Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: sVGyxzJlJOkxl8FNk81Qrg8iJZ1OB7P46pvbjwF9CA0=
Subject key identifier: 06:E2:FC:33:96:8A:FA:EA:0C:61:31:1F:EA:7A:E3:5C:A4:B7:15:B8
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 01987E662FF321A7E0B9FC2409B1FE7F8544
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 036D
Signing time: Wed 06 Aug 2025 08:01:22 +0000
Manifest this update: Wed 06 Aug 2025 08:01:22 +0000
Manifest next update: Thu 07 Aug 2025 08:01:22 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: FZy1CmDIEEKHX0UBn0hXHbgDNEppIflVeXNU9rOy3DU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:66:2f:f3:21:a7:e0:b9:fc:24:09:b1:fe:7f:85:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Aug 6 08:01:22 2025 GMT
Not After : Aug 7 08:01:22 2025 GMT
Subject: CN=06e2fc33968afaea0c61311fea7ae35ca4b715b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:eb:f2:03:57:33:c5:fb:ab:87:e0:f4:1e:06:
df:15:87:f5:dd:5d:67:1c:ca:4f:6b:0f:6d:6f:8c:
bd:f3:57:29:cc:92:7f:fe:43:8a:4a:53:1a:d9:91:
be:e5:51:f4:b1:d2:50:30:6d:78:28:5f:ac:3d:3b:
dc:1d:51:65:a1:2f:b5:84:9b:07:40:b9:dc:53:77:
1c:54:db:a2:63:9a:65:62:00:65:88:a2:fd:a0:fd:
00:f5:90:a0:73:f3:f2:71:20:9c:31:b6:73:9c:66:
c3:97:55:21:d1:39:ff:83:f9:13:a7:0c:34:c2:87:
44:8c:0a:db:96:a5:2f:17:4c:ff:ae:82:d4:6a:48:
50:cb:32:d6:85:66:a2:42:49:aa:0c:7d:84:47:7b:
18:2d:02:23:c7:a4:4f:33:2f:9d:1e:2d:90:ac:d2:
8c:75:89:e2:ad:05:17:eb:29:d7:81:80:96:f5:43:
0e:75:3c:bb:8a:37:3d:bf:81:52:e6:49:c8:7e:02:
b6:d1:8c:df:ab:92:56:1f:8b:94:a6:70:a4:7c:21:
56:7d:62:9d:fb:16:48:ad:9c:84:76:cf:69:8d:7c:
00:03:d3:96:69:37:ba:f7:49:c4:17:22:1e:7f:0d:
fb:95:c8:a9:df:63:26:db:a7:50:61:10:33:e2:ea:
eb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E2:FC:33:96:8A:FA:EA:0C:61:31:1F:EA:7A:E3:5C:A4:B7:15:B8
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:c5:46:fd:0a:57:5b:98:1d:e3:e8:6a:d1:88:55:7b:bb:8b:
bd:49:50:82:e2:b2:87:63:30:5e:bd:9e:1b:da:59:65:2c:bb:
80:0c:4b:15:15:bb:6e:93:bc:86:53:5a:2a:cf:ed:01:a8:55:
fc:ff:24:c3:2d:65:f5:d8:07:01:02:67:3b:0b:83:af:10:53:
7a:af:20:78:cf:0e:bd:94:06:be:23:16:e6:11:25:f8:c0:28:
fc:6b:5b:fb:48:79:a0:5d:c7:fc:b1:b6:b9:f0:76:49:3e:7a:
c6:4c:49:68:67:6d:69:37:10:73:8d:95:46:7c:2f:48:e6:9d:
90:6a:9c:a1:65:a8:ad:8a:85:2e:d9:33:ab:58:df:93:c5:4d:
20:9c:0e:2e:76:cc:a2:7c:a4:20:14:43:89:9c:43:06:9b:23:
b1:ae:82:76:d1:06:a9:f9:2f:8f:57:5d:27:5d:62:a1:51:e3:
be:02:24:da:5f:32:7f:37:d5:f4:cc:0d:3e:37:a8:76:3e:01:
aa:ac:ca:f6:f6:7a:64:39:64:8e:49:2c:6d:9d:c8:12:2f:7b:
4b:ee:38:52:1d:3a:7c:63:83:e3:80:1d:b8:83:2f:65:cb:c2:
d4:bd:52:ab:f1:9d:88:66:a8:46:eb:69:f7:17:c2:9b:e3:18:
34:43:78:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:38:31 2025 by rpki-client