Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier: wRyg/kbWLLDokVrqFva5C+Ug6aE0hyhY3DgWLH0lEX8=
Subject key identifier: CD:9F:4E:A1:07:0D:D3:CB:C6:46:77:B9:FE:82:81:2E:A1:4C:39:91
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial: 019A4DE1BF6CC62239D53BE98139E9F1BD18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number: 106A
Signing time: Tue 04 Nov 2025 08:00:31 +0000
Manifest this update: Tue 04 Nov 2025 08:00:31 +0000
Manifest next update: Wed 05 Nov 2025 08:00:31 +0000
Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: Tv6ukSiCeYpNtL32GbMW+7qFaAG1C9xxc8voGawOSYU=)
2: NO2hwXxk6AiYVNho9DdnmakKibo.roa (hash: KjRA6xm9G+dFvFvEr1pRfwpBhmr4/09q+ZWaH5ApdDY=)
3: On6R4nNTZ0YYv_0GBGytm6COqe8.roa (hash: bNbiiOOyNE6FHV7YY8Nd3d02QHZTqUZthKpv3jqVHn4=)
4: _UiUxv0oU2Vs8vl9aQlqGT-rguM.roa (hash: EibngS/6U5WbywdZke7WcdMlnrfByt82mvGn2UMi818=)
5: qnHwx7ZjqkHGMQ3UL_6iH_ZiPZ0.roa (hash: v6x8FXcAuZgdOrpOuZAffsHlmhE2j1MwJFDVe05keHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:bf:6c:c6:22:39:d5:3b:e9:81:39:e9:f1:bd:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Validity
Not Before: Nov 4 08:00:31 2025 GMT
Not After : Nov 5 08:00:31 2025 GMT
Subject: CN=cd9f4ea1070dd3cbc64677b9fe82812ea14c3991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:a4:7f:1d:93:74:3f:29:1f:45:04:f4:63:
44:e0:63:06:7d:28:8b:7a:21:79:81:92:e5:d7:f2:
88:52:0f:7e:c8:77:c8:f6:e0:a8:d5:e9:dd:98:05:
12:b2:82:74:f6:8a:20:1f:00:0a:73:3b:a7:a5:eb:
ec:6f:ba:aa:35:1e:e7:ae:57:33:4c:ed:e5:f9:d9:
39:94:ec:a3:7c:d3:c5:d2:0d:3d:da:47:cd:0c:e3:
c8:83:4f:9b:eb:c3:87:37:13:d3:6f:12:b9:b0:c2:
8a:12:09:87:4b:02:79:d2:9c:fc:2f:ef:6d:f1:91:
64:13:7c:4f:8e:48:c3:a6:24:bf:83:d6:81:d3:f1:
2c:5b:2a:93:9a:cb:da:12:af:20:25:db:21:d8:fd:
9d:bd:b9:b9:0e:71:5d:61:d8:cd:6b:02:f0:15:af:
f6:5a:77:65:a7:4a:e7:50:43:28:db:b7:1f:c8:f8:
1f:03:c0:02:ca:21:b1:ce:80:ec:1a:bd:78:b1:ce:
34:ca:c5:b3:ee:1d:bf:13:e5:a7:ee:0f:91:8c:ca:
b4:5a:f3:52:1a:a5:76:5b:b8:74:22:13:d7:e6:6e:
e5:25:af:40:aa:ff:d6:06:c8:ff:9b:85:87:8e:c6:
3a:9c:be:61:f5:93:82:73:78:3b:e6:3c:8f:16:01:
57:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9F:4E:A1:07:0D:D3:CB:C6:46:77:B9:FE:82:81:2E:A1:4C:39:91
X509v3 Authority Key Identifier:
keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:4d:f5:85:73:79:8f:85:7b:e1:5b:38:14:13:f1:7e:c5:f1:
7e:a0:f9:17:2b:e8:9a:0a:40:1c:94:92:d1:20:ec:2a:65:43:
83:0f:1c:ee:42:e5:63:58:92:9a:58:17:c4:3b:d0:de:d4:72:
8b:38:19:cb:64:38:ab:e3:b5:cc:33:c6:73:0f:43:60:60:71:
55:49:c4:e1:8b:82:85:72:bf:df:94:4b:d0:f4:40:90:15:b5:
d0:9f:50:b8:86:52:ff:1c:8f:c5:4c:a2:0f:ae:e7:fd:26:dc:
23:d8:95:b3:68:70:16:9f:db:94:86:be:e3:55:03:7b:d9:f3:
a1:f9:1f:12:52:e1:a9:c1:f5:ab:a1:00:e6:0f:5f:32:0b:44:
05:f4:10:98:11:1b:8b:9a:6c:2a:98:e4:1e:d1:46:0f:a7:fb:
0c:2e:96:9b:d0:30:bb:a4:6b:0d:cc:a5:51:da:8d:28:14:fc:
5c:d1:08:00:44:4f:ae:76:cf:21:d4:42:6c:d9:54:80:69:05:
0c:26:02:2a:64:48:e7:fc:6b:12:17:f9:f0:ef:e0:4e:d2:97:
06:05:64:b2:6d:9d:ea:e5:cb:72:c0:0e:e9:76:26:85:87:9b:
aa:59:96:cf:94:e1:69:8b:d9:f0:50:77:5c:ad:ee:0e:ed:f0:
fe:37:c3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:28 2025 by rpki-client