Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
File: RETHw600tpd_oYoiN8owa5vuCOA.mft (raw, json)
Hash identifier: FrDWq3HmQ6cueadVQH0quKMiTG786QE8I7iRuJEsIyQ=
Subject key identifier: 40:5D:FB:1F:A9:3B:13:C0:2C:34:75:1E:35:D9:05:87:B9:51:6A:48
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 0198D6297BB9EBA33F3BBEF8E2A9EF0939BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
Manifest number: 1149
Signing time: Sat 23 Aug 2025 09:01:39 +0000
Manifest this update: Sat 23 Aug 2025 09:01:39 +0000
Manifest next update: Sun 24 Aug 2025 09:01:39 +0000
Files and hashes: 1: 2V9yE_-2gPzUwYdccQgBOoOM18I.roa (hash: eOCHHWhfMlB35sI0btwTirM6dsTLjT95v8bNNnNalmA=)
2: NEq6MArjlQuQ-WIB1VyRrErjAd0.roa (hash: MidMhTk3ASBcuW3/c0/stqSyljlKyQu+afJNZt4dhek=)
3: RETHw600tpd_oYoiN8owa5vuCOA.crl (hash: kfUTIVGcmFLbA75hWKEfiMD0QC0c+wNq5f5FFkP5I40=)
4: T9enhqzdG5yQEOgWkABkrQAk6M8.roa (hash: SxiuxM/I8FF8zreMQuHoAzLYfdJRNYC8zGUE4C2+MUg=)
5: YIWnRcAakVGioTGRMmr97QBMxt8.roa (hash: 0pAd524EgOV9gt8eDHTEF8KH00KSBimBO4oKROwsaA0=)
6: kaShJaLkR3B81NHQpcp6VAc_nlg.roa (hash: pqDRdBas3v1MNi9715+npvAM7Hsxyhh7JGLBbksQ+7E=)
7: lg3As9QftSBug7tpmYrQWLTzXlw.roa (hash: Zav5DG+USj65sND09nTQM5cgapiwyx+unRcWKNxbfPM=)
8: tLpYmjiy2-hs1MM_Lyatf45ocKg.roa (hash: /IX/rjwA4xnIpYI7Xf4mBV5PcdOdUpUQwLhk+QGjMLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:7b:b9:eb:a3:3f:3b:be:f8:e2:a9:ef:09:39:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Aug 23 09:01:39 2025 GMT
Not After : Aug 24 09:01:39 2025 GMT
Subject: CN=405dfb1fa93b13c02c34751e35d90587b9516a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:da:73:80:d3:fa:f3:74:ea:42:eb:2b:b8:
53:f2:0e:42:1e:ca:49:3a:b6:14:10:ad:9b:ec:70:
60:39:b6:80:ff:ca:38:78:ea:6e:53:4f:18:87:1d:
2e:6b:26:1d:14:65:15:ba:fd:8d:1b:b2:f3:78:fc:
e2:f3:bc:2b:a7:51:ef:1a:2a:21:c5:2c:83:a9:23:
1a:32:ad:27:00:73:a4:a3:fb:bd:06:01:fd:72:f0:
e9:5c:ca:9b:49:f1:e0:ee:d3:8c:9f:74:79:cc:f7:
6d:73:b3:a3:d5:53:78:45:41:c6:9c:e1:57:2e:bc:
4e:db:6a:ac:ac:ed:bc:0a:ce:62:ef:45:d2:16:9a:
e6:e3:2c:0f:e9:5e:3c:bb:36:ca:d0:40:6f:54:0d:
0f:ef:74:ad:12:35:b3:87:82:b1:cd:06:71:0c:f4:
b4:4b:10:de:a3:f7:49:5b:7f:b9:59:65:5a:fd:50:
ab:8c:af:32:93:43:5c:4f:01:9d:8e:e4:43:98:27:
91:18:f0:df:32:eb:d6:bb:6d:01:03:34:56:f8:79:
4d:bb:2e:fb:52:15:8c:04:fc:f6:d4:ed:48:fd:5a:
62:41:a8:7b:7c:65:9b:d3:f8:d5:77:d3:4f:21:6c:
1b:99:df:5a:82:a7:7d:9c:6c:83:f5:04:96:7e:78:
60:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5D:FB:1F:A9:3B:13:C0:2C:34:75:1E:35:D9:05:87:B9:51:6A:48
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:5d:4b:6d:0a:6b:d9:04:4b:f2:6d:4d:ce:fe:0b:44:e7:3d:
1c:85:6c:14:56:e5:da:4a:26:26:c1:9b:a3:2e:76:71:28:36:
a0:94:77:58:3a:d8:9c:de:a4:72:e6:10:63:c7:25:d3:16:b2:
d0:ac:3f:95:1a:89:16:5a:f4:26:65:74:2b:06:2b:dc:91:15:
5f:80:e9:4f:6a:56:a2:54:7c:9b:92:36:36:1c:c1:02:a7:06:
9d:c3:1c:9b:02:9c:45:75:08:f3:3f:c0:15:ae:c9:26:9e:15:
95:5e:94:e0:34:b4:a1:56:a4:67:97:4a:3d:10:61:18:87:f3:
3b:cd:4d:62:b7:85:ca:98:3b:54:53:0b:ac:f0:b3:ed:79:fd:
95:eb:7f:d8:94:b7:25:9c:15:40:8a:a8:67:c4:ef:9a:af:a9:
36:b2:51:d4:f0:cf:be:4f:40:2d:ab:d1:0d:d6:38:f2:fb:cc:
99:16:c5:cf:ea:68:d9:32:58:5e:cd:0d:36:d2:fb:7c:05:60:
63:8e:69:ea:32:9b:7e:28:47:0d:8e:ee:65:4c:e4:dc:e3:8a:
e6:3f:86:b9:b8:2e:a4:2b:01:ba:a5:62:cb:f0:03:6b:36:4d:
a8:99:ac:cf:f1:0e:11:18:14:c0:56:8b:35:6a:1c:58:19:3b:
ad:4c:91:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:20:03 2025 by rpki-client