Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: XjKVApOhR7j7edNxkOsvKOoknIkH5XGqPBDhjJ0gF58=
Subject key identifier: C9:00:AD:C0:F7:39:AA:D6:49:EA:AE:E1:57:D2:EC:67:86:6B:50:8A
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 0199FBEB0193BE55C08044482EC530028072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0FF0
Signing time: Sun 19 Oct 2025 10:01:46 +0000
Manifest this update: Sun 19 Oct 2025 10:01:46 +0000
Manifest next update: Mon 20 Oct 2025 10:01:46 +0000
Files and hashes: 1: g2pmYdtMoiuQPm1G35LS-gM4tuY.roa (hash: CWDorRb0FA7mvx2YHncFLS9iEAAHLTBxgOQlA6dQKII=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: tm2g41kgrZ5PDipNd5HGtX6CLW3CdzH9J+BjUcV9muk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:01:93:be:55:c0:80:44:48:2e:c5:30:02:80:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Oct 19 10:01:46 2025 GMT
Not After : Oct 20 10:01:46 2025 GMT
Subject: CN=c900adc0f739aad649eaaee157d2ec67866b508a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ff:36:05:fb:80:a5:c3:51:db:73:33:31:f8:
5a:49:ea:eb:8a:fb:2b:73:ef:dc:cc:db:be:82:36:
77:a3:10:4a:01:e0:46:e9:80:2e:3b:c1:9d:01:54:
dc:08:b0:63:cc:4f:6d:55:33:61:1c:86:12:08:28:
1b:17:ab:8f:7e:5f:6a:23:10:a5:3c:51:83:c5:d8:
ab:d1:57:4c:8a:32:b4:d1:2f:70:d2:64:38:03:ad:
41:10:e2:c1:fa:e0:dd:b5:ed:2c:b5:35:d1:d1:e3:
f3:43:d5:39:fb:d7:67:59:db:45:72:80:f7:70:c2:
e3:43:66:85:92:48:a4:d5:ca:0c:5b:63:93:3f:79:
32:37:f1:1c:d1:ce:fe:ca:61:9d:16:c9:bc:e1:bd:
32:32:60:8e:34:cd:d6:1e:df:f7:9f:5d:dc:d3:58:
1e:6c:4a:ca:f4:bd:cb:54:bb:9b:2c:31:33:8a:dc:
51:a1:b2:18:c6:4e:c8:06:55:a5:27:f9:be:c0:bf:
f5:a3:5a:44:20:a7:fe:6b:f7:d4:73:5d:2a:2e:25:
8c:b9:ca:d1:44:2b:0f:f4:6d:6d:3a:6e:2c:70:42:
95:a9:bf:64:91:12:75:97:64:5a:86:59:63:00:6a:
58:06:86:bb:c7:0b:61:98:81:53:34:83:cd:cd:fa:
fd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:00:AD:C0:F7:39:AA:D6:49:EA:AE:E1:57:D2:EC:67:86:6B:50:8A
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ca:5b:e9:6a:4b:63:86:d6:61:f4:a8:6d:59:d7:e4:b3:29:
4b:36:a6:fc:8c:43:15:22:f9:46:82:e5:2b:4b:7f:71:be:d7:
ce:c0:9f:ba:19:40:89:a0:a8:b2:36:d1:a7:24:03:d9:bd:5f:
9e:51:6f:ce:b3:3b:c1:cf:91:f5:b6:de:83:b7:40:31:0d:11:
f3:69:f2:30:2a:f1:de:68:28:50:42:e8:b3:c1:d8:5d:3e:45:
06:dc:1e:32:00:19:58:d6:d2:c4:ff:46:78:cf:03:d3:ce:4d:
3c:3b:bb:d2:b7:3b:c6:30:29:f5:1b:58:85:0d:ea:94:96:61:
b2:7b:a4:b3:0a:d7:ba:9f:97:75:f8:67:dd:ff:84:dd:cf:32:
ce:8b:15:0a:13:aa:b0:28:75:3a:dc:e2:22:ef:6a:03:92:78:
9d:5b:90:b1:11:40:75:7b:31:63:72:03:c6:7d:99:10:bc:13:
86:b4:b7:5e:18:ea:03:8f:fd:af:4c:b5:a4:8d:a3:e7:69:4a:
a7:2b:7d:53:58:26:ae:68:98:c4:6e:89:d1:e6:88:5e:0e:a8:
8e:af:10:d1:a7:43:b9:6e:bd:be:45:6d:fa:63:44:53:4f:a8:
58:76:d9:7f:5d:71:a6:de:4d:30:3f:d6:60:ae:6d:ca:ce:39:
8a:60:89:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:16 2025 by rpki-client