Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
File: hw4qIH9pdyFKlXqOFI0fi1pc0II.mft (raw, json)
Hash identifier: E+XaVKUcOmdwW2sabwFKTH7lngLa7eWk59NMCmB2kw8=
Subject key identifier: 00:F8:75:89:00:15:90:0E:EB:19:4E:2E:2C:AF:8C:4D:06:E2:C5:50
Authority key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
Certificate issuer: /CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Certificate serial: 019A1F1A3C64F4ABD40220678F87FAE2C890
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
Manifest number: 03D3
Signing time: Sun 26 Oct 2025 06:00:04 +0000
Manifest this update: Sun 26 Oct 2025 06:00:04 +0000
Manifest next update: Mon 27 Oct 2025 06:00:04 +0000
Files and hashes: 1: hw4qIH9pdyFKlXqOFI0fi1pc0II.crl (hash: F4mZ8AAI47F11WST3anKZEYP2FS+1d5P9bZ9jeHWgQg=)
2: nKTvZPJPqdCXiSwzyA9j5IjgzXg.roa (hash: IlnUSzXgTeo7Aecj19DyZcjG2TpAU9jXATfOU6kk97U=)
3: zNxBSM9LhOTwYtAP52MRH2hzZ_o.roa (hash: 51C5X4gm2WkYmwXfFe/uw6oyIL71jLkdgjDOyTD+5rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 05:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:1a:3c:64:f4:ab:d4:02:20:67:8f:87:fa:e2:c8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Validity
Not Before: Oct 26 06:00:04 2025 GMT
Not After : Oct 27 06:00:04 2025 GMT
Subject: CN=00f875890015900eeb194e2e2caf8c4d06e2c550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:46:12:27:15:fa:4a:3b:57:ab:da:f9:59:35:
77:da:d4:68:2d:98:7e:3b:a1:26:90:82:a9:c0:3b:
9b:65:7b:e9:29:d2:92:9e:fd:c8:a3:34:b5:8f:17:
ef:79:27:d9:a1:8f:49:47:08:4f:0d:86:b3:54:1c:
fd:97:6a:6f:de:7a:fc:bb:4f:a7:e3:da:e7:23:0e:
47:a1:b7:4f:43:81:fe:66:8d:da:a8:ad:f2:3f:3a:
bb:30:ff:4c:d7:1d:26:95:88:e5:2d:bf:fc:60:44:
05:d4:f0:db:d6:68:22:ee:6c:8f:a7:cf:bc:9f:0b:
5d:ad:a9:eb:5b:06:d1:d1:ad:cb:fe:6a:eb:ab:64:
c9:36:d1:40:df:79:ca:76:4a:23:1e:7c:d4:ff:6f:
77:c6:a9:67:b0:4b:c6:1a:16:eb:79:31:57:00:ec:
f6:cf:27:bf:a8:57:0c:b7:8b:fb:3a:19:21:7d:6d:
a7:1b:d6:80:32:05:ea:b1:15:58:dd:99:7d:53:99:
9c:f0:64:ac:64:55:bc:90:7b:6f:ea:7e:b7:b5:c9:
e4:d1:a3:9a:e2:56:c5:6c:07:90:8e:09:0c:57:df:
ff:16:47:74:f9:31:93:71:ee:ca:ba:4c:c3:b4:8e:
5f:92:ab:e9:89:5f:64:2d:bf:49:09:38:4b:f3:83:
a7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F8:75:89:00:15:90:0E:EB:19:4E:2E:2C:AF:8C:4D:06:E2:C5:50
X509v3 Authority Key Identifier:
keyid:87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7e:13:7c:71:74:ab:1a:f6:1c:46:b6:9e:65:2b:2d:c2:f7:
1b:c2:48:aa:07:cd:fd:7b:60:e1:45:fa:65:fb:9c:a7:75:13:
c0:98:c2:be:75:1d:cb:79:c3:15:3b:93:79:69:a5:25:df:43:
c1:d0:bf:11:9c:36:53:45:7d:11:c4:1d:9d:f6:f4:c8:5a:32:
cb:13:6e:ee:c9:d7:56:37:5d:47:03:28:a0:1e:af:24:f8:d6:
75:ca:79:8d:a3:09:16:2c:54:e5:22:f1:b5:20:f4:dc:9d:88:
2a:d6:15:1c:88:18:16:75:89:4d:5d:a1:d0:fa:a8:79:cc:af:
f3:35:cb:c8:6e:5f:a2:0a:e6:61:99:9e:f9:5e:9c:fc:38:a3:
9a:bb:b0:dd:00:c0:eb:27:4c:27:a4:77:66:4e:96:6e:08:83:
95:cc:dc:00:e7:f3:18:42:75:3b:b6:c7:02:c4:ba:c4:e3:a5:
47:97:eb:2f:62:c3:10:3b:76:d0:14:33:fa:a1:1e:bf:46:8d:
40:31:05:4e:8e:7c:6b:29:c4:db:3b:f2:02:d6:70:72:cc:f2:
83:56:6b:16:01:91:b6:5e:5b:13:c8:eb:8c:de:7d:8b:15:8a:
0b:28:d2:90:c1:23:fb:28:a5:e5:9f:07:30:cc:5a:e3:43:97:
88:a0:8b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 14:45:35 2025 by rpki-client