Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: or6EFCSq1BuBYbU2S3T6WL8EQRQQewr6c2oJCxmXC9I=
Subject key identifier: 66:06:A9:17:58:05:E0:ED:F4:48:ED:D5:0F:8E:6C:26:26:51:71:1B
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 01988EEC34F717A3FA896C698A7ECD63570F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0F33
Signing time: Sat 09 Aug 2025 13:01:41 +0000
Manifest this update: Sat 09 Aug 2025 13:01:41 +0000
Manifest next update: Sun 10 Aug 2025 13:01:41 +0000
Files and hashes: 1: g2pmYdtMoiuQPm1G35LS-gM4tuY.roa (hash: CWDorRb0FA7mvx2YHncFLS9iEAAHLTBxgOQlA6dQKII=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: EglUdlRO3U+kUHPhDEcjKd7meC3IM3wOilFiWVIJgyA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:34:f7:17:a3:fa:89:6c:69:8a:7e:cd:63:57:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Aug 9 13:01:41 2025 GMT
Not After : Aug 10 13:01:41 2025 GMT
Subject: CN=6606a9175805e0edf448edd50f8e6c262651711b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c2:7b:d0:63:b7:60:7c:1c:47:85:4f:84:12:
45:2b:48:ae:e2:6c:bc:23:2b:85:fe:f9:87:29:bb:
bd:df:96:b7:ff:67:f2:95:8a:5f:9b:20:ec:d4:e4:
b8:52:42:0f:56:cb:17:d8:ea:1f:36:47:3f:52:7a:
d5:49:38:d9:2e:77:de:fe:c2:11:b9:ea:b4:56:9e:
c2:2f:d2:ed:8b:8d:92:9c:01:ee:62:db:e2:3e:fe:
ad:9b:b2:df:35:6d:aa:3e:f7:07:19:bc:88:fe:fd:
70:a1:fe:c6:dc:38:74:7c:7e:df:35:5b:ed:9a:2c:
2f:5f:38:c5:3a:e9:9f:a2:cb:ce:50:74:27:e5:a7:
f8:cc:3f:c8:a8:8c:2d:90:fe:10:a2:63:81:4b:50:
d9:5e:db:47:0d:a6:e7:e6:4e:d1:9f:9d:df:6f:73:
9f:d5:70:ed:02:ce:6d:d8:55:f7:63:89:3f:80:29:
5b:b9:a9:b9:e8:b6:35:62:53:84:b5:1c:da:a3:c1:
13:77:99:67:09:04:49:c9:ab:c4:6e:2b:1f:f1:e2:
1f:65:11:b5:b6:d2:3d:64:b0:26:51:89:18:ac:cf:
9d:ca:c6:ae:a1:28:c8:0f:a8:ff:b6:5f:fd:2d:a0:
e7:d2:f9:09:b4:3e:0f:84:7b:a2:38:1e:f8:f8:23:
10:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:06:A9:17:58:05:E0:ED:F4:48:ED:D5:0F:8E:6C:26:26:51:71:1B
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:f0:37:fc:7d:38:01:97:c4:45:2c:94:63:13:c5:b3:83:58:
f1:4d:7e:84:e5:fb:98:d0:fd:70:61:5c:9d:4a:2e:1f:82:03:
d7:f6:82:9f:54:79:5b:a0:a5:09:cb:40:cf:a0:fb:cf:54:cb:
72:65:f2:44:3b:df:ff:86:cc:42:da:c5:35:f4:b4:6b:aa:0c:
42:9a:a7:74:92:70:67:7e:81:33:63:a9:92:df:82:3c:28:7d:
aa:5c:b7:61:70:16:c9:e8:15:53:30:72:99:dd:34:22:45:3a:
2d:eb:8f:1b:33:2f:0c:89:6b:dd:57:d1:02:ec:7a:93:00:71:
bf:aa:ba:6e:c7:4c:56:32:dc:d5:c9:00:56:f7:32:58:fd:f9:
5c:25:45:e4:e0:fd:c4:a8:49:d8:0f:8f:10:21:22:73:b3:77:
0d:04:f1:4f:14:f9:dc:34:f6:ef:90:6a:6e:8c:6a:f9:55:01:
6b:a7:7b:f1:ef:e4:88:9d:0c:d6:02:f3:3c:81:ed:5f:ef:b4:
5d:23:81:d5:c8:49:b8:3c:02:7a:44:ca:03:e2:0a:e2:87:d7:
35:82:b3:a1:01:fd:b5:d5:9e:2e:42:a6:e6:c6:b9:17:d5:94:
b8:2c:5e:1a:a1:fb:9e:7c:ea:33:d0:4c:0e:aa:4f:eb:ae:1d:
bd:eb:d4:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:45:09 2025 by rpki-client