Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
File: 65Hpk6SkDOfl2chjJfGG3waeys0.mft (raw, json)
Hash identifier: c4bkbSrOYEzv4L7bqhpoJRBA5AD3DhkDw5PF5yShwHc=
Subject key identifier: 29:18:59:40:9E:C3:C1:54:8D:BF:04:88:10:EE:A6:68:C4:47:6E:60
Authority key identifier: EB:91:E9:93:A4:A4:0C:E7:E5:D9:C8:63:25:F1:86:DF:06:9E:CA:CD
Certificate issuer: /CN=eb91e993a4a40ce7e5d9c86325f186df069ecacd
Certificate serial: 0199F87BD56B06AB38EA69860CAA955B2038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/65Hpk6SkDOfl2chjJfGG3waeys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
Manifest number: 07CA
Signing time: Sat 18 Oct 2025 18:01:29 +0000
Manifest this update: Sat 18 Oct 2025 18:01:29 +0000
Manifest next update: Sun 19 Oct 2025 18:01:29 +0000
Files and hashes: 1: 65Hpk6SkDOfl2chjJfGG3waeys0.crl (hash: eOZaBJfoochStR3GTpICS6jJdiR/NEKYloniXSBJ6u8=)
2: ctxe5Lnf-P92Y-aRF-aTwCxvQ-Y.roa (hash: JuvYZG1KASTZcCfggftiqfbWLqoSmP/ETYKyhfPlx0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/65Hpk6SkDOfl2chjJfGG3waeys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Oct 2025 16:28:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:f8:7b:d5:6b:06:ab:38:ea:69:86:0c:aa:95:5b:20:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb91e993a4a40ce7e5d9c86325f186df069ecacd
Validity
Not Before: Oct 18 18:01:29 2025 GMT
Not After : Oct 19 18:01:29 2025 GMT
Subject: CN=291859409ec3c1548dbf048810eea668c4476e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c7:da:b3:3e:8a:c3:a8:2e:99:a7:e0:f4:3f:
5d:85:93:c3:d5:04:06:7f:19:c3:5b:e4:5d:36:52:
89:11:00:c9:6b:b6:94:31:a1:91:d0:bf:15:23:49:
13:b2:23:83:21:fc:30:42:7b:b8:80:fa:d1:a5:26:
52:fe:dc:25:5b:d1:5d:53:3e:b2:74:8f:b1:e8:62:
44:3e:bd:d3:6a:c4:d2:da:17:52:0d:66:29:e8:c5:
87:25:ec:ab:aa:a2:0a:02:66:66:87:e5:4f:a3:63:
74:5e:cc:47:80:d9:50:52:38:d2:f1:d3:6e:7b:97:
01:74:55:8c:fb:a2:1e:01:77:07:4a:97:c6:18:e3:
00:9c:5e:19:41:a1:cb:18:66:67:9b:97:f8:b9:64:
18:db:41:96:9c:0f:81:23:38:fe:34:0d:ce:f0:b9:
2a:f8:91:4a:37:0c:6f:37:ec:ca:cb:a8:7b:1e:e3:
2f:69:3c:b4:f4:b1:61:44:1a:c8:1c:e6:74:cc:c7:
73:2b:1f:08:a9:23:34:f1:9a:94:3d:84:5f:d4:c2:
29:de:47:43:13:ef:8d:26:1e:0b:9d:d5:05:ef:08:
7a:b6:19:4a:96:b4:83:4e:07:c5:b3:a2:5d:8f:b1:
4d:59:d3:31:90:ac:bd:79:cb:be:1e:97:f0:47:16:
49:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:18:59:40:9E:C3:C1:54:8D:BF:04:88:10:EE:A6:68:C4:47:6E:60
X509v3 Authority Key Identifier:
keyid:EB:91:E9:93:A4:A4:0C:E7:E5:D9:C8:63:25:F1:86:DF:06:9E:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/65Hpk6SkDOfl2chjJfGG3waeys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:dd:ef:36:77:d2:d2:f4:43:ee:b0:9e:b3:43:7b:15:c6:28:
08:08:97:66:96:6d:03:e1:f9:b5:cd:1a:66:78:d8:34:2a:4b:
1a:cc:aa:6c:b7:b1:b5:f7:10:1e:37:c5:93:c0:78:90:60:fe:
4a:0a:10:35:36:d6:42:c7:94:6c:4e:64:b9:d8:fe:f4:31:81:
f0:57:e5:2e:bd:88:c6:16:92:8d:db:c4:a4:e1:63:77:c1:45:
2a:c4:13:df:62:94:f9:e2:1d:43:c5:55:f4:3f:58:53:94:cc:
ca:d7:bb:d9:b8:91:a0:76:84:5c:b5:63:c9:b2:04:42:f2:21:
0c:d1:66:9b:df:90:15:a6:e6:5f:51:76:47:4b:94:62:a2:8b:
94:43:90:e5:90:3a:0e:0b:76:a2:77:68:9f:61:6e:1a:0e:4e:
0b:bf:74:00:4d:cb:08:83:a2:84:15:8e:42:4f:74:f8:d2:24:
84:23:e1:37:63:4a:75:06:b4:42:dc:f6:c7:cf:f9:09:3e:84:
ee:8c:dc:dd:a4:3c:40:2d:83:75:8d:a3:9c:91:ef:4c:82:1c:
48:23:24:d5:2c:56:a4:4a:66:2d:dc:4b:84:e4:12:a6:ce:15:
cc:0f:4c:64:fc:53:50:6a:17:c3:33:94:87:0c:9d:28:c0:f9:
d1:6c:89:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 01:35:17 2025 by rpki-client