Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
File: uwKqn6RfyXvbLm3I_Ap_A3HITek.mft (raw, json)
Hash identifier: zhK3oA8Xp4cGsF/R8zs7KDdDX8FkyZrkt2ztha8H/NY=
Subject key identifier: 82:BE:6D:0B:DF:B1:4F:CC:8F:E4:6A:31:3B:F8:F0:49:20:35:68:75
Authority key identifier: BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
Certificate issuer: /CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Certificate serial: 019935012D24A3CECF1E5ADFB88A922264DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
Manifest number: 0226
Signing time: Wed 10 Sep 2025 19:01:33 +0000
Manifest this update: Wed 10 Sep 2025 19:01:33 +0000
Manifest next update: Thu 11 Sep 2025 19:01:33 +0000
Files and hashes: 1: R5Jq1FBCLvbBgZNwF7Icfpxv3yE.roa (hash: ir5koZmhGGNuMOajWDB8hvuKf0qBoIQa1qm6cPf+lx4=)
2: uwKqn6RfyXvbLm3I_Ap_A3HITek.crl (hash: 5SUhTO+3ULqYp7Depab9YindUCE7Egg+yTPQxzuHIak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:01:2d:24:a3:ce:cf:1e:5a:df:b8:8a:92:22:64:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Validity
Not Before: Sep 10 19:01:33 2025 GMT
Not After : Sep 11 19:01:33 2025 GMT
Subject: CN=82be6d0bdfb14fcc8fe46a313bf8f04920356875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:18:1c:08:b3:8c:82:58:34:54:2f:bc:34:
bf:9c:d6:30:82:da:d6:53:b0:de:8f:cc:84:06:0f:
b0:09:f5:02:27:e9:64:7a:15:c5:5e:70:8b:e2:1c:
09:8b:7e:0b:e1:a5:38:5a:ce:3a:fc:8e:e7:47:22:
6a:88:58:65:bc:b4:e0:26:19:f9:99:0f:b2:c7:b4:
c0:6f:71:75:be:bd:0e:31:86:df:87:d1:25:d2:dc:
23:2c:8c:cc:76:b1:6c:dd:dc:2f:1d:5a:ef:72:85:
4f:91:98:fd:ac:ee:5f:fc:bf:d7:9f:e9:b1:cf:41:
65:a1:f7:13:36:2d:cd:0c:f4:2a:e4:72:f5:8c:6e:
af:e9:57:08:73:a6:1e:7e:f2:e8:f7:3a:4c:45:5a:
30:58:11:7c:a6:ba:cd:48:22:ea:a6:44:b2:ff:a3:
aa:a5:f2:9f:74:1c:ec:38:84:ba:ae:62:7f:b4:79:
2f:79:9d:aa:aa:79:57:89:2f:bc:4b:83:9f:8c:e8:
c9:f2:46:68:11:a8:22:3c:41:35:a1:87:68:35:2e:
d7:8a:b4:91:00:c1:46:13:b1:b3:88:e6:9a:22:3e:
76:e7:10:0f:4c:cf:1a:0a:94:63:91:63:bb:86:21:
cd:ea:74:be:e6:52:b1:14:12:87:ed:49:0d:bd:08:
b0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BE:6D:0B:DF:B1:4F:CC:8F:E4:6A:31:3B:F8:F0:49:20:35:68:75
X509v3 Authority Key Identifier:
keyid:BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:fa:32:0f:3a:ca:d5:3f:16:65:c3:1b:50:49:13:4d:10:f6:
85:46:08:79:e6:21:bf:aa:5c:1f:99:30:a8:92:71:35:3d:c0:
bd:8a:2a:61:f1:eb:80:bc:96:ca:b4:ca:4a:d1:d4:18:18:3b:
1c:bd:f2:fb:4c:0a:c2:50:36:71:05:79:4e:1f:91:7f:5d:40:
99:28:e5:e1:76:15:49:b4:1e:35:f6:cb:fc:06:4d:d2:e7:c5:
2b:ac:b7:d8:fc:f3:7c:95:e5:98:4c:49:34:e6:42:48:07:ee:
68:60:48:80:f3:69:62:55:1d:d0:39:c7:e6:b7:27:d2:50:c9:
1e:2f:41:4f:85:41:1d:ec:8f:ce:58:d1:67:70:c6:62:91:88:
87:93:5e:eb:0b:99:77:f8:dc:dd:32:6d:88:cd:b0:61:a4:0a:
9c:74:ec:24:50:0a:c7:58:cf:63:21:03:de:3a:e5:5c:74:62:
aa:6c:77:1d:71:5c:d1:e9:88:29:8e:63:f3:92:6c:78:be:ba:
16:14:e5:d7:9b:79:21:39:68:a2:c5:b3:63:a1:b2:a9:54:e5:
4d:7a:bf:03:13:0b:ff:c3:bb:bc:97:08:b9:c9:3b:5c:7d:10:
09:f1:63:2b:11:f4:b6:ad:26:dd:d9:61:82:e1:dd:ca:f4:7c:
9c:68:3d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:43:19 2025 by rpki-client