Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: uaL8NUpd19/bnSS1Ew2nM8Zey7mf5L6CXjrhZ6IwYPQ=
Subject key identifier: 71:33:FE:8D:AE:56:B8:CE:3F:E0:23:F9:EB:30:87:79:8B:A4:E3:5F
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 01988E7D6E6BE3AF825FAADF1E76E2F46057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 1624
Signing time: Sat 09 Aug 2025 11:00:41 +0000
Manifest this update: Sat 09 Aug 2025 11:00:41 +0000
Manifest next update: Sun 10 Aug 2025 11:00:41 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: TPDH6VvXqTbw06EPpFmcqXde0g4GyKctCd0Y815yPW4=)
2: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (hash: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:7d:6e:6b:e3:af:82:5f:aa:df:1e:76:e2:f4:60:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Aug 9 11:00:41 2025 GMT
Not After : Aug 10 11:00:41 2025 GMT
Subject: CN=7133fe8dae56b8ce3fe023f9eb3087798ba4e35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:65:4f:b9:11:8c:de:fb:49:b1:10:7a:9c:e2:
0d:a8:09:eb:69:3c:36:8f:a7:b6:39:f9:e9:65:8b:
a7:90:88:5a:ef:4f:e1:8c:bc:3f:98:ba:7b:68:d1:
3a:04:02:24:09:76:fa:ff:70:55:da:4b:11:5c:ee:
23:6e:dc:52:85:42:ab:35:c6:42:99:01:a0:82:40:
b9:42:8b:a7:da:4f:d5:b5:e2:a3:f4:59:05:8d:c8:
07:5f:41:56:b2:74:96:7e:bc:0c:4c:3e:a0:d1:5b:
0f:39:db:d5:da:6e:18:5c:37:be:17:7e:28:b3:f9:
26:5e:e9:26:91:21:fd:55:88:06:7d:60:ce:ae:e1:
ee:6c:48:20:c2:7e:d7:79:98:7a:fc:d0:9f:60:18:
36:20:6e:77:2c:9b:0e:fb:24:25:36:68:50:9d:6c:
8f:55:7a:46:12:44:7e:d0:ad:65:36:3f:f4:69:29:
59:95:9c:09:f6:cc:f8:85:6b:b8:73:8f:4a:f6:d7:
5d:0b:ff:0d:a5:22:d2:11:f6:9d:b6:43:f3:67:c3:
f2:6c:66:a7:a2:32:a5:79:aa:6d:3b:4f:6d:f7:f3:
f1:dc:bd:da:07:16:b7:17:46:1c:73:cc:3c:9e:95:
f4:a6:32:c1:67:ec:20:b4:aa:ee:0b:c5:fb:38:2f:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:33:FE:8D:AE:56:B8:CE:3F:E0:23:F9:EB:30:87:79:8B:A4:E3:5F
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:c7:43:74:c8:24:b3:ef:07:23:d4:71:aa:95:f4:69:17:67:
cc:d2:22:40:ff:4c:a8:25:83:ba:f1:48:49:6b:83:74:e3:51:
f1:0c:0d:09:9f:98:ca:4b:b9:0a:28:fb:02:e1:9d:34:18:83:
6d:42:de:cf:88:36:bf:ee:45:14:d0:14:5f:af:ec:96:b3:da:
e9:34:3e:77:5a:c6:c7:49:8c:bc:71:13:3f:2f:b9:96:7b:d7:
11:66:69:0b:34:d2:75:0e:09:e3:15:fa:e8:3e:22:40:93:24:
f5:0e:35:96:b6:df:c9:38:5a:83:1d:96:6d:68:98:7e:37:48:
7b:09:64:ff:f7:eb:60:b1:63:91:7f:0e:bb:35:bc:89:f4:31:
39:77:70:4b:77:f8:8b:aa:81:0e:37:09:b3:d7:b9:b5:71:5b:
1f:f5:7e:55:cc:a8:17:f6:81:c8:8b:93:91:49:08:47:f7:33:
4c:b6:33:ca:96:7b:1b:e5:99:da:40:5d:8c:33:13:8a:30:21:
70:8f:42:dc:ff:85:65:b2:cc:c7:85:a6:83:17:09:08:3e:6f:
06:da:b8:8e:ba:8b:3e:fa:3f:df:58:7f:61:61:dc:e3:c7:d0:
47:5e:95:04:f4:cb:d7:db:ee:c9:35:14:56:39:d4:26:80:5c:
b6:bf:bf:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:19:20 2025 by rpki-client