Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
File: PheDehDbHT3XPiDfC0eeQNsiNv4.mft (raw, json)
Hash identifier: uOkvQl/hVEEgpwjX0kRlyldXkcwjzRfAHz4e1L8SPa8=
Subject key identifier: 1F:86:4D:B7:72:D5:07:32:49:26:96:3B:17:B9:FF:39:B8:D4:FA:86
Authority key identifier: 3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
Certificate issuer: /CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Certificate serial: 019874F484ABB0C88992878AA24306E2321C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
Manifest number: 0E2C
Signing time: Mon 04 Aug 2025 12:00:38 +0000
Manifest this update: Mon 04 Aug 2025 12:00:38 +0000
Manifest next update: Tue 05 Aug 2025 12:00:38 +0000
Files and hashes: 1: CZQAZEvMh_XTxw7BOmbx2zwgX-k.roa (hash: Ire9dW7Oeexx5f9et2qGgWkDs4AnuBBZcM9DwhOcJAg=)
2: IjLvJG0-M1KnBbBDVenkXKquV78.roa (hash: n27HZGX2v3aJZrtVUVhPUuskMFjClOmq43C+EIraFso=)
3: PheDehDbHT3XPiDfC0eeQNsiNv4.crl (hash: T+EF+A9ndbz5hCHQIP6YDCScOf4lxpM+vyL98xEjxKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f4:84:ab:b0:c8:89:92:87:8a:a2:43:06:e2:32:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Validity
Not Before: Aug 4 12:00:38 2025 GMT
Not After : Aug 5 12:00:38 2025 GMT
Subject: CN=1f864db772d507324926963b17b9ff39b8d4fa86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:66:34:79:e6:e0:ed:d2:a0:15:c6:e1:3e:78:
95:13:34:c0:33:1a:4c:50:cd:c4:b4:48:32:64:6f:
ed:83:7d:e5:73:3b:1d:fb:2b:0d:f9:ee:48:5a:16:
e3:20:26:07:0a:c7:62:19:21:9d:14:ce:2c:34:05:
68:94:fe:0a:69:33:9c:a0:14:2d:ac:1e:e9:10:eb:
64:30:9a:bc:e0:44:86:df:b1:71:fd:f4:38:e3:f2:
c2:96:13:f2:55:7d:c4:d8:92:a8:63:f3:06:87:7d:
71:70:a3:d2:56:11:4b:b9:ef:b0:e2:06:84:41:f6:
58:5a:7c:8d:17:a6:4d:8a:10:3f:a0:f5:a8:48:18:
ec:3f:9d:b3:f8:66:13:b5:28:f6:ff:22:ef:14:91:
89:b6:38:cd:07:cb:e1:60:7d:72:05:f6:a1:02:6f:
7b:52:45:a4:e6:41:6c:53:82:ba:95:e6:9c:01:ee:
2f:7e:39:a7:34:c8:fc:5e:37:d7:f4:80:01:42:cf:
dd:81:c0:8e:20:41:4e:0d:ad:5a:7f:78:b9:ef:a6:
84:36:2c:3c:10:a0:d9:3e:c1:d4:e0:4b:48:c5:fe:
81:d1:34:c9:e6:8e:8d:ef:10:c5:81:65:53:a3:c4:
db:a5:3b:d5:91:36:f3:60:76:ac:85:53:92:a6:fd:
7f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:86:4D:B7:72:D5:07:32:49:26:96:3B:17:B9:FF:39:B8:D4:FA:86
X509v3 Authority Key Identifier:
keyid:3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:8f:11:88:60:ef:25:59:28:2f:25:12:2c:0a:bd:0d:4d:b4:
c0:b5:ce:c3:55:05:50:47:32:4f:10:a0:81:a8:f8:0b:a9:f8:
38:87:db:99:9f:c5:a0:bd:c7:c9:d2:b3:ee:a5:20:35:d6:1b:
b0:4b:77:5e:75:0d:f7:b2:07:cc:ff:bf:57:a2:52:5c:6a:cf:
b7:cf:5e:fc:0f:d4:97:2e:34:ad:71:5e:83:25:86:35:5a:dc:
23:95:e5:6b:36:6a:80:1a:f7:f4:cd:32:c5:bf:b8:59:1b:5f:
62:20:b8:aa:28:97:ca:77:7c:b4:28:7d:05:1f:48:05:f9:ed:
dd:86:d4:52:cd:c2:2f:6d:b5:10:e0:9d:cc:73:4a:4b:47:1d:
c2:2f:db:ed:6c:53:38:41:1a:d9:39:49:73:29:79:33:26:a2:
26:c8:63:3b:69:48:ec:29:92:df:fd:44:9d:9b:1a:51:5b:a1:
dd:3d:87:f3:25:c7:3b:e2:3c:3c:2e:78:b8:17:12:73:a2:82:
c0:4b:bc:33:12:47:f4:d0:9f:54:89:a6:56:32:dc:21:dd:5e:
7c:50:48:02:23:37:3a:50:27:88:18:a4:2c:5f:ed:49:2d:df:
44:b0:3a:d1:15:74:c9:ff:86:eb:ec:22:a0:26:bb:b7:34:2c:
1f:aa:16:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh09ISrsMiJkoeKokMG4jIcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMTc4MzdhMTBkYjFkM2RkNzNlMjBkZjBiNDc5ZTQwZGIy
MjM2ZmUwHhcNMjUwODA0MTIwMDM4WhcNMjUwODA1MTIwMDM4WjAzMTEwLwYDVQQD
EygxZjg2NGRiNzcyZDUwNzMyNDkyNjk2M2IxN2I5ZmYzOWI4ZDRmYTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWY0eebg7dKgFcbhPniVEzTAMxpM
UM3EtEgyZG/tg33lczsd+ysN+e5IWhbjICYHCsdiGSGdFM4sNAVolP4KaTOcoBQt
rB7pEOtkMJq84ESG37Fx/fQ44/LClhPyVX3E2JKoY/MGh31xcKPSVhFLue+w4gaE
QfZYWnyNF6ZNihA/oPWoSBjsP52z+GYTtSj2/yLvFJGJtjjNB8vhYH1yBfahAm97
UkWk5kFsU4K6leacAe4vfjmnNMj8XjfX9IABQs/dgcCOIEFODa1af3i576aENiw8
EKDZPsHU4EtIxf6B0TTJ5o6N7xDFgWVTo8TbpTvVkTbzYHashVOSpv1/uQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB+GTbdy1QcySSaWOxe5/zm41PqGMB8GA1UdIwQY
MBaAFD4Xg3oQ2x091z4g3wtHnkDbIjb+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAt
YzU5NmFmMmE0MmJhLzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAtYzU5NmFmMmE0MmJh
LzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXI8RiGDv
JVkoLyUSLAq9DU20wLXOw1UFUEcyTxCggaj4C6n4OIfbmZ/FoL3HydKz7qUgNdYb
sEt3XnUN97IHzP+/V6JSXGrPt89e/A/Uly40rXFegyWGNVrcI5XlazZqgBr39M0y
xb+4WRtfYiC4qiiXynd8tCh9BR9IBfnt3YbUUs3CL221EOCdzHNKS0cdwi/b7WxT
OEEa2TlJcyl5MyaiJshjO2lI7CmS3/1EnZsaUVuh3T2H8yXHO+I8PC54uBcSc6KC
wEu8MxJH9NCfVImmVjLcId1efFBIAiM3OlAniBikLF/tSS3fRLA60RV0yf+G6+wi
oCa7tzQsH6oWJw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:00:19 2025 by rpki-client