Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: zquUSAHi3YRVPg2TQkTQ6S/0y3vKBwnsu1mcEpVlzIE=
Subject key identifier: 3F:90:5B:45:DB:CA:0C:5C:9B:66:FF:51:B4:27:CA:B8:ED:3C:E3:F7
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 0198D54E6F3A939549108D358073314502D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 039A
Signing time: Sat 23 Aug 2025 05:02:23 +0000
Manifest this update: Sat 23 Aug 2025 05:02:23 +0000
Manifest next update: Sun 24 Aug 2025 05:02:23 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: Wr9+PRvdaM/+quDKxSZqNam5is0N7jMCk0vkqvaZyr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:6f:3a:93:95:49:10:8d:35:80:73:31:45:02:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Aug 23 05:02:23 2025 GMT
Not After : Aug 24 05:02:23 2025 GMT
Subject: CN=3f905b45dbca0c5c9b66ff51b427cab8ed3ce3f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5c:f8:12:81:d1:e7:48:0e:f6:91:e3:4a:0a:
fb:d2:60:cf:c3:66:04:30:e3:f5:f5:3d:de:2b:70:
7d:1d:b8:fd:f2:b8:2b:4c:77:37:95:3d:ef:58:fa:
7d:2a:e1:84:bc:9d:64:f3:3f:bc:24:90:a2:e8:d2:
01:9d:e7:78:d0:b5:f1:75:0c:16:e1:4e:6c:2f:51:
b1:b5:49:a9:c9:94:c7:65:60:2e:ae:b9:de:60:4f:
60:58:7e:93:d5:66:cc:16:f4:75:6c:b9:f4:c4:7c:
2b:a3:03:21:33:62:76:be:bc:4e:d1:23:15:85:1e:
73:3f:94:f4:f8:df:97:8c:f0:de:91:7b:1f:e5:36:
05:ee:e6:cd:84:ee:5b:74:7e:87:fc:5a:09:78:4c:
62:72:ec:ab:ce:dc:fa:f4:9a:fd:82:bf:92:37:cb:
ff:a3:99:66:6d:39:ea:fb:be:ea:c0:c7:b6:9a:d9:
77:c6:4f:b1:27:7d:b1:41:b4:ac:45:43:25:ba:fb:
ec:15:3e:79:86:b9:2f:54:76:73:b4:50:4a:bb:51:
2a:5e:94:a7:c8:d4:76:a3:4e:b4:56:7c:e0:cd:4e:
dc:40:44:9f:c0:3f:7e:33:11:e1:75:0d:a8:c1:5e:
66:ee:94:79:33:dc:71:fd:9b:0b:3e:d7:d5:34:72:
b2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:90:5B:45:DB:CA:0C:5C:9B:66:FF:51:B4:27:CA:B8:ED:3C:E3:F7
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:47:39:b4:9a:b7:87:de:22:9a:7b:eb:13:87:e3:2c:6b:8b:
df:d1:a8:ef:7d:06:0c:06:e6:d1:a1:3f:4c:2f:8c:e8:73:13:
fc:67:61:42:5c:36:65:0b:cb:74:31:86:7c:6d:21:01:37:0a:
09:27:f6:ba:27:3b:2a:3f:b2:55:c5:dc:69:21:a3:b9:d3:e4:
60:03:6f:06:3d:9e:3c:3d:a1:3f:9c:02:9c:12:ee:e7:3e:c8:
37:39:61:10:a2:27:d5:0e:b8:1f:38:c9:a9:b2:4c:43:95:8a:
cf:ac:e0:9e:19:45:df:9a:9b:70:81:14:6e:6f:bb:a0:1d:43:
90:27:7e:d6:20:b5:2a:df:63:a4:34:a7:4c:b4:b7:61:cb:12:
33:85:24:f1:49:cb:23:5d:c8:7b:e6:fc:64:43:c9:62:78:09:
14:2b:8a:fb:91:ff:74:62:62:c9:5b:67:55:0e:e6:84:da:6a:
2a:9c:ee:6b:d3:84:3d:28:dc:3f:50:02:56:aa:f7:12:d5:ca:
b5:de:4f:35:00:b6:bf:1c:12:f8:05:fd:b1:37:c6:c3:98:14:
d8:91:f3:5d:55:8b:28:3a:2d:f2:9e:cd:e5:f1:10:ff:9a:2c:
53:03:55:6d:39:4b:de:49:d6:75:9d:3b:9d:61:27:25:18:dc:
62:e0:1b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:39 2025 by rpki-client