Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
File: h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft (raw, json)
Hash identifier: ZuSrAxqHjq70fyxIRb8kpkYd4Ww8indhanTR4ewgPrI=
Subject key identifier: E6:07:5F:57:CB:61:AA:C2:EB:AA:6B:E2:C3:A5:25:9C:D7:BA:78:18
Authority key identifier: 87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
Certificate issuer: /CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Certificate serial: 019A082504E85B1E3413D5657F18B2FAD9A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
Manifest number: 1295
Signing time: Tue 21 Oct 2025 19:00:35 +0000
Manifest this update: Tue 21 Oct 2025 19:00:35 +0000
Manifest next update: Wed 22 Oct 2025 19:00:35 +0000
Files and hashes: 1: EqmxfEPR61JZ1PILd4aiLsGlGKg.roa (hash: o+GN8e0CITe+H1MxoXkf/yVp/P7VliN/bKmtLSSdiwk=)
2: h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl (hash: TV2AvgF4mF5n/tPp4WGS5ARXHShw/GZwfu0ubX5yBLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:08:25:04:e8:5b:1e:34:13:d5:65:7f:18:b2:fa:d9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Validity
Not Before: Oct 21 19:00:35 2025 GMT
Not After : Oct 22 19:00:35 2025 GMT
Subject: CN=e6075f57cb61aac2ebaa6be2c3a5259cd7ba7818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2f:ca:6e:04:e8:24:f0:94:80:db:d6:e3:a9:
0c:69:4b:5e:aa:c5:68:28:78:67:4c:cd:c9:8a:92:
88:ae:ae:3a:cf:d8:77:bf:b9:a3:f0:d5:b2:23:87:
57:5f:98:3f:e8:d1:26:52:41:77:5f:97:80:9f:12:
a0:a7:ba:c1:d8:e5:e5:f7:aa:02:33:62:af:c4:74:
04:af:d2:95:6e:9e:a3:e4:10:3e:60:05:dd:da:e4:
e6:18:f7:c6:3f:4f:35:80:32:dd:f4:59:3e:4f:5c:
c5:2d:27:9f:70:dd:0b:9d:75:20:67:e1:2d:e8:51:
ff:af:6a:74:24:64:f1:ad:fe:be:54:2b:0f:9b:4f:
78:b5:88:f8:db:7e:44:64:ad:e1:1d:03:5b:fc:d3:
da:0c:06:49:af:94:3b:66:57:73:e5:bc:3a:3e:9b:
85:d1:f9:81:8e:a3:38:06:91:bc:50:07:3f:3b:7b:
aa:8f:eb:61:87:7b:51:cd:c6:90:73:3c:6e:03:56:
86:a1:38:31:d7:a7:96:23:ef:b9:5d:cb:b2:85:fb:
c1:5b:05:7f:8f:bc:34:10:0d:2a:30:38:b9:e1:bc:
e0:7d:38:86:b3:5d:01:e0:7e:e7:00:9e:00:da:f4:
37:05:85:c4:dd:6e:03:f1:74:5b:77:15:e1:2a:65:
40:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:07:5F:57:CB:61:AA:C2:EB:AA:6B:E2:C3:A5:25:9C:D7:BA:78:18
X509v3 Authority Key Identifier:
keyid:87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:02:9a:b0:fb:7e:60:d5:89:8d:26:b3:2d:fe:46:51:c9:7b:
ef:87:3f:1b:b8:c1:7f:d4:87:17:72:e6:6f:d7:fb:ce:00:0c:
91:46:e6:ad:8e:65:0b:c3:a3:14:ee:24:6c:ca:80:f5:50:0b:
c1:40:9a:dc:e8:c4:a3:f2:c0:4a:cb:db:77:e2:81:61:31:ae:
1d:97:41:b7:cc:a5:40:7f:24:b6:20:59:96:5e:c3:af:5f:2d:
91:39:9d:9d:3d:b9:62:00:18:49:a5:8d:e6:17:17:33:e0:2c:
f9:c9:63:30:c3:21:18:64:de:40:32:cf:3b:23:e1:97:a3:89:
e4:ab:8f:8f:00:4e:6f:24:e9:86:87:c0:3d:1d:e0:7e:43:b2:
4a:a2:20:5d:ea:17:87:92:da:d6:9b:3c:5b:20:25:ff:9d:16:
20:9c:06:4f:d5:a0:05:08:9f:a4:02:9c:d3:2a:f5:e0:cb:18:
3f:19:f3:e5:cc:37:4d:1a:9f:13:05:79:b8:23:89:d3:6d:f5:
28:0b:1f:84:7e:ef:29:54:d2:95:f3:dc:0f:4e:95:20:ab:22:
f6:3b:dd:b4:82:17:25:15:47:48:c5:96:c0:92:e7:bf:fa:0b:
fd:d9:5c:67:80:c0:9a:4d:33:2a:f7:de:57:57:38:ea:95:7c:
6a:d7:74:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 22:53:19 2025 by rpki-client