Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
File: eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft (raw, json)
Hash identifier: 6EqHW4U9/yZUqq6R3GIdZ45MZtB+8O7VURGzAHN1Ihw=
Subject key identifier: BC:E0:DD:71:03:B2:6D:C6:F8:FC:BB:FE:19:C2:F3:C5:AE:23:39:69
Authority key identifier: 78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
Certificate issuer: /CN=7870621fc0afc8ec18eef20633f6148813279976
Certificate serial: 019A70DC074D8433858A29E4D5FE40E5F2C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
Manifest number: 05E4
Signing time: Tue 11 Nov 2025 03:00:59 +0000
Manifest this update: Tue 11 Nov 2025 03:00:59 +0000
Manifest next update: Wed 12 Nov 2025 03:00:59 +0000
Files and hashes: 1: Mg8uBQPef3LyJjKgZxMt4YNcO_E.roa (hash: PmmY7x5LyJJDD6LlXlPdfzSLFcMHWHakThUWPxHgQkY=)
2: eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl (hash: q5sVhrGBDJeCnVasS9+JH5911WL+AWB7v/0OKgxJt9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:07:4d:84:33:85:8a:29:e4:d5:fe:40:e5:f2:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870621fc0afc8ec18eef20633f6148813279976
Validity
Not Before: Nov 11 03:00:59 2025 GMT
Not After : Nov 12 03:00:59 2025 GMT
Subject: CN=bce0dd7103b26dc6f8fcbbfe19c2f3c5ae233969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a9:60:f0:fa:32:32:03:e9:4c:a9:80:2b:61:
a8:9d:6e:ee:5b:68:6e:9e:e9:4f:46:8b:94:0f:e6:
2b:d0:8a:f5:86:f6:57:9d:5c:26:85:da:00:71:ca:
07:22:35:a3:5c:15:f1:75:94:65:e3:4f:ac:71:91:
e3:a8:86:c9:33:59:53:6a:5b:a3:c4:ba:fb:43:65:
8e:7e:5b:92:66:2f:ac:ed:62:4e:6d:e6:09:29:aa:
ea:72:7b:0f:78:fb:4a:58:5d:1d:a1:d5:8a:7d:20:
8f:bd:f7:57:9a:13:21:09:7d:d0:d6:37:1e:49:5c:
e4:34:64:02:e4:ea:6b:4a:ca:97:87:34:17:5b:71:
d4:39:ba:52:c0:e8:5b:92:f8:9f:63:80:42:4c:c9:
85:a2:d5:bb:91:e4:23:95:6f:ad:64:65:a2:4b:1e:
3f:59:8c:49:75:14:be:4b:05:a9:89:0b:6b:fa:58:
65:35:2a:58:ef:a4:00:9c:aa:0e:ec:4a:69:b2:61:
1e:0b:8d:c8:b2:d1:8b:a8:78:cb:81:c7:36:08:be:
13:57:8f:59:d3:6d:f8:3c:bc:4b:c2:6b:88:dd:4e:
1b:2a:c6:5c:57:ee:8f:89:68:12:21:c0:7b:9e:20:
bc:52:e9:79:3c:6b:dc:a4:29:d2:b7:db:fb:70:62:
db:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E0:DD:71:03:B2:6D:C6:F8:FC:BB:FE:19:C2:F3:C5:AE:23:39:69
X509v3 Authority Key Identifier:
keyid:78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:25:e1:cd:b8:55:61:ed:e6:a2:d2:d4:8f:49:46:e1:ca:d4:
fb:cc:ea:7e:e4:d0:7e:cc:e6:19:6c:2d:45:d0:3a:da:c1:46:
fb:e7:c9:18:57:9c:27:0a:57:07:2c:9e:d4:2a:b2:a3:94:2f:
4c:05:72:dc:eb:d2:d2:82:28:69:2a:5e:a6:96:73:8e:2c:1d:
e4:04:04:70:f3:81:c7:1b:fc:89:78:51:df:a0:6f:08:95:1e:
99:1c:07:ea:11:21:df:31:3b:07:af:e1:08:27:82:fc:dc:92:
98:bd:a0:57:44:f4:53:ca:94:0f:f6:8a:a3:3b:1d:fd:40:01:
f9:b6:5e:22:d9:ff:19:8a:3b:3e:68:cc:01:d1:e0:99:eb:6e:
ad:8c:22:1b:84:57:aa:9e:56:5f:90:b0:29:37:24:0c:a8:13:
5f:52:e8:94:f9:6b:67:0a:b6:12:98:f6:bb:dd:32:c4:d0:92:
45:1e:84:67:71:77:25:8e:2a:65:ee:26:20:45:f5:c6:4d:ad:
fd:c6:81:89:30:bb:97:37:e1:4c:80:91:20:93:4b:96:a6:aa:
b9:5f:2a:58:65:fc:7a:43:6c:5d:50:62:6a:a2:c4:43:62:21:
c7:a1:ea:0d:0c:d3:4b:5f:97:8b:fa:67:1b:6d:c2:73:df:bd:
4d:fa:62:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:15 2025 by rpki-client