Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: af7XbJ2GHql6JAfdjhGs0IasTVk0pBXHG6YosWzXavw=
Subject key identifier: 0C:34:01:BC:66:F0:51:E2:64:54:D2:0D:CD:EA:91:FF:5C:15:FA:A3
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 0199FC219D26E212E52FFEBF65B2B2A384DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 054A
Signing time: Sun 19 Oct 2025 11:01:25 +0000
Manifest this update: Sun 19 Oct 2025 11:01:25 +0000
Manifest next update: Mon 20 Oct 2025 11:01:25 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: otvILlWs/M3R3AJMlYA0mVno0fTbn/mzCbqGk25vuA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:9d:26:e2:12:e5:2f:fe:bf:65:b2:b2:a3:84:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Oct 19 11:01:25 2025 GMT
Not After : Oct 20 11:01:25 2025 GMT
Subject: CN=0c3401bc66f051e26454d20dcdea91ff5c15faa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:0e:da:e7:81:12:a7:58:b8:97:4e:4e:b6:
17:32:b3:42:bc:b0:7c:20:65:2c:27:9f:fe:98:3e:
82:62:ed:a2:a4:33:35:1e:3f:4c:cf:10:a8:81:43:
42:03:2f:1e:da:00:a4:a9:71:c1:2a:29:83:23:f5:
22:d9:80:53:1d:70:81:64:f2:f0:bb:9e:8e:fa:c2:
7f:c2:d7:b9:8b:94:f1:29:40:35:d8:ea:af:c2:92:
c9:37:c9:24:e5:e5:54:28:60:cb:79:28:70:19:9b:
e8:96:41:12:c8:20:44:21:1b:4d:ff:55:93:d9:23:
8e:c5:ce:b5:f7:53:2f:23:ed:78:87:e5:3d:16:90:
83:5f:83:76:56:ef:57:f1:65:1a:c6:c2:b6:0a:b5:
78:b8:46:fb:52:d3:87:0b:2b:15:db:af:da:19:a5:
8d:7d:07:6a:7c:c7:e2:9d:4c:d8:4c:cb:b6:6c:aa:
a6:10:e1:eb:1d:ab:f4:1c:2a:8d:d1:a8:2e:da:14:
86:14:a8:11:56:c2:11:af:fd:04:18:ba:86:10:31:
cc:2f:2d:02:eb:40:8e:00:0c:77:dc:8c:b2:68:c2:
6f:1a:ba:52:24:43:b5:5f:f4:b6:62:2e:ee:e3:59:
4f:6f:45:b6:d4:ba:36:3b:d7:0a:3e:dd:8f:9d:3c:
4b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:34:01:BC:66:F0:51:E2:64:54:D2:0D:CD:EA:91:FF:5C:15:FA:A3
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:64:b8:6f:f9:83:7a:f9:98:cf:31:a8:c4:7d:78:1c:41:4c:
2b:22:be:c5:70:52:ff:21:46:7f:5c:38:a0:33:16:9e:ce:0e:
06:40:f9:c9:12:41:73:f2:0b:2b:8f:30:0a:a2:4f:be:2b:4c:
a3:17:19:df:3f:8b:e1:37:17:11:4a:2e:1d:56:d5:79:1d:02:
27:7b:3b:2f:21:58:4c:af:14:3c:f8:73:e5:ba:1e:77:24:9e:
8f:8f:a2:25:3e:68:41:40:1b:f6:65:80:2b:46:51:e1:80:2d:
a3:16:10:84:6a:1e:fd:ac:33:e5:16:7d:3b:16:86:b5:61:4e:
b9:2e:6d:9e:3d:ee:a8:31:92:8b:a3:99:3f:5f:9f:0c:77:06:
25:ea:9c:69:ff:75:d5:c7:66:7e:ce:67:de:1d:0f:00:9b:ce:
4e:da:75:fd:4c:86:37:86:65:ec:76:36:f4:e5:9f:80:8c:af:
fe:c6:81:4b:9e:e9:1e:c4:ca:65:83:49:a6:06:29:d5:f8:75:
50:b0:f8:60:38:91:78:6f:14:38:9f:52:5f:b2:a0:dd:c7:7f:
e9:75:77:69:dd:3a:57:60:ea:4d:63:fe:df:3a:80:f0:fa:0e:
27:ed:f5:ef:f0:1f:80:24:cb:82:86:a2:db:52:04:4e:f5:ce:
13:ef:e9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:51 2025 by rpki-client