Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
File: GHpwT0heEd7avFYmTl2AwUh-CEI.mft (raw, json)
Hash identifier: BXUiMJJ8dNfq2SoqTy3rtrY/VWDfEzqQddrct66SAvY=
Subject key identifier: 52:D0:4D:84:82:88:76:63:98:2E:99:40:30:5B:A7:11:47:DE:0E:C6
Authority key identifier: 18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
Certificate issuer: /CN=187a704f485e11dedabc56264e5d80c1487e0842
Certificate serial: 019A52635B629D7C7D6B11024A73C86161E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
Manifest number: 0249
Signing time: Wed 05 Nov 2025 05:00:34 +0000
Manifest this update: Wed 05 Nov 2025 05:00:34 +0000
Manifest next update: Thu 06 Nov 2025 05:00:34 +0000
Files and hashes: 1: GHpwT0heEd7avFYmTl2AwUh-CEI.crl (hash: 0tvLCswOvDS2wl/0zc6zpJF145DC4oGcjqfyq38yYKk=)
2: vvdAJvoqdhRnHyNRnR9QwCmshOA.roa (hash: yno5bMF5UsFhgiWOHsRLetn5+9bEbKawwZrFBu7TWWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:5b:62:9d:7c:7d:6b:11:02:4a:73:c8:61:61:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187a704f485e11dedabc56264e5d80c1487e0842
Validity
Not Before: Nov 5 05:00:34 2025 GMT
Not After : Nov 6 05:00:34 2025 GMT
Subject: CN=52d04d8482887663982e9940305ba71147de0ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:ea:1e:80:5e:0c:7f:a8:aa:31:cd:4a:ad:
24:b3:b6:c6:26:02:a5:b8:a7:d7:d5:68:89:2c:a6:
a5:35:b1:d4:70:be:4b:db:d0:32:d6:a2:ba:c9:0d:
0c:95:16:9c:4c:69:ee:db:a2:f1:e5:03:8d:5b:28:
08:9e:69:6c:81:e9:76:75:44:94:67:2f:e0:3e:87:
3a:ea:85:2f:ee:c1:9a:af:cc:4a:ea:30:86:1a:3f:
6d:6b:15:c9:60:d2:3d:6f:08:88:91:8b:c2:ab:b1:
b6:29:b2:34:dd:90:ec:7c:17:e6:be:c1:ce:cf:cd:
d2:13:e3:64:2e:53:38:ee:ca:92:00:65:22:b6:4b:
cc:0e:8e:93:18:f2:d5:56:53:5a:f0:96:38:12:09:
82:73:e1:57:ba:6f:b7:bb:d4:73:33:5a:ee:d3:02:
05:f8:bf:9b:ff:b7:23:72:b3:17:5c:7e:a9:49:4e:
78:3c:b7:05:46:18:92:60:25:76:46:65:f6:ba:1f:
1e:ba:e0:a3:24:c1:54:b8:a4:d7:42:24:fc:a7:ff:
25:05:ae:51:9f:f7:f1:54:c4:a7:94:d3:fb:30:a5:
50:04:f4:b8:21:b0:be:ae:7a:12:e3:ee:7a:5d:c9:
06:86:e9:e7:62:61:48:92:f1:3a:40:a5:43:0f:77:
43:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D0:4D:84:82:88:76:63:98:2E:99:40:30:5B:A7:11:47:DE:0E:C6
X509v3 Authority Key Identifier:
keyid:18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:36:5c:65:71:ce:4a:f9:e9:89:51:68:55:0c:a4:0c:f7:59:
0b:3c:69:72:4d:01:c3:39:b2:07:30:95:da:ae:df:63:92:93:
00:9b:0f:9c:4f:b4:50:9d:43:0a:d3:a4:d3:1e:03:4f:37:00:
ba:96:de:71:a5:a7:00:57:49:32:a2:18:71:52:4e:ee:6c:24:
31:66:aa:20:c2:51:60:9e:3f:14:b3:ff:21:68:0c:7b:ec:5b:
d0:0f:29:4b:cd:90:b8:87:75:8e:12:87:c1:7e:5f:0c:82:e8:
05:52:01:80:4e:ab:5c:30:88:82:3c:71:7d:02:f4:b5:ea:53:
85:ef:39:c1:76:f7:8e:b7:de:a5:59:28:52:76:b1:ae:de:c4:
ff:24:c4:f4:10:5c:05:89:02:15:c1:75:13:57:28:34:a4:c2:
19:85:2d:98:a0:33:ca:ca:1a:e6:f7:f5:1b:a5:c4:3b:db:f9:
4b:35:d9:14:65:35:a4:77:f7:16:d4:22:02:8d:22:c7:74:ed:
8b:37:32:f7:17:e2:e0:c5:10:7d:fc:dd:32:b5:a2:d3:4f:40:
a4:87:ae:08:e7:43:de:f3:b3:7b:bd:d4:bf:58:97:5e:95:1d:
a8:5e:9e:5c:87:34:2c:1e:e4:a0:b9:a3:ba:67:c4:32:ce:66:
e2:48:02:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 15:07:43 2025 by rpki-client