Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: mTkPuLbkuEQmW0GVWQb81Yg5SFtSZZcy0+fsog8Qclc=
Subject key identifier: CC:31:99:E5:D9:8D:B8:2E:F9:F2:A0:9C:64:C3:5B:D3:24:C3:B6:7E
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 0197B6D747570490511802FF429D1F77168E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 041D
Signing time: Sat 28 Jun 2025 14:00:51 +0000
Manifest this update: Sat 28 Jun 2025 14:00:51 +0000
Manifest next update: Sun 29 Jun 2025 14:00:51 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: 7p9MzX0VUWy73oSDPfy/nP3dcPyLm8vLxKNg3GGrhMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:47:57:04:90:51:18:02:ff:42:9d:1f:77:16:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Jun 28 14:00:51 2025 GMT
Not After : Jun 29 14:00:51 2025 GMT
Subject: CN=cc3199e5d98db82ef9f2a09c64c35bd324c3b67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f4:09:73:c4:8d:0c:db:e8:70:9b:fd:a3:36:
4d:d7:45:28:4e:2b:79:f1:c1:4b:96:49:ee:e5:9d:
de:3b:87:eb:62:dd:d0:da:a4:18:ee:ba:9e:63:81:
ee:67:13:7f:e7:3f:34:a5:58:8c:fd:7f:44:3b:17:
88:29:09:e5:ca:99:75:f2:f1:6b:d7:31:9b:fd:06:
fc:ee:ee:c1:2b:14:87:dd:1e:86:75:34:2b:be:a4:
a4:b3:66:53:d5:eb:56:46:3f:7c:f2:dc:89:56:af:
5c:ac:c4:e0:59:12:99:94:70:8d:cc:b3:11:26:61:
33:d2:cf:d5:8e:05:85:fd:4e:ac:f9:50:7e:41:5b:
b1:d3:c3:60:3f:b1:de:cb:6f:e2:8c:61:4c:f8:d5:
25:a8:2b:7c:9e:bc:60:e0:b3:4f:c1:16:ad:e0:21:
86:4d:ac:35:e5:a4:cb:39:85:39:33:0e:95:5c:d3:
f8:be:e1:ec:05:cf:60:da:db:a6:00:b0:42:8c:73:
5e:30:77:b8:65:91:82:65:9f:26:bf:26:0a:d9:2f:
2a:f1:44:7f:77:b8:06:15:93:2e:b0:3f:e0:81:2b:
74:c4:92:65:53:12:8c:9c:97:1f:00:66:03:7b:bc:
85:2c:95:ba:02:b5:55:9f:5a:7c:1f:2a:e1:85:73:
f7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:31:99:E5:D9:8D:B8:2E:F9:F2:A0:9C:64:C3:5B:D3:24:C3:B6:7E
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:fb:3b:30:b3:b4:db:f7:19:7f:27:ce:0f:d7:46:bd:f4:bc:
f9:09:df:a4:b0:cf:9f:37:1d:ce:1e:9f:cb:39:61:96:ed:e9:
91:37:35:70:db:e6:6e:e8:9a:1f:14:53:2f:4d:d7:db:fd:00:
d3:a5:8d:2e:47:6d:aa:be:0a:78:fb:f0:0d:99:d4:e3:8b:28:
22:d8:df:c4:a0:89:0c:e4:4e:a0:d6:bd:ce:46:db:cc:c6:c4:
a7:ea:ce:2a:c7:08:89:f6:89:48:9f:10:aa:f6:cc:2a:92:ec:
5f:45:60:30:c7:05:dc:d5:01:44:50:fb:16:88:14:2a:23:1f:
1d:2b:4a:3c:50:77:6d:e6:78:31:8d:e7:a1:09:2e:55:46:65:
49:d3:45:5a:76:be:e7:44:69:91:4d:24:17:b6:80:90:37:aa:
6b:1e:05:51:65:6b:07:2c:f4:6f:b3:43:fd:89:fc:8c:31:e7:
64:b4:ae:55:3e:aa:da:02:93:95:d0:cc:49:13:7e:16:27:6d:
bb:34:5d:75:66:11:0e:d4:50:56:25:37:3d:91:eb:7b:c7:b5:
fb:13:13:2c:90:72:4d:c6:9e:36:43:26:0a:d0:be:00:e9:0d:
21:f9:37:e1:c5:b5:d9:1a:3f:31:76:15:e8:d9:9f:ba:95:67:
db:91:a0:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:09:21 2025 by rpki-client