Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: Wj+0fPdPpC7bS8v8KZ6w8D6gGfzp/aVSgCdtPKXtvpk=
Subject key identifier: 14:F5:76:59:7A:E4:43:15:C1:D7:13:82:4E:79:F0:80:6C:91:A2:28
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 0198D65F9278898559AEAA9E3C7A50E65C42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 11B5
Signing time: Sat 23 Aug 2025 10:00:44 +0000
Manifest this update: Sat 23 Aug 2025 10:00:44 +0000
Manifest next update: Sun 24 Aug 2025 10:00:44 +0000
Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: vePUKoQ5Rwdc5+3kwUAbUKNVxkIk0Qf3q1nFvOfkcW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:92:78:89:85:59:ae:aa:9e:3c:7a:50:e6:5c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Aug 23 10:00:44 2025 GMT
Not After : Aug 24 10:00:44 2025 GMT
Subject: CN=14f576597ae44315c1d713824e79f0806c91a228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5f:6f:e0:b1:40:96:f0:f5:b3:94:1e:1c:b9:
25:08:3e:4b:8d:38:78:3e:88:d7:d1:41:2d:d6:7a:
0d:cb:e5:2a:ad:88:7e:88:3e:43:15:d7:99:4e:f8:
76:b2:1f:d2:5f:88:3e:a7:17:9f:98:be:02:16:73:
55:39:3d:29:6d:2a:ea:29:b8:09:a6:d3:a9:e7:d5:
03:22:72:76:48:04:7e:89:84:cf:a2:f1:c1:78:0d:
e1:e8:66:6b:67:7d:cf:0a:d0:7c:10:8c:8b:40:f1:
05:6a:5d:4b:74:b8:64:e6:8a:aa:f1:05:da:fa:2c:
a2:b1:d5:da:4d:49:d6:94:64:32:28:db:8e:0c:c8:
33:f2:0f:25:29:40:29:da:f7:6c:36:e6:7e:b2:3a:
b7:07:78:4e:d0:8f:17:2c:9a:ff:4b:3c:be:57:15:
37:2e:8e:a5:6c:f2:d6:a3:89:9f:07:33:c2:ef:35:
a0:35:02:c1:79:72:e3:2f:af:b7:bb:a2:bb:80:5b:
b4:c5:d3:4f:20:b0:a9:94:0e:2b:79:0f:ee:7a:ca:
78:24:76:dd:80:d2:58:b9:2d:82:ae:10:61:05:eb:
c0:c3:4a:93:8a:55:38:37:a7:f8:3f:de:3d:93:26:
b7:9d:10:ce:a5:14:c5:b1:ef:89:0e:10:35:d0:98:
2c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F5:76:59:7A:E4:43:15:C1:D7:13:82:4E:79:F0:80:6C:91:A2:28
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:64:80:13:95:4c:ff:70:76:6e:99:6b:4d:a5:16:07:22:33:
d3:fa:28:5b:f5:83:1a:27:f8:99:71:0e:70:61:a2:74:1e:ca:
bb:45:9c:0a:b9:f8:8c:75:48:c3:5b:4b:9e:ca:42:b4:1b:8d:
5d:d6:3b:9c:d8:42:91:ac:bc:b2:36:dc:bc:9a:ce:43:57:93:
5c:80:9e:a6:e5:1f:9a:55:ac:02:9e:9b:85:df:c6:2e:82:2f:
0b:4e:fe:65:e5:bc:d6:14:61:bd:21:de:62:ec:60:e3:90:7a:
37:11:f4:f4:2f:5a:3d:23:fe:6a:b4:a7:5a:e6:fb:07:f2:81:
f8:1d:c1:4b:53:2f:bd:55:9a:90:76:6c:4d:ae:cb:9b:c9:41:
c3:b8:b2:3a:29:b4:75:54:aa:1a:2f:aa:57:f3:c0:e1:6e:52:
f9:94:d5:06:72:c8:7e:fd:3d:67:e9:08:16:eb:a3:70:d0:0c:
72:c0:8a:9b:2d:36:33:83:35:78:86:e3:2e:75:7d:bd:a0:31:
59:d7:e3:70:18:1c:d2:d0:83:57:c5:bb:94:54:7d:33:36:7d:
9f:78:b8:d4:70:d1:b8:23:8f:8a:0a:b7:6a:de:26:29:f5:87:
dc:85:ba:f1:ad:75:ce:96:33:a6:b2:74:fb:e6:c0:43:fa:7b:
fe:f3:5e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:27:19 2025 by rpki-client