94:76:bf:78:06:69:71:3c:aa:47:0a:88:b7:44:b3:e6:07:73:
72:fb:a8:30:41:2a:57:76:e0:d0:60:4a:0b:aa:92:03:89:9d:
70:c4:9f:1f:ba:5d:3f:99:fc:19:3e:ee:8f:0b:61:a0:e3:58:
56:d1:b5:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:36:07 2025 by rpki-client