Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
File: uwKqn6RfyXvbLm3I_Ap_A3HITek.mft (raw, json)
Hash identifier: /QZWmheSwFJ4osuuZ+O73xDuxrhDOzQxY0Y8PnMhkL0=
Subject key identifier: A1:F2:6D:02:2F:9C:08:B9:CE:D3:30:65:C1:38:D8:C0:90:E5:52:32
Authority key identifier: BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
Certificate issuer: /CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Certificate serial: 019A300EE984175931D6DF0220DC4CC080AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
Manifest number: 02A8
Signing time: Wed 29 Oct 2025 13:01:14 +0000
Manifest this update: Wed 29 Oct 2025 13:01:14 +0000
Manifest next update: Thu 30 Oct 2025 13:01:14 +0000
Files and hashes: 1: R5Jq1FBCLvbBgZNwF7Icfpxv3yE.roa (hash: ir5koZmhGGNuMOajWDB8hvuKf0qBoIQa1qm6cPf+lx4=)
2: uwKqn6RfyXvbLm3I_Ap_A3HITek.crl (hash: 9c6koQ9MtkxBH8bJ9tr7Dy8UI+t+sw9kZLumb46UOkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:0e:e9:84:17:59:31:d6:df:02:20:dc:4c:c0:80:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Validity
Not Before: Oct 29 13:01:14 2025 GMT
Not After : Oct 30 13:01:14 2025 GMT
Subject: CN=a1f26d022f9c08b9ced33065c138d8c090e55232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bb:5c:fa:18:88:86:59:fa:7c:fd:54:56:23:
57:a4:c0:1e:5d:f5:b7:2d:ea:ed:78:7b:4a:40:10:
76:d0:e6:77:3a:5d:dd:1d:44:34:e7:80:59:df:0c:
ec:8d:bb:4f:e0:e4:36:ec:9a:fe:72:2b:60:6a:8e:
99:44:d0:55:d7:9c:5d:28:d3:9c:3b:a7:f3:b2:27:
45:af:89:f7:4f:8f:96:1b:3f:07:76:a3:50:d9:cb:
2a:75:b6:0e:91:26:f2:0e:ba:76:e1:9e:7f:c0:47:
1a:e2:1f:24:12:65:d5:9e:bb:34:11:8e:9c:85:92:
46:66:05:ec:83:93:9d:41:27:93:c7:a7:b5:a8:4b:
d8:9e:17:58:51:15:56:ea:7d:93:51:d5:f0:76:1c:
ba:87:5c:31:51:51:d6:fc:10:ff:69:87:91:b3:03:
71:7a:67:43:55:ee:21:53:52:75:ce:a0:83:cf:7c:
18:9f:5b:a6:90:d9:e7:af:c4:1d:0f:82:d4:eb:4c:
9a:aa:51:d0:91:89:06:4c:e7:34:66:1d:72:a8:d7:
bc:62:ed:cf:d4:17:c2:51:5e:8f:b9:bf:d8:26:9f:
05:54:47:c3:d5:0f:c7:ab:f3:54:79:5b:4a:63:22:
03:ab:95:f2:67:f0:06:2e:a1:c6:21:58:d6:c8:61:
e5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F2:6D:02:2F:9C:08:B9:CE:D3:30:65:C1:38:D8:C0:90:E5:52:32
X509v3 Authority Key Identifier:
keyid:BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:9e:5c:d3:80:4c:dc:d9:8a:06:ba:56:17:24:58:e7:f6:af:
cc:b8:ee:32:b7:cb:c1:69:9b:ff:7d:d2:9f:33:ad:aa:4a:54:
36:53:97:cd:67:bd:a7:37:f0:ee:9b:d4:f3:81:c4:b7:44:ed:
0d:bd:7f:e5:80:0e:cc:8e:e2:12:ba:20:23:a2:30:ec:80:73:
e9:40:23:87:fc:38:31:4b:74:78:cb:90:94:eb:c9:bc:5c:e2:
98:98:bd:44:eb:bc:2b:eb:45:59:8b:b0:37:8b:b8:f1:70:1f:
e7:dc:ab:e7:6d:db:5f:bc:fd:6d:c5:16:dc:68:dc:ad:3c:26:
bb:5f:94:e1:73:04:6d:ed:61:1a:09:91:85:d8:29:00:dd:eb:
6a:17:dd:20:8e:bc:53:0c:f5:18:39:c5:31:ff:e0:33:98:0d:
b8:15:fa:4d:ee:30:9d:9b:2e:50:9a:d4:51:44:ee:ca:bb:27:
e9:6a:9d:4a:83:99:1b:36:fd:9a:db:b3:5d:22:9d:d8:f6:06:
a6:11:09:b6:c5:27:76:ac:d1:1d:ef:b8:ef:32:5f:fa:12:a8:
df:b8:97:b4:a3:9d:81:29:e0:b3:42:6e:1e:cf:02:c0:12:ce:
41:84:58:ba:7c:33:eb:3b:62:3a:7b:38:13:ff:27:13:d3:ef:
f4:4f:de:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 18:56:31 2025 by rpki-client