Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier: qkhmyXqgmZD87rx5k/qzQuzemum1xYwhXeAv5qOaKR8=
Subject key identifier: 97:37:E5:90:F4:2A:B1:F7:E7:E3:E4:F9:2E:7C:4B:84:1C:7C:00:73
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial: 0198D4E03A647F41481A1501B43C473CD8D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 03:02:01 +0000
Manifest this update: Sat 23 Aug 2025 03:02:01 +0000
Manifest next update: Sun 24 Aug 2025 03:02:01 +0000
Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: TnWfc3TBhUKqZUq5R53OEVnBaHcDuG4VJ2xLqghW2d4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:3a:64:7f:41:48:1a:15:01:b4:3c:47:3c:d8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
Validity
Not Before: Aug 23 03:02:01 2025 GMT
Not After : Aug 24 03:02:01 2025 GMT
Subject: CN=9737e590f42ab1f7e7e3e4f92e7c4b841c7c0073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:dc:91:ba:04:e5:24:55:81:70:0e:76:cf:1b:
ba:5e:ba:73:7b:4b:d9:f6:e7:a6:2c:53:ee:23:60:
57:5a:30:4d:32:06:d7:b4:ac:b6:78:b6:ba:6c:23:
34:0f:5e:f4:34:e9:cb:7f:a6:28:12:51:ac:b3:d5:
77:19:b2:4d:3c:56:74:a8:48:75:1f:6d:17:6a:45:
5f:d2:37:6f:c7:13:8e:0c:39:a6:4a:21:af:e4:34:
3b:e5:60:f9:63:50:72:f9:8d:77:5c:a6:f2:a8:93:
67:42:6a:cd:79:43:82:a3:00:c4:11:62:6d:b9:5e:
df:c0:34:d8:d0:6c:1f:50:91:df:3f:f6:e0:3d:6a:
80:0c:0d:05:1e:46:34:e8:91:9c:1c:19:97:b5:00:
d8:4b:fa:e3:cb:70:8e:25:8e:ef:ef:12:43:64:ae:
de:64:fb:b2:90:9e:21:96:57:2f:a0:a1:cd:9a:55:
32:c0:2e:c7:2c:e2:17:9a:32:64:09:f8:38:91:02:
fb:20:b1:00:86:48:91:72:1d:59:b7:ce:b8:13:6f:
25:17:58:30:2f:d7:9f:cc:d5:3c:26:7e:64:cb:f3:
63:ac:9b:9f:44:3f:ae:93:fc:a0:4b:64:8b:b4:4a:
8a:d1:21:bb:66:1b:a5:1b:fa:4a:6f:10:ad:03:5e:
2c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:37:E5:90:F4:2A:B1:F7:E7:E3:E4:F9:2E:7C:4B:84:1C:7C:00:73
X509v3 Authority Key Identifier:
keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:4b:2a:8f:5a:23:cb:fc:a0:16:63:5a:01:b6:57:be:0d:7d:
83:76:57:ad:85:f1:04:2d:a7:96:fd:2f:66:b8:4e:59:f8:1f:
e3:1b:d9:8d:ca:96:60:6c:c0:64:bb:74:59:6c:63:2d:bc:ad:
a9:63:dd:0c:a7:a0:16:a5:2f:e0:41:2a:a1:af:84:bf:1d:26:
45:81:97:0f:8a:79:a8:87:dc:72:31:95:04:b1:72:d2:4e:19:
70:3f:52:a3:ed:4d:e7:a5:8e:9e:c3:8c:2c:c7:05:06:30:f9:
4e:38:b2:a4:cf:c6:ba:8c:08:92:65:bc:40:44:de:56:a4:07:
f7:11:24:92:dc:06:7b:dc:e3:94:22:d3:80:3f:bb:31:b5:34:
df:25:e9:fa:41:92:96:e1:a4:68:36:0d:61:88:d6:df:95:37:
c4:89:dd:c9:c4:b6:b0:a3:c1:31:f2:53:21:a6:ae:d5:7e:7f:
63:df:a7:f5:32:32:cd:74:4d:79:56:5c:e5:30:9a:76:9f:a6:
e0:81:09:97:6f:a9:61:c8:c8:71:39:be:57:b1:80:f8:a5:ac:
12:ff:c9:ca:de:35:a4:b2:f5:32:c5:56:1c:fd:b8:e5:81:cf:
7e:a9:c9:44:22:aa:7a:dd:0f:63:ca:b4:14:a5:d0:7d:fd:b2:
07:67:71:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:22 2025 by rpki-client