Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: QgHaqwsbVA/sWm7VK0P+0H95SsV4qM0SnZMbEfx4lJY=
Subject key identifier: F7:A4:04:F1:3B:C5:B3:3D:59:CE:A4:1E:23:B5:C1:55:97:D1:EB:92
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 0199FBEBC23B129595ABD574B9B952474E59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 10:02:35 +0000
Manifest this update: Sun 19 Oct 2025 10:02:35 +0000
Manifest next update: Mon 20 Oct 2025 10:02:35 +0000
Files and hashes: 1: 1hbevT8gwbMVGXnU3oslqDok4xQ.roa (hash: PvOSpkQG3GMAcOSv9DP0juXGFg1PxvMowO3npVuSH5E=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: rrA9OeUgKokIJd+XxEcCYZdVZFnglVv2Sz0j34G5oGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:c2:3b:12:95:95:ab:d5:74:b9:b9:52:47:4e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Oct 19 10:02:35 2025 GMT
Not After : Oct 20 10:02:35 2025 GMT
Subject: CN=f7a404f13bc5b33d59cea41e23b5c15597d1eb92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:39:8b:98:c2:af:22:89:7b:81:da:90:b9:89:
df:67:92:2c:e3:0e:12:5d:9c:f4:4b:df:83:5d:ff:
f6:5f:71:59:ae:c0:77:2a:99:a1:2d:82:73:06:f4:
57:f6:80:14:7d:c3:bd:e4:6f:54:0f:4b:98:7d:05:
18:d2:53:b4:2a:b0:37:65:82:8a:8d:e9:ed:1f:61:
b2:a3:18:d4:ff:ff:cf:0b:70:36:c6:9f:5b:58:32:
ba:ab:a5:82:8f:ec:18:38:90:59:28:01:b9:fc:13:
57:ab:31:41:35:ca:e9:41:64:e8:f6:b5:66:0e:c9:
86:4d:35:ce:a7:3a:95:25:1f:96:d9:5b:35:27:91:
fe:11:43:bc:96:94:10:b6:58:c9:c5:09:12:0a:2c:
60:d0:9c:f6:b3:88:9a:0c:db:0d:5d:31:91:43:9e:
08:34:61:74:7e:f7:21:af:74:8b:47:ce:d1:8d:40:
b2:99:e2:b0:be:38:49:45:21:41:08:1c:35:a9:e6:
7b:11:f0:ba:63:01:0e:ec:8c:35:bb:d7:03:5c:85:
85:3e:3c:0c:35:48:c1:7e:1a:dd:94:1a:45:9d:ec:
c7:2e:78:b2:aa:43:d3:0b:53:7f:76:e7:ea:c4:0b:
c4:da:80:cb:a6:f6:b1:1a:53:ce:1e:fb:28:ac:26:
d2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A4:04:F1:3B:C5:B3:3D:59:CE:A4:1E:23:B5:C1:55:97:D1:EB:92
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d3:84:3d:39:b7:71:50:2c:c3:27:95:10:0a:51:d4:ce:4c:
54:cb:42:7c:a6:b3:58:32:f4:b2:c5:18:30:fc:f6:1d:ea:ca:
9a:39:e3:a7:6d:33:ad:85:54:c2:65:0d:b6:06:91:8f:52:56:
38:2f:3d:1e:d0:ee:f9:17:3d:a4:ad:e7:57:53:f9:77:77:5c:
a1:ba:1c:70:a8:f3:9e:d6:4b:e3:f9:ab:cd:1f:14:50:ea:b3:
26:98:ee:bf:33:3c:93:e4:b4:17:63:9d:b6:de:70:34:44:63:
a7:ac:02:be:aa:c9:c6:f5:ca:af:71:ae:5b:ee:eb:ab:93:c1:
28:47:41:2c:b0:3a:fb:a3:2b:b3:ea:5f:a6:b1:09:03:53:91:
8b:82:cb:07:54:c1:13:bb:1f:6a:ff:42:cd:af:d2:a0:ce:cf:
20:ef:97:3d:51:d9:42:0c:a0:c0:0f:97:30:75:64:90:0d:da:
64:d2:af:65:0a:25:97:6f:dd:34:ed:e3:02:73:63:21:15:93:
58:69:01:c5:67:53:9c:3a:23:c4:ab:9e:92:4f:fb:71:a3:1b:
7f:37:6b:9e:cb:b6:d8:20:0c:4e:7e:9f:ea:db:4d:93:56:eb:
82:4a:82:e7:d4:29:7e:b4:d8:53:83:4d:00:c7:93:7a:6d:4d:
4b:c0:bb:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:46 2025 by rpki-client