Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json)
Hash identifier: Iz4HgyEKIUs0XtJ0/N7bDs7eLIzljArGIaa698830bA=
Subject key identifier: BF:15:D3:6B:75:42:CC:9D:2E:54:7F:05:51:7D:59:9A:8E:2B:43:E9
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 019922FA5CC6943E68819EA793A107CD91D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
Manifest number: 0E02
Signing time: Sun 07 Sep 2025 07:00:56 +0000
Manifest this update: Sun 07 Sep 2025 07:00:56 +0000
Manifest next update: Mon 08 Sep 2025 07:00:56 +0000
Files and hashes: 1: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: uVEJyowMEuz1fbPCF7f1yE99mR2sv6AMR3M2g4c0M3g=)
2: tpGVDM97XGpA5ofHLGA9otQIFM8.roa (hash: aWl1cnx2HDb3renuM7Fi/tYunaPtkTPWaRgrB19Lp4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:5c:c6:94:3e:68:81:9e:a7:93:a1:07:cd:91:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Sep 7 07:00:56 2025 GMT
Not After : Sep 8 07:00:56 2025 GMT
Subject: CN=bf15d36b7542cc9d2e547f05517d599a8e2b43e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:07:f6:fc:8a:85:a4:b1:c8:b4:7c:90:92:42:
ee:82:95:71:b7:b0:60:04:60:65:f2:72:73:e9:aa:
54:b0:5a:17:87:d2:b8:04:11:97:55:8c:3a:79:15:
f1:27:17:1b:77:2e:63:d8:ff:16:b4:03:06:9b:7f:
59:32:6c:c4:7b:f6:8e:4e:4f:0d:0b:86:aa:99:82:
24:cf:0b:b2:da:57:78:8b:af:7f:b3:28:e3:c5:90:
14:ab:23:a9:98:51:5a:a7:a2:e4:25:23:f3:eb:d1:
b0:59:71:51:01:c9:b5:19:91:52:f7:40:53:cf:98:
bf:b3:8c:de:60:ff:7b:cd:b9:a6:a4:db:9a:66:94:
b0:76:45:3c:5e:63:6b:d9:83:e7:53:cb:90:66:ae:
b9:96:5e:d1:0c:6a:83:13:c9:1f:9c:50:eb:b9:86:
96:d0:46:f8:f4:d1:c0:3e:33:e6:fe:58:8e:12:ea:
6d:78:b3:48:87:93:c3:6d:4a:23:0e:2c:50:77:7b:
c0:78:d0:8b:95:6d:e4:5f:50:22:e1:45:9c:84:55:
36:f7:50:d4:ee:67:d7:46:50:8d:a7:fe:b5:fb:31:
39:26:7d:a6:b4:7f:aa:37:a9:d0:a7:76:34:7b:1e:
97:2d:ad:53:ab:da:d6:c0:5c:27:76:90:b2:40:f8:
64:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:15:D3:6B:75:42:CC:9D:2E:54:7F:05:51:7D:59:9A:8E:2B:43:E9
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:4a:54:d8:84:0d:c2:68:a9:45:11:c5:e4:57:77:d3:f1:ec:
ee:b0:94:f9:44:f4:bc:62:6c:00:94:55:c7:4e:79:53:be:a0:
22:70:07:bf:27:66:1b:c7:46:57:74:ba:c9:8f:fc:7a:d8:fc:
d7:ae:3b:fe:2c:79:d7:6c:fa:2e:6e:41:7a:9d:d9:a7:b3:20:
db:ca:54:4d:bf:15:03:f7:b9:00:32:81:7f:17:93:2f:9f:43:
35:cb:80:51:74:df:8e:5a:4c:a1:0a:b2:c3:d7:cd:0d:a0:e9:
54:c0:c7:22:e1:cd:67:3f:b1:80:6e:24:eb:d1:74:17:ac:ff:
e3:7f:c5:f1:41:26:4f:78:81:e2:f2:8a:aa:6e:63:5e:ce:69:
c5:2f:87:d0:eb:89:95:08:93:55:9e:96:23:c1:14:a1:0b:a0:
dd:28:d6:9e:f4:f7:37:f7:ad:c2:b2:75:1b:cd:32:bf:a8:ac:
d0:46:50:71:af:fa:21:12:4e:15:c2:29:46:ce:30:d3:a6:7b:
3f:f1:47:2a:28:3f:63:66:2c:08:55:09:be:c2:62:db:e6:b6:
72:19:f4:a4:77:42:89:50:48:21:d4:a4:d4:7a:73:43:73:ee:
12:96:c1:15:1f:67:10:50:87:28:65:cc:0e:70:a5:3c:c0:b3:
cf:cf:1b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:51:11 2025 by rpki-client