Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: wUMNQkR5CqKCYQzHux6cFB/1meoQWuG8/cpnB5uz2UE=
Subject key identifier: B0:86:B9:9E:12:3C:CA:9F:2C:74:B5:11:85:3D:CD:8A:9D:10:CC:87
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 0198A04E52AC92B8F5E5329D7067944CF605
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 162D
Signing time: Tue 12 Aug 2025 22:02:24 +0000
Manifest this update: Tue 12 Aug 2025 22:02:24 +0000
Manifest next update: Wed 13 Aug 2025 22:02:24 +0000
Files and hashes: 1: 1hbevT8gwbMVGXnU3oslqDok4xQ.roa (hash: PvOSpkQG3GMAcOSv9DP0juXGFg1PxvMowO3npVuSH5E=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: 06nepMJYy2BrZj/cpMzJADCbtyoGDExnUZXt8YEPMP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:52:ac:92:b8:f5:e5:32:9d:70:67:94:4c:f6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Aug 12 22:02:24 2025 GMT
Not After : Aug 13 22:02:24 2025 GMT
Subject: CN=b086b99e123cca9f2c74b511853dcd8a9d10cc87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1b:3c:e2:ed:a1:0d:9a:15:34:ea:1d:ae:fc:
51:75:84:5d:15:44:48:5b:61:5c:fc:13:90:b5:11:
e1:7c:fc:d8:f8:3d:c8:e4:c0:28:23:bb:cb:23:47:
05:e3:a7:d6:8c:1d:95:3a:a9:6e:ff:77:9a:ae:4f:
64:09:b4:6f:8b:b6:6f:73:a8:15:37:e8:da:28:bf:
20:be:f8:6b:0e:c6:50:de:1a:82:9d:b1:78:d8:9f:
06:7b:ff:36:10:8f:ab:25:6e:24:d2:85:37:a8:93:
59:aa:0c:4b:be:e0:43:45:aa:23:0c:6e:95:7f:83:
58:ad:f5:53:ec:2a:bc:b4:65:ab:2d:7f:cf:57:36:
1b:e6:80:ed:c4:a9:47:4d:50:59:10:c7:53:47:d9:
11:17:3e:15:92:73:70:5a:77:7d:7e:4d:fa:25:f5:
7f:11:d9:01:54:c8:0d:a2:4e:d9:55:37:49:b9:25:
cf:bb:dd:f7:11:21:0a:82:58:48:7b:ec:f0:c6:ec:
97:69:f9:1b:be:a3:f7:31:f3:52:31:c9:a6:7d:07:
35:eb:39:e2:cd:7b:34:4f:7d:16:34:0f:bc:ae:46:
5e:ac:13:8a:b1:1b:f9:e0:5d:75:e3:86:ce:f2:09:
e1:64:53:12:eb:21:99:16:a2:2b:b3:69:54:76:ea:
e2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:86:B9:9E:12:3C:CA:9F:2C:74:B5:11:85:3D:CD:8A:9D:10:CC:87
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:59:0b:48:f3:95:a5:7a:90:de:41:8b:7e:79:bb:84:22:ff:
c5:d1:30:09:c7:e6:38:ef:42:7d:4e:d6:60:22:e4:20:54:e7:
86:4b:60:8f:ff:98:86:19:c2:b6:80:d9:ae:15:8e:ee:19:66:
80:1c:ac:c8:61:df:ef:ce:76:38:9a:2f:0d:ff:76:08:7a:ed:
33:e6:35:42:51:ef:c1:da:c8:e6:7b:11:a8:80:e9:1c:83:fd:
d3:01:98:d8:58:fd:dc:72:ff:02:9e:ec:4e:b3:6e:62:f4:6b:
0c:a0:53:b3:68:76:36:e9:1c:a9:0f:bb:e2:34:fe:a4:30:16:
46:e1:e2:83:33:e7:13:af:75:d4:d1:dd:ba:01:c7:3e:41:4c:
b8:24:8c:67:6b:de:69:70:7d:81:9e:58:ba:94:32:5d:b1:d6:
12:2d:4f:02:26:17:78:01:2b:e5:23:7f:dd:7c:71:e9:5b:06:
3a:4b:2f:1c:47:e3:60:a8:a9:a4:10:ed:45:40:ab:00:9d:6c:
81:ae:12:15:b7:e6:de:8a:1a:55:63:b7:26:03:7e:7c:62:5e:
89:b1:8b:32:ec:81:cb:e5:cf:80:15:2b:9d:29:6b:ee:33:57:
5e:d0:94:99:8c:d6:cd:c5:cc:bc:b3:7f:d5:7a:42:83:e1:12:
20:09:84:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:24:13 2025 by rpki-client