Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: 3JVwOpjmf4mdgY0O4CwpKQnCH9ktPWySaHSBo8BY6qo=
Subject key identifier: 96:30:FF:3B:31:62:A2:CC:F8:F6:D8:B2:12:41:20:BA:C3:B9:F0:0F
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019A1F88A8EB931AEDF693978700A6D7E45C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 0445
Signing time: Sun 26 Oct 2025 08:00:40 +0000
Manifest this update: Sun 26 Oct 2025 08:00:40 +0000
Manifest next update: Mon 27 Oct 2025 08:00:40 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: J4O9DlgPSndfF2qvYECc/pifW3g/yh7d/zzl3YqlLiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:88:a8:eb:93:1a:ed:f6:93:97:87:00:a6:d7:e4:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Oct 26 08:00:40 2025 GMT
Not After : Oct 27 08:00:40 2025 GMT
Subject: CN=9630ff3b3162a2ccf8f6d8b2124120bac3b9f00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:72:26:6f:07:6f:45:3d:09:88:f2:f0:ec:b6:
24:b1:62:d4:92:bb:c3:3c:06:00:cb:f4:83:2d:33:
19:8c:8f:a2:ef:a6:e0:95:08:79:2c:93:92:54:23:
e0:55:c4:ab:8a:69:c9:9c:1f:67:1e:bf:5b:5f:bc:
e4:cf:38:87:17:d6:d7:1d:70:45:30:f8:54:c7:aa:
14:d4:7e:fd:b1:89:36:2c:ad:51:14:1a:a8:a4:f4:
bf:c1:3d:df:d2:2f:74:6a:73:f4:74:d2:e6:7a:b8:
57:29:76:77:8f:89:34:64:55:62:06:fa:01:eb:3b:
5b:8d:9c:b5:8c:90:cd:fc:74:76:25:cc:7d:59:a1:
fa:d8:2a:34:03:e5:b4:c8:87:50:a3:27:32:f1:63:
55:96:5b:b4:dd:a6:04:38:b9:d3:5b:ed:8b:0e:19:
d3:44:ef:95:d5:fc:6c:df:f0:83:bc:3c:e2:06:50:
f7:65:d6:2d:db:55:a3:2e:88:ac:ff:9e:1b:d8:f2:
26:58:33:2c:6d:18:02:73:e2:8d:56:3a:82:ff:f3:
4f:47:93:21:ab:5f:fa:75:d6:82:54:af:bf:2c:76:
90:df:c8:1b:6b:60:47:df:9f:35:27:77:37:9f:5f:
02:07:b2:c6:fe:99:d0:3e:70:99:cc:06:9d:38:25:
31:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:30:FF:3B:31:62:A2:CC:F8:F6:D8:B2:12:41:20:BA:C3:B9:F0:0F
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:97:24:78:9f:b1:a5:d7:87:19:26:5a:12:05:09:1f:55:ff:
79:c7:66:35:8f:ed:24:48:6e:13:ec:f7:d6:07:3a:b8:47:48:
56:41:95:66:20:8f:20:e9:6a:14:64:cb:ea:a4:63:9c:7a:48:
32:0a:bd:e9:98:1a:a2:f7:2d:a6:da:aa:90:4c:80:2f:ab:e7:
58:ff:ac:ad:c4:48:d8:39:1a:8e:ba:b6:f4:21:45:7d:99:8d:
b9:06:30:99:76:9f:da:3d:77:ac:9e:24:f4:23:48:f1:ad:00:
fd:29:81:fb:b7:61:03:34:22:a8:5b:bc:67:e3:7d:8f:c8:9b:
f2:6f:d7:95:73:83:0e:e7:95:8f:00:cf:dc:b9:b3:2c:e5:19:
bc:f1:2a:86:53:de:9e:a6:9c:56:b3:49:bd:f1:4c:83:c1:f9:
1a:56:d7:f1:0a:11:51:23:59:04:80:65:45:a0:1e:1a:d3:13:
29:9f:46:0d:5d:42:21:86:1b:40:36:6a:07:3b:26:4b:2f:38:
a7:80:31:ea:42:bf:15:dc:37:72:3d:d2:29:1a:29:43:9e:94:
fd:58:7d:dc:ff:19:c8:cf:32:0a:3c:f3:6c:de:f0:c9:a7:c9:
c6:8f:44:e0:7f:c6:88:c6:f7:83:85:86:a8:f6:80:af:40:63:
58:2b:11:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 11:15:35 2025 by rpki-client