Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
File: hRwoH1drQ6HKuVPJIEHOlZknDHg.mft (raw, json)
Hash identifier: VydtMohT8vpJhL5rHf5cO4knt2CHEHJ6QlWSSArlmJk=
Subject key identifier: 13:4C:CB:21:CC:6C:81:37:B6:9A:3E:34:03:4A:1D:36:12:D2:A1:B1
Authority key identifier: 85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
Certificate issuer: /CN=851c281f576b43a1cab953c92041ce9599270c78
Certificate serial: 019A0E5DBDB822876EEEE972857F1DAA87F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
Manifest number: 1572
Signing time: Thu 23 Oct 2025 00:00:15 +0000
Manifest this update: Thu 23 Oct 2025 00:00:15 +0000
Manifest next update: Fri 24 Oct 2025 00:00:15 +0000
Files and hashes: 1: XhZd4AXcprYaSWJWAkCvII9n7bo.roa (hash: +WoaFZAXvgLhbONkinxfr9JdPcFsQuGimoN13TlQ0XQ=)
2: hRwoH1drQ6HKuVPJIEHOlZknDHg.crl (hash: QqlJSQrnug30LYjAHV08baB5LhW2wx091tJyrvLPO+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0e:5d:bd:b8:22:87:6e:ee:e9:72:85:7f:1d:aa:87:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851c281f576b43a1cab953c92041ce9599270c78
Validity
Not Before: Oct 23 00:00:15 2025 GMT
Not After : Oct 24 00:00:15 2025 GMT
Subject: CN=134ccb21cc6c8137b69a3e34034a1d3612d2a1b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:8a:3b:12:fe:61:b6:22:69:60:d2:5e:be:
0d:a8:ab:c1:1c:34:ba:98:ed:2c:7f:4c:fb:7a:0f:
29:54:e1:56:97:9a:e0:79:3f:8e:a1:19:d0:fd:24:
45:2e:c4:f6:e1:03:3c:0d:db:ea:3f:83:e6:74:1c:
96:d8:ba:db:75:cf:79:8a:c9:27:1e:63:2c:14:9c:
1f:14:cd:1f:ed:c4:b8:53:ff:52:31:02:4e:83:33:
99:90:3b:6a:45:a8:7b:72:18:39:c0:2e:ec:9b:9c:
77:3b:c7:33:1e:ed:61:48:c6:43:07:f1:69:bd:69:
c2:b7:d8:43:3c:ba:f6:d8:7b:95:c0:33:3c:1d:fe:
05:df:35:04:ab:f9:fb:19:9c:4f:60:c2:85:f1:88:
50:84:12:1a:ba:b5:a8:91:ca:17:8e:37:34:1e:f7:
5e:f9:cf:a8:21:6a:e4:b8:67:8f:dd:91:b8:70:69:
cc:f9:7a:3e:f8:ef:fb:35:bf:6f:40:1e:58:5c:bc:
2f:27:b2:9a:9f:89:68:70:2b:2d:53:0f:cf:3c:42:
87:6a:df:30:03:f5:69:0d:e4:21:3d:aa:44:ce:c6:
76:c4:b3:22:32:a5:1c:ab:71:d3:4e:e3:63:da:b0:
59:5d:82:ca:21:65:11:d5:43:96:9b:cd:87:10:38:
e8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4C:CB:21:CC:6C:81:37:B6:9A:3E:34:03:4A:1D:36:12:D2:A1:B1
X509v3 Authority Key Identifier:
keyid:85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:54:d4:37:9f:fa:af:c8:90:fc:17:74:be:20:35:1c:70:4d:
2e:29:2f:be:b2:f7:50:e8:68:e2:a2:3d:a5:ea:5f:06:04:3c:
ff:cd:ac:21:b5:26:7e:fa:da:25:df:30:1a:9e:66:a8:06:d1:
9c:19:28:c6:0c:3b:91:3d:6d:af:52:4d:c2:59:45:e7:57:a7:
e5:10:76:54:9f:79:33:68:ef:e6:58:f5:c9:90:74:81:97:7f:
58:b1:76:11:65:14:2b:e1:4e:8e:4f:81:6a:a4:de:f8:78:97:
73:e9:b6:58:d2:f1:f4:99:fa:9b:a5:67:13:5d:37:4f:6b:b5:
6f:bc:47:f9:cd:65:74:0f:68:fb:36:d4:f4:16:1c:f3:81:96:
ac:17:ab:e1:03:af:87:56:86:44:66:a0:07:cf:d2:96:41:59:
d8:de:23:d0:ab:49:be:cb:ad:3c:82:22:6b:b2:99:7c:54:8e:
6d:47:67:95:07:57:65:db:53:94:eb:28:5b:a1:b8:62:2d:f6:
36:0c:3c:2b:8f:5a:4e:b0:ed:d6:e7:9c:6e:5b:3f:31:c8:88:
dd:c8:b4:4a:14:e5:7f:d6:e9:2b:fb:be:35:21:8c:03:38:48:
bc:69:a7:dc:61:18:b5:16:55:e4:65:06:be:e0:49:85:46:52:
3f:1f:83:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 05:48:36 2025 by rpki-client