Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: R0dUImK4KllQT/plxn763yXAoMiDwt33GD6KeszQZAs=
Subject key identifier: 9E:FE:AF:B3:13:BC:37:87:6D:07:F9:41:AF:AE:90:47:E2:6A:F5:11
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 0199FFFEA2FE632DC4E0AE0B4A1FA779A4B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: 0147
Signing time: Mon 20 Oct 2025 05:01:41 +0000
Manifest this update: Mon 20 Oct 2025 05:01:41 +0000
Manifest next update: Tue 21 Oct 2025 05:01:41 +0000
Files and hashes: 1: f9MGnlddFQ2IMf-Uoo2fTYxJ_co.roa (hash: kPIpbLqEj4dHSmVPx7WOIcV4CWQtCce8UvwQXn1AUT0=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: xcnhNLVbNe3u03erRobfi+/HLqanmVNo7GCLhySbQRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 05:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:a2:fe:63:2d:c4:e0:ae:0b:4a:1f:a7:79:a4:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Oct 20 05:01:41 2025 GMT
Not After : Oct 21 05:01:41 2025 GMT
Subject: CN=9efeafb313bc37876d07f941afae9047e26af511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:16:f9:d8:df:0e:2d:9b:8f:03:f5:a5:2d:a1:
bf:a6:a9:80:df:0a:86:3c:f0:07:6b:9f:75:87:58:
19:5b:6e:54:67:13:b3:2b:a9:92:f0:b3:d2:f9:dd:
03:6a:53:4d:cd:de:19:5b:3b:87:c7:73:de:8b:80:
f2:fa:b1:d7:67:f6:8f:c9:c9:a9:7b:4d:0e:04:70:
0c:66:bc:5d:e1:e5:49:9d:76:10:7a:90:f2:82:94:
21:e0:dd:06:24:47:80:5b:9d:70:f2:b9:b1:cd:68:
9c:93:26:96:a2:fc:64:bf:9c:a4:e8:b9:11:db:ea:
d5:0f:b9:12:6c:77:55:49:cb:7e:c7:84:13:cb:a7:
6d:d5:df:a0:66:ce:d5:cb:cf:b3:87:7a:28:fe:47:
f4:67:c4:9c:4a:6a:6f:d9:e8:ad:eb:3e:c3:53:af:
20:e6:57:d8:38:fe:95:7e:0a:7e:83:50:74:19:aa:
73:01:5a:a9:a7:70:d3:2a:93:bd:05:14:03:88:29:
e1:5c:59:ae:2a:8c:fd:38:7f:38:99:1d:b5:ea:8f:
aa:e7:6f:56:36:31:2f:ca:8f:70:3d:c9:c9:52:25:
a8:5a:bf:64:af:da:27:27:ec:96:44:f3:79:2b:44:
89:db:62:fa:89:fb:8d:9f:c7:1b:30:03:b5:34:4a:
ae:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:FE:AF:B3:13:BC:37:87:6D:07:F9:41:AF:AE:90:47:E2:6A:F5:11
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:26:af:8d:22:43:76:db:1a:a7:d8:ac:4f:f1:56:c5:9b:88:
c4:50:98:7e:d6:b4:14:de:f1:2c:27:04:89:33:36:5f:d7:32:
20:c0:2c:c4:06:ee:97:8a:3c:f9:f9:60:0c:3d:7c:51:92:7a:
8a:24:72:5e:07:c4:b0:96:7c:66:ed:a7:ae:8d:6d:a8:d1:99:
a6:70:08:1c:f0:ce:71:3f:4f:dd:31:55:9f:41:e7:31:b6:da:
9d:9b:0b:50:7e:63:08:3b:b2:f8:4c:ca:4b:28:c0:14:93:ac:
92:a5:bc:64:8c:77:13:8c:ec:88:e4:17:0a:8f:d2:f9:3d:26:
1d:d1:b5:1b:4f:34:7f:09:a0:40:68:50:bd:44:e8:e8:82:1a:
4b:b5:5f:ea:fe:59:f8:d0:c0:14:45:1d:da:87:8f:f1:2a:19:
2f:75:e6:e6:62:56:3f:28:be:57:bf:b8:33:94:52:ce:6e:25:
c5:76:2c:26:77:65:64:cb:ac:71:a2:7d:6d:f3:b5:f9:43:d1:
14:2c:54:a2:bc:1f:69:2c:cc:0d:d4:55:8a:44:3c:fa:16:42:
f2:5e:17:af:09:27:58:63:d2:5b:51:39:42:b5:3e:36:53:bc:
ba:ea:82:05:39:72:60:fc:40:58:e9:39:8e:5b:fb:a2:92:5f:
1a:27:63:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:39:01 2025 by rpki-client