Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: lruobwASh9MvQiTMJ1b/QDNMg+UxdYSyY5vqvwBrvHE=
Subject key identifier: A8:8F:A8:10:E9:A1:80:FF:0A:31:95:8E:86:26:A2:B7:CB:4F:63:CA
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 019748C2F7F27494AC033EFE2103BFCD8111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 03E4
Signing time: Sat 07 Jun 2025 05:00:26 +0000
Manifest this update: Sat 07 Jun 2025 05:00:26 +0000
Manifest next update: Sun 08 Jun 2025 05:00:26 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: JzjIVrBRkZtaXsnLv6BmyGCgXQjygMtcyQYZtYHN7nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:f7:f2:74:94:ac:03:3e:fe:21:03:bf:cd:81:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Jun 7 05:00:26 2025 GMT
Not After : Jun 8 05:00:26 2025 GMT
Subject: CN=a88fa810e9a180ff0a31958e8626a2b7cb4f63ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:f2:2b:92:c9:3d:04:d4:92:2b:be:e7:23:18:
a1:af:01:aa:71:04:3a:e9:b6:ce:b2:0d:87:f7:63:
40:a9:37:ba:3c:cd:46:5f:7c:76:b9:1d:55:cd:90:
d9:a7:dc:21:30:0c:d4:29:89:7b:d5:4e:57:17:7e:
ec:15:18:b2:da:d5:d2:fa:79:a0:1b:6f:d7:63:2a:
51:47:17:b9:fa:26:4e:25:df:d7:39:42:a6:d3:52:
7b:60:f5:82:1c:bf:53:a0:10:51:04:cc:4c:c8:78:
51:19:23:83:73:ad:fd:4b:73:21:15:e2:5a:a2:13:
be:e5:71:73:41:2c:1d:45:41:39:bc:42:8a:e8:23:
d1:c0:2e:af:b5:c9:34:ec:d2:63:25:77:ae:df:de:
34:52:58:e3:f6:26:03:8c:18:57:65:dd:fe:bf:62:
52:f0:8d:26:ea:fa:66:29:59:a8:55:b0:2e:44:a8:
c4:a1:a4:81:aa:c7:6c:e1:fd:d8:22:c1:af:a8:e1:
27:21:8d:d6:9e:a9:91:7c:b0:58:25:2d:64:e8:ac:
c8:e4:9b:f9:9b:22:78:ac:2d:d6:a1:c3:f6:26:e4:
8f:1f:c5:77:17:67:d4:4c:a4:be:dd:c8:26:7d:b9:
59:56:79:ca:93:cd:30:38:1a:0b:70:78:09:ad:72:
7c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8F:A8:10:E9:A1:80:FF:0A:31:95:8E:86:26:A2:B7:CB:4F:63:CA
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:47:6e:85:c5:6c:05:cb:aa:f8:f9:65:80:36:d8:77:4e:9f:
54:ad:5e:8f:c4:e4:f7:29:5a:51:e5:04:78:f5:f9:1b:ce:ed:
1d:00:75:7a:84:2f:90:aa:d0:fd:2b:5b:7e:28:57:12:97:c4:
ee:28:9f:6f:ec:3d:68:5f:52:6f:9f:58:02:a8:2d:ee:ef:1e:
9a:14:26:00:9c:d9:60:04:29:51:0b:23:49:13:4e:75:7a:dd:
40:e6:49:25:31:7b:86:c5:8c:7b:12:a9:7e:94:42:e3:d9:75:
df:07:22:6c:b8:37:e0:56:31:ec:e9:df:5d:b4:be:21:0b:b0:
be:4d:2d:02:bb:c7:b9:d8:27:28:0f:05:c8:86:70:b4:0e:d4:
e7:f7:81:42:68:be:62:30:f0:03:2b:14:e1:40:73:c4:49:e5:
9d:79:90:9c:68:1b:f6:85:d9:78:2f:42:5f:2f:53:b8:55:98:
2b:c7:96:68:42:c8:e3:4b:92:62:92:01:23:c0:a6:94:d8:2e:
2f:40:e4:37:80:26:65:58:8a:b4:57:9a:eb:a5:14:41:6c:11:
79:a6:b4:3e:eb:a9:d7:a1:bb:0a:a6:43:e5:d0:5f:8e:d2:85:
99:bc:ff:ae:df:50:59:10:ee:79:c5:98:46:fe:a4:8b:2a:92:
bf:4d:55:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:12:17 2025 by rpki-client