Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json)
Hash identifier: 2mKDQeHOwLPY1U41xXZoCmxmLMwdnrDn2kI0D96uf4Y=
Subject key identifier: B4:F6:98:BB:08:07:4E:91:4C:E9:09:27:93:1B:6F:39:BD:15:9A:BF
Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Certificate serial: 0199FC8FCF589BA6B0F6A5A5FFA223A304CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
Manifest number: 0665
Signing time: Sun 19 Oct 2025 13:01:47 +0000
Manifest this update: Sun 19 Oct 2025 13:01:47 +0000
Manifest next update: Mon 20 Oct 2025 13:01:47 +0000
Files and hashes: 1: GNR7fo6zYUZ0aZ61h9x_BF8llVA.roa (hash: CFopZ6dmtVSvrmIdzz/ovM49rlPrGJS+jY6gLGQSqVo=)
2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: HfjteOuINcMHDEht5ACLlX2p7wT+2GPvC6ogaaSk4WA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:cf:58:9b:a6:b0:f6:a5:a5:ff:a2:23:a3:04:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Validity
Not Before: Oct 19 13:01:47 2025 GMT
Not After : Oct 20 13:01:47 2025 GMT
Subject: CN=b4f698bb08074e914ce90927931b6f39bd159abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b6:45:a1:d7:53:17:df:06:c4:c0:17:d5:18:
8f:1f:75:7d:d2:f1:a1:1a:de:ad:10:ba:d6:4b:e5:
66:7f:03:d7:90:f6:48:6e:ce:b9:5f:34:7f:df:d4:
de:7c:65:35:7d:09:c9:87:5f:fc:1c:4f:fa:07:30:
3f:ef:4d:da:a3:be:9f:7e:af:00:89:9c:c3:9e:99:
93:b1:89:0c:05:99:41:9f:27:1c:c1:47:19:49:90:
1a:d1:81:d1:e3:0e:81:b1:7a:38:16:e5:e6:a3:24:
cc:fa:95:7b:1d:fe:16:1c:55:96:30:07:d6:ed:ea:
c4:a5:ef:b9:0a:c1:4b:0b:9b:ab:bf:d1:0e:d5:c1:
0f:9d:98:1c:b9:6e:ef:2b:6c:49:22:ec:22:66:03:
2c:97:67:64:40:fd:5b:41:d7:e7:8f:73:f1:fc:ba:
7c:a2:bb:21:92:2d:20:21:2b:08:0e:75:05:e7:74:
0f:9a:e1:4f:06:62:7e:60:fa:46:e1:c5:5a:79:9c:
78:79:f9:a8:6d:28:f4:da:4b:9e:48:01:02:34:c5:
ad:56:90:6d:00:a4:f4:15:50:94:24:19:b4:1a:c3:
08:9f:1f:80:eb:80:45:01:79:80:ac:3e:39:fb:60:
49:e0:05:ea:9a:26:7d:31:6a:f5:0f:40:a5:7d:39:
b5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F6:98:BB:08:07:4E:91:4C:E9:09:27:93:1B:6F:39:BD:15:9A:BF
X509v3 Authority Key Identifier:
keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:7c:8e:af:b3:59:5a:37:d8:7f:4c:6e:da:e8:c4:7d:fb:0f:
c3:92:ea:75:90:ad:92:d5:e3:6f:c5:3f:8e:e9:13:d4:46:86:
cf:3f:a0:c6:f2:76:9f:2c:7d:69:21:f3:d6:6d:43:02:c9:9d:
12:c0:3b:10:82:1e:50:50:2d:8a:04:ce:9e:0e:65:b4:fb:9d:
87:ea:cb:ec:d5:e1:f9:5d:ef:62:6d:ca:ff:8b:2b:79:79:e2:
63:cb:89:d8:a3:c2:0f:e7:98:e4:90:00:15:c5:50:fc:c6:0e:
9e:5e:7c:fc:87:b5:56:07:81:c1:e2:c6:5b:06:4a:14:27:cd:
5b:70:46:48:02:4b:87:02:6c:13:a8:1b:1c:30:fe:59:35:69:
19:e8:8a:60:d7:8c:4c:fc:03:c6:53:9b:67:4b:fa:a8:de:a2:
a7:dd:7e:e7:6f:e4:0a:73:55:f3:64:3e:46:b5:be:2d:a2:ac:
9e:8d:b9:f4:05:5e:77:82:a1:68:8c:d4:3c:01:6e:17:60:1a:
82:4a:8a:33:cf:f8:e2:8e:b6:04:91:70:ca:90:0c:84:ed:3d:
72:36:8a:d2:5f:b9:d5:74:99:32:ae:f9:05:03:f9:72:c6:12:
45:84:ba:98:18:2a:7a:84:97:aa:b2:92:d6:cd:9e:05:93:91:
99:60:94:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:38:16 2025 by rpki-client