Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
File: BeHQfebxKPRpxMOzAorfjU034tk.mft (raw, json)
Hash identifier: EcmRhgghJ1Rhe3oQi9GtNUbAAOVwRanwCyE2Djouo0U=
Subject key identifier: 25:F9:3B:DC:B9:6B:D5:97:11:91:26:64:4A:2D:72:0E:EE:98:C4:67
Authority key identifier: 05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
Certificate issuer: /CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Certificate serial: 019923312BFA4DCB8923A4975EF3EC282F25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 08:00:48 +0000
Manifest this update: Sun 07 Sep 2025 08:00:48 +0000
Manifest next update: Mon 08 Sep 2025 08:00:48 +0000
Files and hashes: 1: 5_4qOd1GTRdKd6DbyMT4VAzgn60.roa (hash: Q449y6NU5T0NgahXGNO0aRD91GR+m9cfLNErlQRiyf0=)
2: BeHQfebxKPRpxMOzAorfjU034tk.crl (hash: 6gVPQkIh5y+GyKO/1eR1SysmE3oQWjYzyutx7WmEzhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:2b:fa:4d:cb:89:23:a4:97:5e:f3:ec:28:2f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Validity
Not Before: Sep 7 08:00:48 2025 GMT
Not After : Sep 8 08:00:48 2025 GMT
Subject: CN=25f93bdcb96bd597119126644a2d720eee98c467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b5:6f:1e:29:3e:f5:32:37:82:d5:be:bd:40:
ce:50:e9:34:4c:15:fe:12:13:f7:f0:e0:f4:13:0e:
ed:ea:b5:7b:cf:87:9d:00:bb:dc:4a:a2:10:7f:28:
80:3d:8d:f1:49:a8:28:c9:7d:b3:d7:0a:de:5f:b9:
41:91:00:c3:0b:4e:02:53:b9:e9:22:c6:6a:0f:7e:
06:29:7c:2c:92:c6:d7:21:79:48:21:1b:3c:a5:6f:
22:8d:24:03:a8:ca:88:bd:e3:60:e7:15:ba:b8:b4:
bd:b4:e7:41:ff:04:be:1c:d7:69:1f:90:0d:6c:64:
13:9e:20:a4:12:5d:cc:ef:37:26:e6:7f:33:9f:3b:
f0:44:ab:c5:fc:e5:21:33:bc:90:bd:5c:21:b5:e1:
df:b8:2c:be:21:06:81:d0:e8:73:f9:4f:42:3e:e2:
7e:40:41:98:e5:b2:90:54:47:2f:2d:fb:21:a9:fb:
e1:6f:f5:ad:82:82:3d:bb:e5:93:a9:bf:86:29:8b:
16:7b:bd:2b:5a:da:45:af:97:f6:da:b3:fa:1a:d3:
93:d8:4f:fc:5c:93:90:31:67:7d:d8:c8:5b:bf:1a:
3a:c5:18:cd:e7:2b:3a:6a:d8:59:81:9e:9b:bc:84:
ca:c4:3c:78:4b:64:63:f6:b1:ac:b8:b9:cd:54:71:
4c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F9:3B:DC:B9:6B:D5:97:11:91:26:64:4A:2D:72:0E:EE:98:C4:67
X509v3 Authority Key Identifier:
keyid:05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:82:7b:96:0c:3b:de:2f:9f:28:01:34:ce:6b:0c:1b:3d:3f:
f9:23:62:31:5a:92:6c:eb:fa:65:3e:c9:e8:14:0d:9d:e6:d0:
57:dc:05:92:51:41:8b:ea:fc:af:4b:99:d6:37:77:55:9b:c9:
23:ed:41:98:6f:6c:7f:c1:93:16:38:3b:fb:13:8d:19:bc:40:
07:31:bf:8b:f9:ba:c8:f4:4f:e4:18:6f:3b:0a:1f:dc:2b:49:
99:c5:d3:a4:30:55:cb:84:05:4f:3f:e7:5c:08:b0:cd:34:57:
08:3a:33:5e:32:a7:6a:0b:14:63:61:17:d7:0e:ef:87:85:24:
b2:f8:2a:92:54:4d:af:08:18:df:be:5e:25:22:6a:9d:ed:bf:
b9:f2:dc:ab:a4:57:e7:0a:96:03:6f:d5:41:76:51:f6:5d:39:
ba:cb:b1:f5:4e:e5:e7:36:b7:70:80:0e:0e:e9:df:d1:05:ab:
d6:3a:59:b0:76:d2:00:64:0a:b3:18:63:eb:4c:93:b7:12:fb:
63:fc:f6:29:86:1e:d7:12:21:09:c6:4d:e1:0e:14:de:a2:60:
12:b7:99:1a:3f:4b:e8:03:4a:d0:ed:0d:0e:85:20:5c:01:74:
52:03:dc:12:e0:29:ff:b4:99:32:e3:eb:24:38:e0:69:d3:24:
db:36:87:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:44 2025 by rpki-client