Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
File: RETHw600tpd_oYoiN8owa5vuCOA.mft (raw, json)
Hash identifier: 3wQ+1qnKFFmXbAe4Mn085jlXDrzNhQbaf9JkZDaJd2Y=
Subject key identifier: 59:F5:46:BB:53:C4:EA:94:82:26:CD:51:72:9A:55:8E:8A:60:3B:4E
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 0199FDA1C1C82B7965FD1BFA558C6D0C1202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
Manifest number: 11E2
Signing time: Sun 19 Oct 2025 18:01:00 +0000
Manifest this update: Sun 19 Oct 2025 18:01:00 +0000
Manifest next update: Mon 20 Oct 2025 18:01:00 +0000
Files and hashes: 1: 2V9yE_-2gPzUwYdccQgBOoOM18I.roa (hash: eOCHHWhfMlB35sI0btwTirM6dsTLjT95v8bNNnNalmA=)
2: NEq6MArjlQuQ-WIB1VyRrErjAd0.roa (hash: MidMhTk3ASBcuW3/c0/stqSyljlKyQu+afJNZt4dhek=)
3: RETHw600tpd_oYoiN8owa5vuCOA.crl (hash: aW+bc/mxOLsW2DLSNdTHcHeP/7Dz6LxnRgUKxfMY6aE=)
4: T9enhqzdG5yQEOgWkABkrQAk6M8.roa (hash: SxiuxM/I8FF8zreMQuHoAzLYfdJRNYC8zGUE4C2+MUg=)
5: YIWnRcAakVGioTGRMmr97QBMxt8.roa (hash: 0pAd524EgOV9gt8eDHTEF8KH00KSBimBO4oKROwsaA0=)
6: kaShJaLkR3B81NHQpcp6VAc_nlg.roa (hash: pqDRdBas3v1MNi9715+npvAM7Hsxyhh7JGLBbksQ+7E=)
7: lg3As9QftSBug7tpmYrQWLTzXlw.roa (hash: Zav5DG+USj65sND09nTQM5cgapiwyx+unRcWKNxbfPM=)
8: tLpYmjiy2-hs1MM_Lyatf45ocKg.roa (hash: /IX/rjwA4xnIpYI7Xf4mBV5PcdOdUpUQwLhk+QGjMLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:a1:c1:c8:2b:79:65:fd:1b:fa:55:8c:6d:0c:12:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Oct 19 18:01:00 2025 GMT
Not After : Oct 20 18:01:00 2025 GMT
Subject: CN=59f546bb53c4ea948226cd51729a558e8a603b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f9:4a:f0:88:26:eb:ee:d9:1f:be:4a:a3:fc:
80:82:ca:d2:93:89:c3:42:8b:ef:84:3f:82:bd:c4:
98:3e:7b:7d:ef:c9:80:22:fa:cb:e6:6e:72:08:6a:
ea:22:ca:fc:61:6c:3d:0f:ff:7b:36:9c:d3:ad:3f:
da:d1:f8:20:eb:6e:db:20:11:ea:4f:9c:1d:d1:18:
74:2b:6c:cd:3c:b3:26:fd:fa:e9:43:eb:71:31:16:
bc:7f:cf:e3:72:45:57:1f:aa:d2:34:36:67:19:c4:
51:b5:e9:1e:58:76:71:7e:34:8d:ca:61:9e:fa:9d:
fe:11:d0:4c:25:44:87:b1:72:c4:cf:66:0c:9b:28:
aa:60:80:c0:b0:d5:5f:1a:da:10:aa:8c:de:34:bd:
9c:59:b3:b5:6e:d1:7c:10:c8:a6:bf:d8:e0:b7:ab:
6f:13:09:48:c6:13:44:60:2f:09:5f:6b:df:67:19:
79:11:2a:0b:6f:3e:38:e3:52:45:ce:cd:68:a4:f4:
16:57:98:81:d4:c2:30:d5:7e:65:18:2a:98:d6:21:
cf:e1:e2:95:53:0b:4a:ba:e0:87:d4:e9:af:18:82:
73:34:af:df:de:27:91:62:39:b0:a8:71:e8:d1:e7:
4c:dd:09:d7:51:32:97:c0:82:c9:c9:9a:d9:d9:55:
35:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F5:46:BB:53:C4:EA:94:82:26:CD:51:72:9A:55:8E:8A:60:3B:4E
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:2d:6c:f7:f5:87:bb:33:05:8c:51:ba:57:59:9c:f8:f1:e4:
6a:1c:66:7f:db:1f:c9:19:55:6c:a3:46:0f:f5:ce:cf:69:03:
ff:34:a0:ce:b9:10:e6:cb:39:c7:de:d7:e8:29:70:77:90:97:
4a:a5:a7:32:f0:68:51:5f:06:d7:38:b9:98:c6:bc:0b:88:85:
bd:da:c5:eb:49:a0:ff:08:e5:e2:3f:40:64:fd:bc:ba:a7:70:
a1:41:6c:a1:74:dd:74:e2:dd:f8:96:ef:bf:f7:bd:1d:f2:2b:
20:6d:05:b2:fe:a6:82:86:ed:cb:6c:a1:58:3c:2d:c0:e7:b2:
fb:ce:07:05:b6:bd:d2:a4:a1:d1:bf:e3:58:58:1f:a5:e5:24:
a7:23:2a:1b:f9:92:51:36:a4:c3:44:e0:ac:47:c6:5a:95:6f:
55:30:46:e4:c1:e9:24:0d:bb:30:81:34:17:ea:5b:f6:e2:d1:
56:0b:91:5d:e8:12:36:ba:c0:c8:70:ef:16:41:11:e9:a7:e8:
89:9a:06:e1:f0:52:f5:a9:a3:fc:3f:ff:d8:2a:cc:50:3b:a7:
cd:4c:5a:1a:a9:01:8c:52:09:39:e4:38:10:90:97:9c:7e:2d:
7b:2c:79:2d:d9:68:e0:28:0c:d8:ca:1f:d5:83:e6:4d:9c:9b:
c2:09:27:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:47 2025 by rpki-client