Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: xwH5TdUixiYcQLh41oaY45Fu3Pp3cmPaqzDZQPPtbbQ=
Subject key identifier: D1:87:5A:AA:7C:9F:81:7C:2F:DE:2B:8E:DE:71:15:16:E3:D0:8E:DE
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 0197B6D770910AF5684C43B62BD52DB66C58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: 18
Signing time: Sat 28 Jun 2025 14:01:01 +0000
Manifest this update: Sat 28 Jun 2025 14:01:01 +0000
Manifest next update: Sun 29 Jun 2025 14:01:01 +0000
Files and hashes: 1: f9MGnlddFQ2IMf-Uoo2fTYxJ_co.roa (hash: kPIpbLqEj4dHSmVPx7WOIcV4CWQtCce8UvwQXn1AUT0=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: wYTdL+pXfEI13sYcAq3HYmVl0VXmb2cHyF4P4FmpddU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:70:91:0a:f5:68:4c:43:b6:2b:d5:2d:b6:6c:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Jun 28 14:01:01 2025 GMT
Not After : Jun 29 14:01:01 2025 GMT
Subject: CN=d1875aaa7c9f817c2fde2b8ede711516e3d08ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:46:3b:17:b8:aa:94:44:35:b1:64:11:e5:09:
70:a4:4d:9b:ae:e0:94:67:09:bc:d8:ec:ec:82:b7:
06:a5:37:11:b7:62:cb:39:02:0a:6a:69:52:74:04:
6b:96:2f:16:fc:ae:cf:67:8d:e7:26:f1:14:a0:9d:
ed:3e:5b:34:f1:7a:3f:9d:75:47:d3:59:fd:c9:aa:
eb:cc:dd:21:a0:b2:88:68:40:85:75:77:da:0b:37:
37:81:e1:e8:4b:e5:c5:c8:b5:87:c8:70:d1:c4:60:
03:f3:3d:15:4d:f7:17:ff:40:4f:23:ce:e8:73:c0:
3e:3a:6a:c7:86:80:e8:dc:76:05:f6:03:7f:45:eb:
7e:80:d7:42:f0:77:e8:b7:92:ea:0f:36:96:c3:d3:
0d:9d:43:dd:3d:bb:a8:5d:08:89:a8:cd:ba:41:40:
f2:08:de:f7:93:53:48:45:c6:c0:6c:e4:73:8d:e0:
ff:da:0d:bf:af:ec:76:06:b9:56:49:a0:0a:b0:16:
8b:a5:97:48:d8:b2:65:68:7d:91:15:01:b8:f0:c8:
25:94:4b:10:9f:60:3d:31:0d:10:b4:45:80:5d:0c:
e0:0b:7a:77:19:d8:57:da:d5:3e:20:4f:d1:44:3e:
5a:ac:42:33:8a:6c:a2:b9:28:7e:7d:31:00:77:c4:
1c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:87:5A:AA:7C:9F:81:7C:2F:DE:2B:8E:DE:71:15:16:E3:D0:8E:DE
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:db:28:b4:65:03:49:78:7c:44:90:48:ff:b3:63:2e:e2:b4:
9a:7f:fb:93:3f:07:39:a5:3c:32:39:77:25:64:d2:0f:4d:3a:
fb:43:46:ac:42:fa:6d:69:25:5a:9a:ac:94:f8:cf:ec:28:49:
0d:61:d3:91:4d:cb:1d:29:27:6a:2a:d0:6b:6b:ef:d7:97:6e:
69:c2:b6:02:31:81:09:43:b0:4d:e8:87:61:a0:4f:0e:d8:4c:
92:74:f7:dd:e1:9f:78:3f:6f:10:5c:ed:62:02:84:c2:54:52:
8f:09:b3:2a:53:b6:79:88:0e:15:d1:84:ad:13:5d:59:4e:55:
cb:50:d9:12:b9:08:c3:ef:0e:b5:5f:6b:44:4a:7e:8f:4c:ee:
b2:df:9d:ce:1d:d2:9b:96:bb:9c:04:7c:11:c3:11:dd:35:33:
72:8f:55:f2:eb:25:60:4f:3b:d2:27:45:e5:62:e5:33:52:1a:
cc:4a:1a:0f:eb:f2:bc:5c:21:5c:a7:0c:85:04:13:fb:2b:d4:
f9:7f:bd:70:73:0d:b9:6a:2d:dc:4f:a0:71:8e:d0:bb:3b:5a:
2a:7f:4f:7a:4b:59:38:61:15:ae:73:a6:8d:4f:a2:87:23:dd:
16:8d:34:cc:fb:63:30:5f:02:9c:5a:b9:77:2b:5c:53:63:fe:
f5:9e:f5:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:39 2025 by rpki-client