Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: k4NyL4wwzXG+cuonJMo+zMw42y6IwSN3QadiNNgRRFU=
Subject key identifier: 6E:3A:FF:11:2B:6E:27:CB:08:AF:FB:9A:A0:CA:11:25:BF:13:56:CA
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 019A71EEFBEA074202D3B2CDF323505398F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 0587
Signing time: Tue 11 Nov 2025 08:01:18 +0000
Manifest this update: Tue 11 Nov 2025 08:01:18 +0000
Manifest next update: Wed 12 Nov 2025 08:01:18 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: DMGuzyTlfLIxvDxHlz63gJzqtMGxmxdrBJVkTbsbTxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:fb:ea:07:42:02:d3:b2:cd:f3:23:50:53:98:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Nov 11 08:01:18 2025 GMT
Not After : Nov 12 08:01:18 2025 GMT
Subject: CN=6e3aff112b6e27cb08affb9aa0ca1125bf1356ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:5e:b0:75:57:33:72:6c:52:3c:61:39:bb:
db:b1:f1:c6:9f:58:97:2e:88:d0:6c:64:9c:73:4d:
16:29:7a:60:01:47:1d:25:b1:05:a0:5b:7a:c5:ca:
4e:70:e2:04:5f:07:53:01:98:4b:d4:7f:8f:9c:5f:
15:b0:be:c2:b5:de:1a:cf:5d:98:d0:65:f8:cc:4d:
a5:56:e9:66:a6:d5:7b:ca:0b:39:06:c2:85:e5:d2:
03:fb:77:9e:ed:e4:d8:0f:54:03:69:61:ce:f0:b5:
a5:d3:fe:a4:59:71:76:3c:47:3f:10:e0:34:6b:19:
2b:29:14:68:67:be:2e:c7:36:83:a5:0f:ed:18:33:
99:88:98:58:f9:8a:06:06:4c:f5:68:7f:ca:ef:a9:
31:ad:ff:cd:ca:85:a8:38:ea:71:6b:30:88:37:bd:
44:73:55:fd:ff:43:ba:11:d6:f6:22:06:75:19:2a:
db:2d:60:c4:a9:54:9d:5d:66:8f:3c:f4:9f:9f:b2:
aa:1d:57:29:6e:27:23:e6:f8:f0:59:33:77:54:55:
6b:e7:57:cf:42:b5:51:75:21:95:ff:95:55:d9:a6:
dd:7c:27:48:31:ac:c2:39:3e:9b:a9:36:68:29:c3:
4e:31:2c:af:d8:bb:fc:32:e8:a5:5b:48:bd:a2:78:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3A:FF:11:2B:6E:27:CB:08:AF:FB:9A:A0:CA:11:25:BF:13:56:CA
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:5e:32:86:86:1d:4e:06:ec:46:06:52:a7:62:ae:18:22:46:
12:50:33:7d:5e:ed:b0:7e:f6:d6:7d:87:44:e2:47:3e:18:78:
48:ed:50:4c:81:32:1a:8d:2d:e7:58:f9:b5:0a:af:e4:54:6c:
3c:13:2a:31:f7:80:06:73:8c:a0:07:3e:f4:f0:10:4d:bf:4f:
0d:e3:7d:fe:55:e1:1e:50:81:e2:05:4f:c8:13:23:55:de:47:
40:ce:23:6c:c1:a4:c0:42:1e:83:2e:96:23:49:35:0f:d9:df:
b7:9e:e8:68:27:d0:0a:0d:86:e0:a3:d1:5f:bd:e7:20:2f:4b:
63:d2:9b:eb:03:b9:87:e0:95:2c:56:a9:78:de:c3:c9:d1:76:
8f:7a:85:4a:52:cc:48:65:42:3a:5f:a1:8f:da:aa:76:fe:2a:
9c:b7:e6:4e:dc:9e:45:22:ba:9e:a1:ab:ee:c2:1a:f2:f6:a3:
3c:d3:60:30:f6:a5:78:cc:97:97:75:f6:dd:24:1d:0d:43:00:
ac:e7:5c:e1:8a:74:83:02:d2:b3:c9:ce:86:e1:7f:80:51:90:
2f:9c:1a:cf:b7:4f:25:d8:62:f2:d9:00:eb:5f:4a:65:f9:35:
9e:5f:0a:64:95:e5:f7:14:ab:df:bf:39:5a:cd:89:c9:8e:14:
b4:83:4d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:42 2025 by rpki-client