Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
File: tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft (raw, json)
Hash identifier: oD7/qmntnXSQEBTjQ8ID8xpkAvXiyfuQQ8pqCpPEZBQ=
Subject key identifier: E1:3A:AB:02:24:6B:45:19:57:3F:3C:DF:90:43:E0:05:0A:B4:75:F5
Authority key identifier: B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
Certificate issuer: /CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Certificate serial: 019A70DBFA3113E1BE6C489299E64F292183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
Manifest number: 0D83
Signing time: Tue 11 Nov 2025 03:00:55 +0000
Manifest this update: Tue 11 Nov 2025 03:00:55 +0000
Manifest next update: Wed 12 Nov 2025 03:00:55 +0000
Files and hashes: 1: J0ZgfR5U6lkaUqXFqkaevK5zE7Y.roa (hash: /1drMWi8WHeYZMzayKCKRAt2zHYV3mIjXjepj/lhD8k=)
2: tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl (hash: wBvBOlV4qu9pZCpCdcczimzarhHZ5vdU3ZQBEIe/FhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:fa:31:13:e1:be:6c:48:92:99:e6:4f:29:21:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Validity
Not Before: Nov 11 03:00:55 2025 GMT
Not After : Nov 12 03:00:55 2025 GMT
Subject: CN=e13aab02246b4519573f3cdf9043e0050ab475f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:47:c8:4e:81:87:2f:5c:08:50:09:18:c0:f5:
83:5b:f7:ff:06:45:cd:58:ad:33:de:c6:60:23:b8:
e4:f4:5f:a7:ec:8d:87:e9:98:39:29:60:49:23:94:
f2:fd:78:af:bf:23:b4:60:2c:5f:ea:f7:23:dc:9a:
8e:7a:f2:4c:8f:5a:19:2e:01:95:a9:37:ea:6f:f5:
8a:54:58:bd:ed:27:46:bd:41:36:5d:21:0d:7f:66:
22:5d:f2:18:7c:89:d1:d8:3f:87:12:0e:69:d7:13:
46:80:b6:52:e2:bb:38:19:86:f2:76:22:ec:5f:17:
d9:88:50:5a:89:33:3f:c7:09:da:11:5a:50:d4:90:
02:ce:d5:1b:41:73:4a:79:22:49:1d:9c:fa:89:a3:
ec:1b:9b:99:3a:fe:87:75:29:db:1e:65:53:83:55:
71:65:99:aa:98:17:18:2c:6b:07:cb:14:95:1f:c8:
2e:b1:b4:45:3e:5c:af:12:7e:7e:64:bc:6d:14:8e:
3b:95:e9:5e:4d:e1:d0:dc:2b:0c:c1:6c:93:af:dc:
5b:57:03:bf:a4:76:07:e2:33:9e:ba:db:5f:16:19:
a1:ce:ed:5e:9e:f1:9c:1d:7d:04:5b:74:e4:a7:99:
d2:18:0c:a5:5e:7e:6b:3d:03:c8:05:e6:1d:e2:ce:
e0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3A:AB:02:24:6B:45:19:57:3F:3C:DF:90:43:E0:05:0A:B4:75:F5
X509v3 Authority Key Identifier:
keyid:B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c3:1d:7e:de:2e:f6:a9:a2:c0:7b:66:40:0a:bf:0d:ce:eb:
e1:cf:f9:e9:4e:25:70:a0:47:8e:7b:31:ce:9e:45:21:77:dd:
93:d1:01:4c:56:da:83:91:c6:05:2a:41:30:53:eb:df:51:0b:
9f:16:ba:b5:0b:fd:2d:48:7c:2d:80:0d:a5:ce:95:51:15:6b:
02:08:68:2c:44:3b:1f:54:7c:b1:98:ea:cd:a3:9d:78:42:74:
13:4e:d3:58:a1:3f:dd:25:b6:c2:79:70:1a:37:ce:5d:24:40:
75:d3:35:a5:c9:26:a9:71:8d:ae:de:ea:32:75:05:a8:43:2f:
ed:21:5b:3b:a5:7e:07:ec:12:3d:cb:a7:72:b5:e2:92:f8:96:
49:82:a4:50:c3:47:15:cc:f0:ab:a6:ad:5d:8e:ab:eb:f8:5f:
5a:dd:8d:9f:f0:05:7b:6a:56:e0:5e:37:1d:da:99:bc:6e:d1:
57:ff:92:a5:1a:5d:c0:e8:38:42:c9:d5:53:1c:b6:4a:77:51:
dd:15:78:b0:d0:3a:63:b7:20:fe:d2:86:36:c2:58:51:a2:d0:
92:4b:9e:9e:08:93:eb:7c:a6:49:27:2e:37:9f:f1:33:0c:2d:
f4:37:fb:a0:2f:b9:a3:da:e3:58:17:8d:f7:84:64:dc:be:9a:
0d:6b:dc:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:49 2025 by rpki-client