Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: Ce9+ivRHmEA09pqL4E9+QYqw2c/CoE8rM3GZUSJVEuU=
Subject key identifier: BE:A4:64:7E:BB:49:23:6F:53:2E:99:0E:D7:40:AE:89:69:9C:6B:06
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 019848F7570A195B0A17CDBAA7B15BDEBB03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 1600
Signing time: Sat 26 Jul 2025 23:00:25 +0000
Manifest this update: Sat 26 Jul 2025 23:00:25 +0000
Manifest next update: Sun 27 Jul 2025 23:00:25 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: kY4g6C6jIh3sRWdb9/EGZsaJMtutUKgjwoNlj/YPIYg=)
2: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (hash: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 23:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:f7:57:0a:19:5b:0a:17:cd:ba:a7:b1:5b:de:bb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Jul 26 23:00:25 2025 GMT
Not After : Jul 27 23:00:25 2025 GMT
Subject: CN=bea4647ebb49236f532e990ed740ae89699c6b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d1:f5:1b:e8:f8:da:16:1b:a1:ac:73:84:6c:
68:0c:13:77:1a:ba:95:fd:d0:bc:1a:0c:f8:8d:7b:
17:a6:be:24:46:ae:eb:5f:16:5d:d4:a2:62:b1:00:
57:4d:f5:a1:3b:63:ea:81:5c:64:4d:71:6e:f6:be:
34:3d:ee:fb:ce:11:d8:cc:eb:b3:74:ff:86:f6:62:
50:07:89:8f:a8:92:26:cc:4d:ca:92:e2:ea:2f:eb:
88:69:a6:2c:eb:10:4e:25:23:9c:73:d4:59:df:3a:
d0:6c:c8:7d:b1:3c:6e:26:bd:82:ad:25:5f:c7:bf:
58:4d:20:79:00:88:e1:cf:05:c6:ea:77:03:09:ed:
c3:f4:94:18:55:e3:c2:8d:c1:53:45:01:b1:ea:ba:
dd:3f:5e:aa:ff:59:e7:df:06:4b:d8:94:eb:d2:d3:
c6:49:b3:e5:fa:96:ce:a8:f5:a7:d1:a7:e0:33:4a:
1d:ae:56:a8:57:f2:ff:03:dc:d0:ea:0a:0e:e7:ff:
07:11:44:14:22:01:13:d6:8f:d4:fa:25:5e:0d:b7:
d4:91:e1:07:92:95:6c:57:b9:8b:e4:ff:ed:ec:22:
fd:8c:b0:3e:bf:74:ff:7a:f4:f7:6c:ab:46:64:08:
7e:63:73:d3:96:a1:25:3d:49:c6:d3:13:b8:4d:13:
7f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A4:64:7E:BB:49:23:6F:53:2E:99:0E:D7:40:AE:89:69:9C:6B:06
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:d5:b7:6e:2f:3e:9f:4c:db:e2:7b:63:4a:c2:f2:52:ac:57:
0d:e6:ed:cd:b4:e8:05:e6:29:9e:52:6a:d7:75:f6:93:8a:8b:
d9:b4:38:78:fd:cc:61:a7:f4:9b:0c:7d:45:95:55:a6:2d:70:
39:01:13:0a:43:9b:45:4c:35:cb:32:01:3f:3d:08:fc:c5:e6:
d7:c0:8a:fd:09:37:a1:1d:5a:8a:37:d7:75:ce:18:81:7f:46:
74:a8:20:2d:4d:9e:d7:8f:f6:ca:8b:db:06:70:d4:ec:26:0e:
bd:70:b9:cb:f3:b5:6e:75:64:28:a7:0a:1b:82:ad:a3:d2:18:
63:e5:ce:23:61:73:6b:d5:a9:dd:b8:e1:57:47:65:ab:36:94:
7d:ab:8c:81:e6:74:fe:ea:4c:9d:c2:b9:a5:d7:4e:87:bc:ec:
fd:f3:28:7c:a7:a4:7a:0c:1e:d1:43:e7:53:da:7f:5b:7b:41:
ce:a0:e7:99:59:fc:ac:4e:6f:c3:e6:bf:8b:57:86:2d:c7:7f:
02:b4:43:f1:7a:6c:fb:3f:e0:2d:ff:d5:70:9f:64:a9:8a:35:
5a:b7:b2:a5:26:52:a5:e5:e6:9a:30:bc:f7:d6:8f:e9:c1:a3:
0f:90:eb:66:ec:20:3a:3d:f1:56:b0:88:7c:01:56:fd:69:dd:
cc:82:34:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:41:05 2025 by rpki-client