Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: egHc4YUihHE8ET+TLMfVwlVzLO1Q17ptp6JFgA/06ac=
Subject key identifier: F4:99:99:5A:3A:80:18:76:E2:AE:D2:72:41:72:78:6A:AF:5B:0C:92
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 01987D8A0F68AB0FADE0164E411E63151A9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0912
Signing time: Wed 06 Aug 2025 04:00:56 +0000
Manifest this update: Wed 06 Aug 2025 04:00:56 +0000
Manifest next update: Thu 07 Aug 2025 04:00:56 +0000
Files and hashes: 1: 1GUi9iA8Rgrr5GN4QB6VlqMrvms.roa (hash: s/MIypH3pMJ3iuiuGr8K68PmgQyO6HFRzwvdBy3o4FU=)
2: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: myXY0U+4H+BcbK+n1jSq+Qkqy33r4/lWAfDs4A6AE6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8a:0f:68:ab:0f:ad:e0:16:4e:41:1e:63:15:1a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Aug 6 04:00:56 2025 GMT
Not After : Aug 7 04:00:56 2025 GMT
Subject: CN=f499995a3a801876e2aed2724172786aaf5b0c92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:70:41:3d:82:20:3f:bd:37:8c:02:15:39:3f:
bf:52:6e:ba:97:9d:d3:58:4d:ae:91:fe:12:6a:c8:
29:2d:ea:25:9f:ad:60:a5:43:b1:4c:f2:06:52:d5:
52:45:1e:ec:69:a9:fe:29:b9:d4:5d:6a:13:70:78:
4c:aa:e2:74:c3:b1:01:67:40:8f:c2:cf:ae:fd:a1:
6a:97:be:e2:df:69:e0:db:a8:35:28:6e:1a:32:aa:
6c:1c:db:1d:4a:21:cd:86:90:42:11:16:a0:cc:54:
ae:a6:9b:ca:46:88:1b:39:10:d3:bb:a6:50:6a:48:
00:2d:0d:39:68:d7:ca:c9:88:16:1f:49:7a:8c:9c:
ed:d9:f9:12:a4:ec:5a:ec:4f:f0:2e:96:49:07:f2:
95:23:1c:49:a7:c9:80:30:83:d1:65:4d:81:3f:79:
7b:ce:54:19:ce:d1:8f:58:d0:5e:06:2d:95:69:cc:
55:bf:76:d2:7c:ff:04:14:f4:37:d3:40:1a:e0:3d:
d5:a2:94:a6:cb:63:c0:9b:dc:79:a8:e6:69:9b:89:
1b:88:38:17:13:17:ff:20:e4:0e:e2:05:3d:3c:8a:
40:54:33:05:da:1d:dd:47:cb:54:f1:9f:0c:0d:37:
bc:7f:f0:47:0f:43:b6:86:7c:c8:9e:62:88:69:1d:
3a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:99:99:5A:3A:80:18:76:E2:AE:D2:72:41:72:78:6A:AF:5B:0C:92
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:67:eb:a8:cd:3a:f2:0b:2f:a8:52:fb:3c:0a:61:67:02:6e:
2f:ac:2b:26:62:40:f5:56:0b:dc:3a:ea:ed:77:27:fd:27:fa:
61:ce:23:8f:06:da:9e:a0:69:59:1f:8c:af:26:52:18:6a:25:
9d:f8:c8:a5:1c:7e:33:d7:8a:ba:91:03:96:dd:19:b2:45:26:
43:f8:de:3e:88:8f:e4:f0:e0:43:cd:56:f2:92:f9:08:59:d7:
cb:1a:2a:e6:9f:a4:b5:ea:aa:31:f1:15:f7:aa:1b:28:1f:f2:
9e:c5:e6:2b:34:d8:4b:c6:22:ad:61:b9:3c:61:74:19:75:31:
ec:7d:99:a8:80:30:fd:2d:18:d8:36:fd:92:1c:89:f0:4f:71:
3b:12:42:37:f1:a3:5b:72:1f:54:56:b3:66:6b:ae:68:73:91:
01:98:1b:7e:c2:87:f7:21:97:46:23:9e:6b:b4:fc:95:0f:eb:
10:3c:02:fc:55:81:70:79:b2:45:38:14:e2:50:2d:41:d1:e1:
7f:47:8f:7c:e3:30:6a:e4:a3:44:7b:f9:1a:b1:9a:07:f8:ed:
ed:94:6f:68:0c:a5:2e:e9:e1:74:b3:06:5d:25:ca:f2:e0:3d:
d2:44:da:86:ee:82:bf:72:3f:db:3f:cd:b4:a2:46:33:e0:b3:
3b:cd:2b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:05:33 2025 by rpki-client