Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json)
Hash identifier: DUZFoFNqjOVE+KjC6WRaXcd3s+cvzf+e2Sk/hWiZMeE=
Subject key identifier: 5E:CF:8E:A4:50:9A:3E:6D:55:38:FC:6B:3D:CF:2E:5F:5E:49:B3:44
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 0199FCC6205E5E8A23F606E6701DD0B711AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
Manifest number: 0E08
Signing time: Sun 19 Oct 2025 14:01:06 +0000
Manifest this update: Sun 19 Oct 2025 14:01:06 +0000
Manifest next update: Mon 20 Oct 2025 14:01:06 +0000
Files and hashes: 1: 574W7z-0GVSyQ6o383reYXA7QZc.roa (hash: 7oxCz8Z8dYajS9esPzPSpl386CuN+PzQh5YVWvXB59o=)
2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: Gh3xil7qHkUQCqAi+NVaRvrIRsV4lffo/4Z7OrCrbNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:20:5e:5e:8a:23:f6:06:e6:70:1d:d0:b7:11:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: Oct 19 14:01:06 2025 GMT
Not After : Oct 20 14:01:06 2025 GMT
Subject: CN=5ecf8ea4509a3e6d5538fc6b3dcf2e5f5e49b344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1b:ff:f7:9c:32:bb:3a:08:9e:29:4a:14:0c:
0d:5f:67:59:c6:c1:56:88:06:a2:8f:8d:0d:54:50:
6b:42:1b:9d:96:91:0c:b2:12:88:99:4c:cf:22:ea:
47:e4:e3:77:ea:a8:e2:53:6d:08:89:3a:39:5a:e8:
d5:c4:cb:b6:92:34:6b:5e:66:5c:16:8d:5b:d3:a9:
6f:f4:5e:1e:98:f5:72:cb:c1:d0:2c:25:20:04:34:
d8:7f:b1:77:9f:c5:33:fa:7e:ca:89:28:e5:e0:3c:
af:7d:c5:89:85:d1:71:26:00:2c:f9:65:6e:92:2c:
7a:8d:3c:fe:30:3c:f3:db:8c:10:16:f6:38:79:ca:
f2:98:39:29:e2:ad:ac:8b:aa:16:0f:f5:98:db:86:
86:c2:ae:2b:4f:dc:bb:cb:67:9e:8e:96:12:68:a9:
54:17:9c:16:b1:72:8c:c6:39:92:ee:9d:92:68:da:
00:04:b8:9a:dc:46:65:fc:c8:0b:b9:76:6b:d2:d3:
29:44:5d:32:25:3f:05:37:e9:5f:00:02:22:cb:14:
0a:33:00:a7:27:1b:4a:27:a4:40:f4:2f:64:ab:1b:
64:1a:c1:46:bb:0c:fb:ef:df:54:6d:4a:96:33:f9:
22:5e:08:ba:81:4a:b0:f9:42:b7:dd:dc:42:5f:2e:
40:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CF:8E:A4:50:9A:3E:6D:55:38:FC:6B:3D:CF:2E:5F:5E:49:B3:44
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:da:ba:e2:e7:7b:e8:7b:11:5d:dc:03:a2:3d:19:2e:24:cc:
30:d9:da:4e:79:f0:23:76:67:74:bb:fa:3d:b3:64:c3:1a:33:
db:be:88:c8:05:09:66:cb:05:ea:46:9d:c0:90:8b:20:2d:f6:
66:71:5e:14:7d:1a:e1:44:05:d6:15:93:03:41:94:bb:10:8f:
e4:b7:11:a7:1a:56:8e:35:59:e5:a0:dd:a0:e7:cb:1d:9e:a7:
85:af:9d:07:4c:d7:3f:04:8d:a5:79:cd:99:86:ba:c7:ae:38:
ae:29:e4:85:e8:73:3b:33:c4:b3:30:87:8e:eb:05:a7:98:1f:
fa:e9:be:9d:8d:d8:74:e6:c9:38:04:d3:32:70:82:8f:42:48:
26:22:0d:6c:59:af:5b:4c:3d:0a:5c:a0:ab:c1:30:21:79:c9:
ad:e9:b0:71:97:79:6c:5b:9f:53:be:2e:d1:7f:64:24:94:ba:
57:79:9f:92:c9:e1:0e:52:c9:e6:c9:a2:53:b3:0b:cf:1a:64:
85:76:7b:87:b2:57:f8:1c:b6:c2:e2:04:af:c2:bb:9d:48:c5:
62:aa:f7:9a:de:78:6d:a8:ce:30:ac:8a:ba:f4:e5:b9:c1:e8:
c1:0c:3d:4a:e7:67:03:8f:8c:57:5b:67:27:bd:60:f4:37:39:
59:25:29:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:12:47 2025 by rpki-client