Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
File: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft (raw, json)
Hash identifier: XG7Vj4l4i3JmTlcHSVN7whOpPed5fzDBbSG3AyOVS38=
Subject key identifier: 19:94:58:EA:EA:69:A5:2E:0B:2F:C0:55:0F:BB:77:9A:1E:06:3E:5F
Authority key identifier: 6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
Certificate issuer: /CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Certificate serial: 019A71EE9DEFC6F74B418A49F3886DAF8CDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
Manifest number: 02C5
Signing time: Tue 11 Nov 2025 08:00:54 +0000
Manifest this update: Tue 11 Nov 2025 08:00:54 +0000
Manifest next update: Wed 12 Nov 2025 08:00:54 +0000
Files and hashes: 1: 8UG5Qh7t6gkyV0rD8nZ1oL2Ckuo.roa (hash: br/1geYk5+cZ7ZJEexlmKCcjPCyNtKTSm1+1iwPC7Z0=)
2: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl (hash: 2BFdsjOUI0hB0VLs3RrGBdHirIeyk0pdA000LaJueKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:9d:ef:c6:f7:4b:41:8a:49:f3:88:6d:af:8c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Validity
Not Before: Nov 11 08:00:54 2025 GMT
Not After : Nov 12 08:00:54 2025 GMT
Subject: CN=199458eaea69a52e0b2fc0550fbb779a1e063e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a3:ac:6d:46:6a:e6:cf:25:2a:fe:23:c1:61:
64:9a:58:dd:74:87:04:bd:02:fb:04:20:a1:d2:04:
1b:ec:b5:8e:26:97:b3:fa:d2:c7:fc:98:b2:78:89:
c9:c0:16:81:a6:f5:f7:10:dc:0b:9b:3a:9c:30:dc:
7b:0b:85:f2:23:9d:9c:cd:da:b8:b4:a5:02:d0:dd:
53:44:31:65:a6:2a:6f:24:79:b1:31:db:e2:d7:b7:
3f:65:05:91:e3:4d:e3:50:73:5f:f9:90:5d:78:9d:
41:2c:35:e2:86:7f:35:08:d1:6b:02:4f:34:45:1e:
1b:92:01:35:48:e3:51:83:99:2a:66:c2:0c:89:37:
da:ff:7f:5e:13:05:c2:44:ba:ca:ee:1f:f9:8a:ff:
88:c3:c0:c2:07:a4:31:e6:72:4a:1d:7b:2f:53:be:
5d:10:26:05:11:38:d5:a0:92:83:78:af:29:3e:e5:
91:1a:d9:87:3a:23:7b:f8:28:2c:af:3d:47:d9:cc:
69:2a:79:8f:7c:33:72:db:0c:61:cf:40:42:4a:1d:
1f:1f:38:89:1a:a4:57:f5:6e:f9:7d:64:2a:2d:e2:
83:9d:c8:db:dc:a1:f0:69:da:2f:90:42:e0:57:4e:
95:dc:cc:44:de:fd:67:79:e4:c8:e5:ef:4b:9d:bb:
72:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:94:58:EA:EA:69:A5:2E:0B:2F:C0:55:0F:BB:77:9A:1E:06:3E:5F
X509v3 Authority Key Identifier:
keyid:6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:d4:8c:23:eb:3b:0e:45:f4:48:47:56:52:a2:3e:12:49:c9:
49:8b:25:90:86:38:bb:d0:07:82:1b:1e:93:96:66:be:ba:b5:
20:d5:15:df:61:28:96:36:3f:0a:12:78:0f:43:4a:6f:51:a4:
5f:dc:3e:8b:ed:13:e6:5d:d4:43:4b:d5:bc:ce:5c:2d:e5:94:
8c:42:7c:e5:d3:76:06:f9:64:ca:71:ef:89:34:65:83:ee:e0:
ce:ed:41:35:8d:35:ae:16:a9:fd:09:e5:a4:22:35:5a:87:44:
bc:ae:3b:50:68:c9:40:d8:15:67:67:7b:de:9f:ef:2d:73:5f:
6d:01:91:cf:9e:fa:d5:19:ff:b2:56:e5:ea:b2:19:7d:9d:8f:
64:2a:a1:f7:fd:d8:8d:10:2d:8c:21:e0:14:c2:c0:af:35:1c:
87:d0:0e:b5:2b:40:6d:b2:db:c7:af:f4:71:2a:47:b0:b0:51:
36:8b:14:34:a6:98:99:93:36:0f:1d:66:81:06:26:f2:e3:c5:
3d:18:80:c5:aa:8d:1f:d2:d4:a4:c6:15:47:14:52:63:13:36:
a5:b1:0c:3a:bb:5c:da:b7:1c:b9:fc:48:1e:9a:9f:e8:77:d7:
6f:37:ea:86:39:0f:5a:95:83:b0:71:85:3c:85:2d:e2:84:f2:
68:d5:a3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:12 2025 by rpki-client