Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier: V9KtOPZaum+3tIA/tMY5/hcpv81XF5wKrh9rgJp+0+Y=
Subject key identifier: 22:BA:05:32:C5:5D:D4:A4:A1:C2:86:EC:1A:C4:9B:C5:B8:EA:9B:A9
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial: 019A7225BEFB5CA814A3C443CE734F3F424C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 09:01:07 +0000
Manifest this update: Tue 11 Nov 2025 09:01:07 +0000
Manifest next update: Wed 12 Nov 2025 09:01:07 +0000
Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: oxEtEu779pvsHCk2b1ZbzLtqQn3uAvy9GP+8EhpEmHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:be:fb:5c:a8:14:a3:c4:43:ce:73:4f:3f:42:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
Validity
Not Before: Nov 11 09:01:07 2025 GMT
Not After : Nov 12 09:01:07 2025 GMT
Subject: CN=22ba0532c55dd4a4a1c286ec1ac49bc5b8ea9ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b1:c7:a3:aa:2e:e5:b6:59:81:3b:be:e7:72:
bf:0b:50:a6:64:ad:68:e6:19:04:6f:63:ca:bd:36:
65:9f:5f:60:04:ae:22:be:5e:9b:db:14:6a:a1:c7:
b5:12:04:c3:9f:b3:b2:59:5c:15:87:f5:a7:98:1f:
23:8b:18:6a:b5:87:d7:59:45:b8:ba:56:0b:18:f6:
2b:f3:3b:07:c3:01:67:c5:69:fb:90:82:68:b3:49:
bd:19:aa:9e:9a:11:ac:74:5b:c7:85:6a:86:f3:df:
44:0a:10:75:08:a0:6c:e6:65:f5:ac:a2:7a:a7:85:
da:22:76:61:7e:22:ce:5b:f0:57:20:c5:13:c2:48:
fb:6f:a5:78:c0:be:e1:c4:6d:52:2b:ce:01:7d:f5:
3a:a1:86:25:e2:d3:08:bb:4a:77:dd:75:51:a4:ac:
47:a4:44:93:31:db:67:0c:86:e2:08:3e:d7:5e:e2:
1b:44:68:b0:29:17:68:a0:a8:b4:7c:fd:32:c7:35:
1c:84:9b:e9:89:72:0f:6f:c0:28:58:e2:e2:27:a7:
1d:4b:08:07:7f:25:7a:82:7d:e8:78:79:c8:25:dd:
5f:e8:17:8e:61:20:1d:48:1b:2b:80:21:f1:4a:ef:
42:59:36:d4:01:89:08:12:4b:2e:9b:18:b1:c8:46:
d6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BA:05:32:C5:5D:D4:A4:A1:C2:86:EC:1A:C4:9B:C5:B8:EA:9B:A9
X509v3 Authority Key Identifier:
keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:a0:ef:e8:f4:5f:b2:d9:05:83:da:4f:f8:a6:6f:35:6f:be:
62:3d:4d:d0:44:a0:95:dc:14:f9:0f:2d:36:6b:ba:65:85:ec:
16:3c:7d:d8:88:1d:8c:0d:bb:c5:30:c8:c3:b8:83:8a:9f:9d:
e3:82:a6:af:f8:c6:93:97:f9:53:29:df:4d:65:15:29:f5:4c:
a1:81:4a:d0:a1:a3:8f:65:ac:2a:6c:c1:62:f1:46:5c:59:b1:
d5:2e:26:0b:19:33:a7:88:eb:66:ff:99:d1:fa:75:2e:8b:10:
a8:fa:86:5e:b3:94:6b:2e:6f:fb:9d:9a:87:95:c4:62:cd:a1:
5f:11:60:a6:fa:a8:86:01:28:f0:f5:3c:2b:52:7b:ff:e9:d7:
f3:e5:97:61:09:ed:fd:3b:eb:28:e8:0d:c4:9c:41:09:f6:7e:
b2:1e:69:4a:8f:b0:10:25:4b:78:78:5a:46:b2:a8:cc:1d:7d:
53:e5:aa:5d:c3:12:26:56:cd:5a:bd:22:af:38:3c:ff:70:e1:
ca:6e:be:c5:1d:89:38:e9:35:40:cc:75:7c:28:d0:2a:71:65:
50:3c:45:bd:63:61:98:57:be:5e:0c:78:94:d5:84:5e:0d:81:
1e:6f:0e:81:88:97:bf:79:61:b4:ed:5d:6f:42:05:ae:d3:b1:
a8:c8:08:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:19 2025 by rpki-client