Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
File: j_he_yRIxzZG41Sv6mQbz3nnx_k.mft (raw, json)
Hash identifier: 4VKbrkROUfwhJh70nsBQWsNduVaIsMfyK8+91IFKgSQ=
Subject key identifier: AC:33:1A:4A:24:F2:3C:69:39:5F:FA:80:1F:7F:C4:7F:FF:38:C9:ED
Authority key identifier: 8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
Certificate issuer: /CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Certificate serial: 0198530D4651DCBAD39DBE99EE026CC44728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
Manifest number: 0562
Signing time: Mon 28 Jul 2025 22:00:35 +0000
Manifest this update: Mon 28 Jul 2025 22:00:35 +0000
Manifest next update: Tue 29 Jul 2025 22:00:35 +0000
Files and hashes: 1: izDgJyT_jFs6Afm1vFmx3IUq128.roa (hash: +piNMelo8kmyTOhWUH5qriIcmuElNVknleJSz/MJ2T8=)
2: j_he_yRIxzZG41Sv6mQbz3nnx_k.crl (hash: Z2/2PrBCHGjJuu7A5cCLWtbs6rOepfj9HS2Pkw6FH/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:0d:46:51:dc:ba:d3:9d:be:99:ee:02:6c:c4:47:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Validity
Not Before: Jul 28 22:00:35 2025 GMT
Not After : Jul 29 22:00:35 2025 GMT
Subject: CN=ac331a4a24f23c69395ffa801f7fc47fff38c9ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d0:ec:e2:45:8c:31:db:31:5c:e8:0b:63:44:
77:11:21:39:ad:6d:c5:47:35:9e:e7:12:84:9d:4c:
af:8b:15:a3:7e:7e:07:e3:86:4c:9d:1c:f4:73:44:
8f:fe:04:38:da:a8:d9:1c:0d:51:07:29:46:4d:a9:
c0:50:fe:1a:4e:69:fd:c5:ae:f1:7d:07:1e:f5:2e:
89:8a:b1:e8:72:5c:35:73:95:a9:17:1e:63:d4:15:
23:ee:fc:dd:3a:04:59:26:b6:32:1a:1c:6a:de:d0:
23:a6:b9:10:c6:52:40:db:22:4e:fc:ca:80:81:b4:
2d:f1:f9:e9:cd:4e:7f:f5:d3:f7:54:fb:5b:dc:cc:
f5:b1:b2:c3:22:f3:7f:98:87:dd:e1:c1:34:44:6d:
08:e7:2f:61:87:27:4f:31:b8:5e:27:9a:5f:02:65:
6c:ab:87:a4:21:9f:47:ce:3b:20:c8:91:0d:6d:95:
ca:84:da:74:0b:74:ed:5d:9d:32:4e:20:77:ad:ee:
2b:d0:ce:13:03:f9:e8:4c:fc:ae:34:ce:3f:07:29:
cb:af:e9:31:c8:0f:ad:2a:86:85:45:17:be:74:7d:
b5:67:ed:8b:bb:47:23:ed:f3:4c:32:94:7e:fb:82:
72:e4:61:b7:2d:de:26:ea:3f:9d:91:ae:40:20:da:
be:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:33:1A:4A:24:F2:3C:69:39:5F:FA:80:1F:7F:C4:7F:FF:38:C9:ED
X509v3 Authority Key Identifier:
keyid:8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:9a:41:98:8c:94:34:28:5b:dd:00:72:01:1d:1c:da:a4:70:
b8:16:a2:08:17:82:86:61:58:dc:77:86:58:fe:1a:06:07:6b:
66:c6:ca:d8:4b:6c:32:33:2e:3f:96:48:76:d4:a9:c5:06:5c:
85:2b:14:c2:a7:1e:21:29:21:69:a8:a2:dc:58:ef:17:c9:9e:
08:7b:59:a7:39:96:3d:d0:46:49:1c:f9:b8:75:e0:e8:b1:95:
11:31:3e:c7:90:ca:61:bc:d6:65:db:52:5a:bd:89:e4:aa:65:
f3:84:59:2a:25:9a:4e:44:24:d6:d2:7e:b0:c2:f8:13:a1:46:
7e:5a:c6:97:06:f7:df:74:af:10:bb:a4:1a:6f:5d:10:83:c1:
0f:2c:de:9f:4b:e8:d4:9e:33:33:e1:65:e0:66:a4:22:1c:b6:
51:9d:84:87:56:77:3c:ed:42:90:fe:a1:52:0e:fd:3b:ca:c5:
19:04:6a:20:6e:08:f4:a9:94:62:9b:f8:3c:dc:ed:de:ed:f9:
bd:1a:52:95:60:b2:b4:c3:42:a0:7d:f0:e9:62:de:eb:36:29:
71:cf:0a:34:eb:a5:dc:48:43:d2:5f:7e:16:8a:07:ea:60:e9:
fb:57:29:a1:f3:a7:19:26:49:bf:3d:59:b5:c7:e4:cc:60:d1:
9f:5d:90:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:40:08 2025 by rpki-client