Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: qykKB5FUZyHJ5lctaTg5uGeq2xWlFSTwHcpHAfsQ7Us=
Subject key identifier: 0A:0A:9C:C6:00:FA:1D:BF:EF:D7:49:5F:D3:BF:26:7F:AA:88:06:F0
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 0198D4A7B2B2DA519E8314349EB9A4E0D3DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 04B1
Signing time: Sat 23 Aug 2025 02:00:16 +0000
Manifest this update: Sat 23 Aug 2025 02:00:16 +0000
Manifest next update: Sun 24 Aug 2025 02:00:16 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: dt8VTs9YKJ3hILtE02BZuD1GL6zi0VeSUQjf4m0sZn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:b2:b2:da:51:9e:83:14:34:9e:b9:a4:e0:d3:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Aug 23 02:00:16 2025 GMT
Not After : Aug 24 02:00:16 2025 GMT
Subject: CN=0a0a9cc600fa1dbfefd7495fd3bf267faa8806f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:28:f2:c6:0c:e2:62:4d:ec:77:5e:92:e8:b1:
a5:e0:52:d6:b6:78:ba:42:ad:d5:70:81:f5:eb:58:
63:70:66:ea:53:9f:cf:2a:61:99:72:47:ca:43:20:
d7:99:4f:0c:a2:00:cf:3e:fe:d3:4f:52:45:81:8f:
bf:9b:c4:0d:b8:c5:2e:f5:74:4a:71:f7:b0:f6:10:
05:51:7e:d7:e8:ae:ce:85:92:17:bd:ed:5f:25:43:
6e:49:d8:3d:57:f9:fc:c0:56:5d:8e:99:52:ad:57:
d0:06:2c:fc:8d:50:6b:ad:6e:1d:d7:2c:c7:51:2b:
ff:60:2c:4a:5d:7a:dc:f7:42:1e:97:9a:75:7a:7f:
6d:93:0b:a8:13:62:99:c1:bc:c7:73:1a:60:79:82:
e0:f7:05:c7:52:bf:c2:78:48:77:42:cf:48:9a:60:
d8:21:f3:ab:2b:9a:d5:aa:a6:10:d5:30:01:76:2c:
99:89:72:4a:a3:d0:9b:43:b0:31:43:46:e3:7a:1c:
7e:80:fc:85:13:37:2c:26:03:85:e0:06:ad:42:16:
5a:43:c3:88:e6:2f:92:f4:b7:83:29:0c:16:c4:8b:
18:24:6a:38:48:17:f8:36:59:66:e0:65:ba:a6:0c:
14:11:6a:41:34:40:48:e3:40:2b:3e:bb:93:59:56:
f8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0A:9C:C6:00:FA:1D:BF:EF:D7:49:5F:D3:BF:26:7F:AA:88:06:F0
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:13:e8:ce:9f:11:6a:9f:28:26:17:6d:89:94:f1:1e:2a:3d:
67:26:cc:2d:bc:35:eb:39:bc:4c:9a:3a:f8:d2:dd:db:5a:9b:
a1:c4:de:4b:5e:da:93:db:b1:41:1a:bd:8f:93:e9:16:9d:8d:
1b:5f:dd:d1:ef:49:e2:2a:d5:b5:68:cb:c7:4c:95:d8:3f:15:
ca:61:1d:72:80:62:6c:f8:a7:b0:bb:33:28:c4:ce:bc:70:8c:
7a:05:75:60:4e:48:31:dc:bb:f5:65:c9:6a:ee:d0:48:3e:a7:
6a:93:82:2e:65:c7:58:11:9b:2c:09:2a:cb:56:b9:46:cd:7c:
42:09:28:93:9c:96:85:8d:b2:12:ad:9b:c6:46:ce:60:8d:46:
8c:11:3d:1c:86:b3:00:f6:e9:15:fe:f2:49:a8:0d:5a:4a:51:
cb:d4:b1:dd:98:d7:e6:ff:48:0c:da:2d:3f:c1:7b:ee:99:1e:
8a:7f:e0:c6:53:50:99:f3:46:bd:80:f3:e1:21:7d:f6:3d:21:
89:2d:4a:8a:ce:0b:f5:de:72:8f:33:aa:b2:d6:1c:71:73:fd:
04:f4:e2:07:c8:d9:4b:ea:10:02:f3:69:c1:83:aa:da:11:6b:
f0:d9:4f:53:7c:59:80:14:bb:ca:25:03:c4:e8:dc:6c:2f:04:
9c:44:0c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:52 2025 by rpki-client