Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json)
Hash identifier: PwQGK5KQ7bYqMxhLOyDMsNd+BD2qKgukQhE7rnmeLjM=
Subject key identifier: AA:92:9B:F8:93:A4:56:3D:15:54:92:37:28:CC:4B:9B:43:63:BD:FF
Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Certificate serial: 019A51874A68D3EBCD58E113ACD39E079845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
Manifest number: 0691
Signing time: Wed 05 Nov 2025 01:00:11 +0000
Manifest this update: Wed 05 Nov 2025 01:00:11 +0000
Manifest next update: Thu 06 Nov 2025 01:00:11 +0000
Files and hashes: 1: GNR7fo6zYUZ0aZ61h9x_BF8llVA.roa (hash: CFopZ6dmtVSvrmIdzz/ovM49rlPrGJS+jY6gLGQSqVo=)
2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: T9m2Zyqx2hN4V3ty+SC0ixGnf9Zy9P6/sbK3JQnIylw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:4a:68:d3:eb:cd:58:e1:13:ac:d3:9e:07:98:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Validity
Not Before: Nov 5 01:00:11 2025 GMT
Not After : Nov 6 01:00:11 2025 GMT
Subject: CN=aa929bf893a4563d1554923728cc4b9b4363bdff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:22:54:70:c9:3f:f2:9e:cc:83:ff:ec:56:15:
82:60:9e:d4:41:55:b6:3d:b9:18:9a:50:80:e9:7b:
35:51:9e:8c:ff:06:20:1e:2c:11:b5:d4:5d:62:f8:
48:81:db:fd:e8:d1:43:08:f1:51:0f:18:e3:6d:2f:
21:cf:fc:ae:05:ca:38:33:24:33:ba:72:a8:1c:51:
bd:13:3f:2d:42:fa:a6:ff:1f:4f:a4:ba:d8:90:fd:
95:38:69:70:47:ae:04:9c:50:e5:f2:30:2a:ff:f1:
3c:da:63:29:c1:75:b5:d0:a4:34:d5:48:46:ff:77:
7d:56:b5:e6:54:52:27:bd:aa:fa:bf:b3:6b:a7:4d:
64:a9:da:84:43:c4:01:6c:53:5c:1c:c6:6c:cc:13:
55:e3:bb:18:32:a9:0f:21:5b:95:b2:dc:26:72:34:
9e:3f:db:ba:b2:bd:27:df:da:3f:49:68:ee:ad:cb:
7b:98:4a:5b:e9:13:75:72:40:53:4d:bc:c0:c0:46:
a2:a1:b5:5d:0d:f5:f1:7e:82:40:c9:a9:69:b0:cc:
67:0e:da:37:3b:9b:44:40:6d:f9:34:8d:19:26:3f:
2d:b9:4d:96:58:e8:81:40:03:0d:1f:42:c4:38:b7:
55:f2:d9:0f:70:17:f2:8b:0f:f6:64:5c:1e:df:c0:
1f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:92:9B:F8:93:A4:56:3D:15:54:92:37:28:CC:4B:9B:43:63:BD:FF
X509v3 Authority Key Identifier:
keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:1c:ec:86:b4:2f:ab:53:d9:ae:3b:44:3e:40:ab:2f:09:09:
4f:2f:97:5c:6d:a3:5c:ab:ff:33:79:50:39:e6:24:c1:3d:75:
9d:2f:6b:8c:68:98:50:45:c9:94:bc:86:05:29:a3:50:0b:d0:
c6:08:52:1d:f1:c4:f8:07:24:00:33:0c:7e:a8:a1:4c:01:f9:
53:aa:9a:ae:98:6e:7d:2f:91:2c:9f:88:83:6f:9a:f6:9a:cf:
56:de:65:76:9f:ae:fa:44:9b:17:e4:80:b8:fe:60:ff:45:14:
4c:aa:40:7c:84:9a:c0:3f:ca:4f:4a:a2:fe:64:2f:f0:0c:9e:
9d:0d:43:fc:f4:69:c7:f3:92:63:5b:f8:aa:79:5f:84:68:bc:
c8:2b:81:34:ad:3e:87:62:32:b7:c2:3b:d9:64:94:20:4d:95:
8b:60:1d:c6:7c:cf:44:af:75:de:de:89:7c:a8:61:e7:b6:73:
dd:6b:a0:59:c1:39:5d:85:13:f2:fb:2c:6c:4b:71:43:5d:6c:
a9:df:24:3d:14:08:a4:31:cf:60:33:45:72:3a:d6:4b:fb:dc:
86:ec:ab:29:98:5a:d3:33:1c:d1:9b:32:e4:fb:08:9e:0f:d8:
63:94:be:6d:79:3a:5f:a7:90:08:e1:c5:ed:b5:21:98:51:f1:
94:e6:e1:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:52:32 2025 by rpki-client