Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
File: ihzh0TW_LPjowT8z7BHIUjcD3HU.mft (raw, json)
Hash identifier: rwMEIg+OqN5snWogS5Orhvf3taBuNdfjsPUaTdDFf3o=
Subject key identifier: 51:91:C0:73:BB:B2:DD:7C:CA:2F:5B:0D:37:E9:9D:85:AD:37:42:A8
Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Certificate serial: 019A2477CC5057E7CA470D4CFB9F8101C237
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
Manifest number: 15EA
Signing time: Mon 27 Oct 2025 07:00:22 +0000
Manifest this update: Mon 27 Oct 2025 07:00:22 +0000
Manifest next update: Tue 28 Oct 2025 07:00:22 +0000
Files and hashes: 1: 0bVvhAd6bRTtpMiMWU5m6m_mX6s.roa (hash: k+FefGaNlibbtGtr5Aq6DThKW8SPKZcgwMtTZ3i/xpM=)
2: 2L9tST2xxsB46ZV-Wm7-7d0Z8Yc.roa (hash: 2H+U81Sea1KvCbnxcSszHg71YCfhD1GEm2cdKStIW6w=)
3: AEk4t1mqQHdHzuvnZ8F04P17d44.roa (hash: 7D43zZS2UD0q0VGySwNpiUk+9PmD8nPWUlHBvAE5epk=)
4: ihzh0TW_LPjowT8z7BHIUjcD3HU.crl (hash: wpyF2lHjNL7eUuRcPyvw4VAXaqdoldWxvBKIpgXEXg4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:77:cc:50:57:e7:ca:47:0d:4c:fb:9f:81:01:c2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Validity
Not Before: Oct 27 07:00:22 2025 GMT
Not After : Oct 28 07:00:22 2025 GMT
Subject: CN=5191c073bbb2dd7cca2f5b0d37e99d85ad3742a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:43:c6:75:62:8a:22:31:8d:23:d6:b1:1d:
22:33:f0:4d:16:a9:07:69:47:c8:3f:4a:5a:4f:a0:
9e:46:36:05:c2:25:14:85:78:1b:87:f3:2f:c4:8a:
27:56:f3:42:74:d7:26:ca:a7:74:d0:03:1b:7f:4d:
00:69:df:d2:9c:b8:d7:9b:eb:dc:46:a0:8a:eb:40:
4a:dc:75:77:33:79:8a:ab:64:d5:85:f0:00:65:3e:
66:65:55:64:4d:40:cc:0e:bb:31:68:52:8c:71:e6:
92:e1:0a:f2:ad:14:5d:a6:45:fd:bc:89:57:ef:8c:
27:2a:02:7f:2a:c2:2d:1e:af:86:1b:71:f2:bd:f8:
c0:32:80:0f:a4:58:08:28:77:7b:61:60:be:ba:7c:
95:db:d8:8f:9d:75:a1:da:ae:78:7d:5a:3d:ff:2c:
e7:ef:21:56:87:8e:72:99:d9:d6:75:ad:68:73:39:
ed:0a:d5:eb:23:a3:cf:8d:ff:68:37:58:81:80:42:
4b:c5:61:c5:34:b9:1d:90:85:8a:2d:82:d9:4e:5e:
33:c6:5a:1c:a2:c2:de:bb:68:b5:a3:85:8f:b8:99:
d7:92:e3:d4:8e:c9:8d:5d:2a:92:6a:11:40:e5:c0:
4d:1e:5e:2c:c5:d2:31:d8:77:ae:fa:56:11:dd:e5:
85:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:91:C0:73:BB:B2:DD:7C:CA:2F:5B:0D:37:E9:9D:85:AD:37:42:A8
X509v3 Authority Key Identifier:
keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:04:16:15:68:bd:ca:8a:1d:c9:3a:21:4c:9b:54:84:79:8f:
a1:bc:10:75:0b:f6:ee:bf:70:68:5c:8f:80:8c:65:fb:4d:0d:
62:78:38:b9:2e:62:7a:5c:0a:af:e9:ee:e8:fd:3a:94:0f:01:
a7:f4:c6:cd:e2:cb:f5:42:be:25:4d:47:6a:fc:3a:06:5f:72:
af:cf:9c:6c:44:8b:a4:a9:85:bf:13:fb:0f:c9:2e:1a:a4:11:
d6:18:56:85:df:de:d0:cd:56:42:29:e4:9c:76:06:f5:91:0e:
6b:ff:52:39:17:d1:4d:0b:fe:bb:e0:70:42:5e:c0:cd:d9:4d:
5b:d9:5f:cb:95:14:2b:e8:4e:d5:25:c9:6e:30:89:e6:ab:b7:
aa:a2:87:cf:88:11:11:d1:70:01:f4:b6:54:99:96:77:a8:e5:
66:6f:be:8c:bb:6a:b8:4b:8f:bd:84:7d:2f:67:05:37:47:94:
dc:8d:61:2f:61:6d:1f:38:87:9d:81:63:67:26:56:71:5a:cf:
aa:66:a8:6b:af:e0:2c:92:28:ba:b7:1a:ac:93:b7:56:a4:3c:
34:bf:ac:b8:84:00:f1:dc:19:2b:0b:0d:bf:cf:26:11:8d:a3:
2c:83:22:cd:35:17:ec:b4:89:eb:91:39:86:9d:82:08:12:cb:
b3:41:80:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:08:17 2025 by rpki-client