Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: LOHuib2JmJSIgXinu7CT3x9tVRtYdQofUwc+AD2dEP0=
Subject key identifier: 47:7B:A4:44:78:9F:37:9F:4C:CD:D5:DB:3C:65:EA:AD:A2:62:9F:50
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 019A5307CD30BC1AF35225C604C5F115A444
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: 0172
Signing time: Wed 05 Nov 2025 08:00:11 +0000
Manifest this update: Wed 05 Nov 2025 08:00:11 +0000
Manifest next update: Thu 06 Nov 2025 08:00:11 +0000
Files and hashes: 1: f9MGnlddFQ2IMf-Uoo2fTYxJ_co.roa (hash: kPIpbLqEj4dHSmVPx7WOIcV4CWQtCce8UvwQXn1AUT0=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: AbkjbRDiVMMa+Gp8z9yz+i5f/J1Z9gUCuTP8YAOwBJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:07:cd:30:bc:1a:f3:52:25:c6:04:c5:f1:15:a4:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Nov 5 08:00:11 2025 GMT
Not After : Nov 6 08:00:11 2025 GMT
Subject: CN=477ba444789f379f4ccdd5db3c65eaada2629f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:12:60:34:a6:b5:20:2f:19:79:e0:f2:2a:f5:
b2:c3:f9:7c:3a:ac:16:ed:01:f6:7d:b5:f7:e7:76:
1b:c5:3c:34:ed:b8:54:40:8f:11:0c:99:91:da:92:
26:49:da:2b:3c:13:e7:6b:d4:05:b5:96:e1:41:f0:
7d:56:d6:2f:ef:cf:dc:7c:3c:f0:3a:47:66:b4:89:
a4:5d:6e:9d:8a:22:95:45:a0:6e:2f:0c:bb:2f:2d:
ae:6f:a7:be:9d:19:d8:d5:7b:4f:ec:8a:14:7e:c8:
2f:74:93:90:4c:f8:5d:fe:74:f1:0e:b3:3f:e8:01:
c7:83:43:0d:37:c1:c5:9e:89:2b:94:c1:09:47:ac:
c8:d1:4b:71:05:8a:8c:43:37:cf:5e:98:12:1d:3d:
ab:d2:90:7e:47:7e:1d:66:c0:0a:c4:5e:f8:7d:1b:
2d:c4:58:6d:cb:fb:24:99:ae:9a:78:ad:90:56:d5:
3c:bc:26:ff:65:cd:50:30:93:77:64:1e:65:3e:be:
88:15:6e:1f:24:33:f5:14:99:e5:71:fe:45:76:f3:
b0:1c:5e:93:fe:1e:d8:69:a3:26:82:b0:0a:c3:47:
12:06:3c:b2:f1:8d:aa:5f:fa:18:e4:cf:05:79:f2:
4a:33:c1:52:9d:67:86:87:93:f5:ae:ce:d6:30:ea:
23:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7B:A4:44:78:9F:37:9F:4C:CD:D5:DB:3C:65:EA:AD:A2:62:9F:50
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:53:93:df:69:db:5b:3e:84:e2:50:60:21:2f:10:79:56:a9:
fc:f8:9d:6c:e4:c0:7b:ca:de:f3:0c:f3:0d:4e:54:df:75:e8:
a4:b6:e0:a6:7b:16:d2:ff:73:a7:bc:34:af:ca:02:9b:8c:32:
f9:92:47:ba:0b:23:cc:aa:a1:95:03:d9:43:76:c6:e2:68:18:
3b:54:a7:01:b7:19:47:d7:1f:f2:a5:c7:e3:68:b3:23:2f:05:
da:5d:fe:ce:e2:56:e5:d1:c0:00:17:cd:eb:ea:ba:09:34:55:
7e:6b:93:15:d7:02:1a:e8:b5:a1:da:fe:0f:98:6a:2f:ee:99:
d8:f6:e1:04:18:83:56:2f:27:04:17:9e:3c:a6:ec:a1:b7:ef:
f2:68:f5:a2:08:7e:db:10:35:48:f0:66:1e:b5:4e:03:43:58:
81:22:d1:a8:cb:24:f5:9e:71:69:84:47:7a:cc:f2:be:4d:cd:
15:0b:e1:65:b6:9b:27:c7:56:9e:df:71:55:19:94:30:50:4c:
41:e2:53:df:c9:53:ea:4e:4c:d0:a5:76:74:36:ac:b2:e2:84:
16:1e:11:55:17:0f:59:80:9b:56:77:db:40:d0:00:06:6f:d4:
84:4a:8e:1d:cb:8f:1f:cf:1c:f9:3c:28:e7:b5:9c:0a:b9:7c:
71:9e:42:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:57:09 2025 by rpki-client