Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: HfHxrRsCl2ZvowV5cNzRmklYCoUYQ4pH6rEWBTPWSzo=
Subject key identifier: B8:AC:BC:DD:2E:F2:49:EF:1F:C4:94:6C:34:AA:46:3D:18:23:7A:FE
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 01987374764C8468E85F6D428FCE81A6AF02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0B38
Signing time: Mon 04 Aug 2025 05:01:08 +0000
Manifest this update: Mon 04 Aug 2025 05:01:08 +0000
Manifest next update: Tue 05 Aug 2025 05:01:08 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: Xqd9nXYk+dZPkHu05Dr1bnEXqq1bd2xDKG8IhYyNLag=)
2: cnFeqHBw9aaza2RenBeNwJKndxs.roa (hash: kjgI4uTxYMi7MCfdj3M5XWKqSFRmZG0IxbqIvN1jC7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:76:4c:84:68:e8:5f:6d:42:8f:ce:81:a6:af:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Aug 4 05:01:08 2025 GMT
Not After : Aug 5 05:01:08 2025 GMT
Subject: CN=b8acbcdd2ef249ef1fc4946c34aa463d18237afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:58:2d:84:a3:2c:52:76:09:86:58:9a:8e:fb:
25:d2:2e:c3:26:31:22:f0:02:33:f8:50:a5:41:d9:
3d:f2:58:e7:3e:46:9e:5f:ea:29:2b:5d:ba:05:ec:
a9:68:78:1b:5a:f6:e0:bc:4d:b6:c8:05:51:b7:72:
a3:b9:95:02:89:06:80:19:ea:f9:6b:a1:6a:65:c0:
a6:8c:cb:60:47:ac:24:a9:1d:5a:33:36:a3:f1:60:
31:df:fc:d1:28:7b:cd:93:48:35:dc:09:c1:f8:47:
c9:30:f0:d6:61:1c:19:fa:63:4a:a4:1c:2f:0f:33:
df:8e:a9:d4:f3:aa:0b:70:a3:de:43:b3:30:ef:55:
61:8c:54:88:1c:b2:4c:47:4f:82:f7:24:25:b9:e5:
d3:15:70:90:43:5b:c1:04:2a:ff:61:51:72:0f:96:
81:94:92:ce:ef:0a:08:bc:c2:64:55:24:c7:cc:91:
b0:67:e2:6e:70:d7:11:c5:63:0c:26:52:57:36:3b:
bd:d5:be:b5:55:81:58:c7:7b:56:60:b6:47:a3:ea:
9b:a2:a7:af:e1:fd:3b:12:4a:37:d4:32:9a:b0:4b:
42:7d:d5:14:2f:da:83:be:1d:cc:5b:f1:32:26:62:
2c:66:15:ff:b5:ec:ab:90:29:88:86:4d:8e:c9:61:
bc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AC:BC:DD:2E:F2:49:EF:1F:C4:94:6C:34:AA:46:3D:18:23:7A:FE
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:28:ea:e6:35:d5:d1:30:e5:f4:2f:06:c3:ad:5a:24:93:bd:
d7:01:1c:71:31:f6:23:a3:05:88:71:64:a7:19:3d:08:7f:fb:
65:11:71:84:e3:98:9e:c5:c0:c0:07:d6:21:ac:82:08:8c:91:
55:23:7b:76:29:5f:b2:c0:80:3b:e1:c4:52:ca:ce:e8:62:39:
38:db:a2:3c:06:11:49:4c:75:53:64:32:4b:6b:71:2e:f2:ee:
7a:9f:ed:4c:5b:42:6e:42:99:a5:20:5e:7e:4b:28:ca:3f:ee:
fb:67:38:c5:5e:bf:f1:db:c4:2b:26:b2:b2:5b:8e:08:63:0d:
65:6a:e3:ef:39:68:ad:6e:e9:a4:f3:d2:2e:86:f4:53:fe:d1:
2f:79:05:9d:88:a3:8c:d5:eb:2d:d0:38:dc:17:68:f0:26:b8:
e8:09:44:b3:51:fd:91:41:3f:f3:fb:84:b2:bd:f5:1e:fa:57:
7c:a2:f6:46:4c:c1:4f:11:17:1b:81:77:dd:8d:a9:c9:8c:cc:
b6:12:fe:59:60:b2:b6:6c:c3:08:f8:b8:6a:c3:83:ff:21:08:
2a:71:6d:b1:e6:5a:2a:e0:f2:a7:f8:b6:bf:ba:b7:10:d7:72:
d3:c9:ec:98:8f:d4:80:cb:5d:b7:40:8a:35:36:09:cd:f6:ae:
92:37:67:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:38:53 2025 by rpki-client