Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
File: j_he_yRIxzZG41Sv6mQbz3nnx_k.mft (raw, json)
Hash identifier: Bd/CdR/SKYJHNKrDyDPEJUksrnXOA6PgbCyrUI6Z9Dw=
Subject key identifier: A6:10:B2:89:87:29:A8:C9:00:2B:C8:B9:B9:14:B2:64:5A:A9:12:FF
Authority key identifier: 8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
Certificate issuer: /CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Certificate serial: 019A71B8E53CF454FCEEE85984A4126C780B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
Manifest number: 067B
Signing time: Tue 11 Nov 2025 07:02:13 +0000
Manifest this update: Tue 11 Nov 2025 07:02:13 +0000
Manifest next update: Wed 12 Nov 2025 07:02:13 +0000
Files and hashes: 1: izDgJyT_jFs6Afm1vFmx3IUq128.roa (hash: +piNMelo8kmyTOhWUH5qriIcmuElNVknleJSz/MJ2T8=)
2: j_he_yRIxzZG41Sv6mQbz3nnx_k.crl (hash: ZSk2Um8zGE46FQq0fJUruaZBirxQfk98Q6pjJ0SO61o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:e5:3c:f4:54:fc:ee:e8:59:84:a4:12:6c:78:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Validity
Not Before: Nov 11 07:02:13 2025 GMT
Not After : Nov 12 07:02:13 2025 GMT
Subject: CN=a610b2898729a8c9002bc8b9b914b2645aa912ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fa:d0:e8:c2:e6:c0:a4:ac:94:32:87:d7:75:
2c:7b:b2:d6:b6:72:03:c1:86:84:36:12:5d:9f:67:
28:48:38:c1:bb:fd:71:b8:f6:d9:40:8f:f3:79:ae:
87:ec:d5:2b:41:b1:c1:56:00:b8:ed:6f:60:9c:97:
a1:81:2f:ad:17:88:a6:a2:93:22:e2:8a:ef:72:47:
84:52:fe:a4:21:8a:1d:d5:3b:8e:5c:92:53:d9:d1:
dd:38:b7:87:d6:62:62:fb:be:a4:fb:2c:5b:c5:10:
94:cc:62:79:50:c2:1d:5d:6f:87:6c:a1:9e:83:b6:
7c:ca:31:18:f4:2c:78:4c:53:ad:5b:f0:96:c2:44:
b4:89:3c:7f:75:ba:6f:62:14:ae:fa:20:e8:14:bf:
4d:09:ce:5a:40:02:da:18:a4:02:6a:fd:39:72:8b:
34:b3:40:4d:d4:88:22:97:25:42:c9:15:7a:f6:c4:
21:6d:80:be:12:cd:41:e3:bb:33:d7:de:44:e7:88:
05:b4:8e:46:8e:df:d0:7b:4e:a1:52:e6:b3:f7:64:
eb:bf:b9:61:5f:4c:b4:47:13:59:77:0b:7a:9e:68:
c9:2e:5c:08:28:9c:db:0e:b3:cf:cb:d0:4a:68:97:
aa:b4:04:3a:90:47:9d:32:15:38:cc:a4:56:de:0f:
06:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:10:B2:89:87:29:A8:C9:00:2B:C8:B9:B9:14:B2:64:5A:A9:12:FF
X509v3 Authority Key Identifier:
keyid:8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:d5:85:09:e9:69:14:bf:d1:a6:38:d0:d8:a4:90:0c:87:4d:
c5:05:7a:15:e6:2b:55:39:b2:a5:92:7e:59:d2:fe:93:52:f0:
bf:cf:d0:7c:e4:69:9e:cb:d2:92:49:90:3b:af:fa:97:3d:7f:
89:3e:be:3e:49:53:17:7b:1e:20:46:6c:23:a7:6e:7a:c8:e9:
78:6d:57:34:82:98:ce:fc:32:e4:64:cf:a0:90:11:97:6f:58:
78:46:b1:5f:7d:ee:c8:d0:e0:c3:2c:c6:31:dd:31:83:b3:53:
be:5c:85:13:0b:04:ca:1f:77:0e:3f:3c:90:66:b6:84:fe:42:
ad:50:88:a8:b2:40:18:95:5d:74:6d:d5:ae:5a:2a:43:79:08:
87:7e:0a:4b:cc:76:4f:cb:95:a0:de:34:93:a6:61:b4:20:1e:
fd:12:20:d3:cb:2b:e4:0d:0c:38:dd:92:4f:a7:e6:5c:f5:a9:
8a:64:87:0d:26:4e:55:c8:70:bc:da:66:39:e0:a0:db:8d:ea:
db:f0:9e:d1:ee:ae:43:dd:d2:2c:f4:4c:19:d1:25:15:41:32:
f7:9e:88:4f:eb:13:fd:d0:82:90:85:70:8b:d3:ed:38:39:ba:
fd:9d:30:7b:d5:df:41:3f:11:e4:57:84:c4:04:7d:5a:95:e8:
a0:6e:ea:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:36 2025 by rpki-client