Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: G0c8N4VplbT2/BpAUNgVsr2dGjjmp9JRXlAYY8j77Gk=
Subject key identifier: 01:26:4B:CB:A6:DB:E5:07:80:F2:80:F2:FA:8F:E2:D7:C8:49:71:D3
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 019A26672F4B07F2136C07AA6C49E40B5D83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 1006
Signing time: Mon 27 Oct 2025 16:01:27 +0000
Manifest this update: Mon 27 Oct 2025 16:01:27 +0000
Manifest next update: Tue 28 Oct 2025 16:01:27 +0000
Files and hashes: 1: g2pmYdtMoiuQPm1G35LS-gM4tuY.roa (hash: CWDorRb0FA7mvx2YHncFLS9iEAAHLTBxgOQlA6dQKII=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: SEYdR8ZRLD7aUAgYEakb9XG4jH+L3R2J7fe2Cn+WBho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:67:2f:4b:07:f2:13:6c:07:aa:6c:49:e4:0b:5d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Oct 27 16:01:27 2025 GMT
Not After : Oct 28 16:01:27 2025 GMT
Subject: CN=01264bcba6dbe50780f280f2fa8fe2d7c84971d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c3:4c:7a:bb:b3:df:2f:24:c6:e7:21:b3:9c:
9e:2a:e3:1e:cd:d9:a7:0d:bf:0d:c7:7b:5c:b5:54:
94:84:c0:12:c4:6e:f3:5e:bf:a8:59:1c:aa:b7:4f:
29:59:14:74:d5:b5:34:7d:12:e6:b9:13:b7:be:66:
2d:bb:9f:fe:02:80:ac:ea:2f:f1:2e:be:8d:2c:71:
98:21:52:61:5a:9f:54:f1:d3:94:57:b8:15:a1:17:
c3:a7:60:24:b6:22:14:84:89:eb:78:4b:11:66:3e:
7f:cf:fa:15:71:00:42:df:e4:d4:48:1a:e4:15:73:
81:a0:4d:3b:c2:b3:67:1f:28:2f:da:ad:e3:1e:cb:
74:dc:62:40:7f:69:45:cc:c4:96:d2:f5:5b:07:b3:
db:7a:df:2d:8c:50:35:1f:5e:dd:5f:b2:3f:67:10:
5e:de:bc:d1:c0:4c:04:ee:c7:1f:f1:9b:62:35:3e:
d2:a9:16:da:d4:c3:23:5d:7d:9f:6b:a4:56:67:77:
d1:d1:0f:c4:a3:b1:dd:b1:99:21:89:df:2f:29:b2:
84:27:e0:70:a5:90:a6:88:95:ac:87:44:fe:1d:0c:
d8:60:dd:8f:b8:90:c3:7c:17:42:ae:83:fa:27:ec:
ab:2e:16:0d:39:c4:75:47:91:c5:15:d2:21:7e:51:
7e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:26:4B:CB:A6:DB:E5:07:80:F2:80:F2:FA:8F:E2:D7:C8:49:71:D3
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:06:70:f3:32:b1:ee:26:a8:2b:62:26:29:e7:4b:6b:9a:ba:
3e:06:04:86:3b:e6:79:e8:fa:d2:88:39:1a:a1:75:fb:3c:1a:
bd:60:37:6c:da:06:9c:c6:c2:ed:5a:e3:4f:0f:e3:3a:73:f0:
49:09:97:9d:46:fe:af:4e:b8:ba:6f:bc:4c:31:be:0b:e3:f8:
11:3a:87:f9:05:44:48:42:9c:89:df:33:de:7a:ce:ea:3d:83:
fa:40:31:58:1f:56:d0:48:fe:c9:31:95:0f:3f:1e:cf:46:ce:
1b:63:a0:1f:a5:84:79:7d:4a:e5:71:6b:7f:09:af:a3:a8:3b:
90:56:aa:e2:e7:8f:c5:36:8e:c9:23:38:0a:bf:31:c8:9f:34:
27:92:af:67:9a:8e:b1:cf:de:fe:9f:dc:23:ec:1b:03:4b:33:
07:62:50:b2:f4:e9:ae:64:62:f9:8e:1b:58:79:e0:d1:21:a4:
24:e2:ce:09:db:40:1a:b4:e2:b2:da:33:af:e8:9d:2b:8c:7f:
7c:6f:72:f4:5e:18:33:51:4b:0c:c8:8e:bf:ab:4d:79:ca:23:
bc:1a:79:82:f7:21:1a:2c:67:53:03:30:8f:20:c7:a5:a4:52:
5d:28:cf:1b:23:6b:b5:06:87:36:05:c5:65:7e:74:c1:60:ea:
f8:55:a2:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 00:01:42 2025 by rpki-client