Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 6efZhvcFA9PBd6ZBgPgbTxDto16q6/eCUVCdnhLaAjE=
Subject key identifier: 33:52:E1:16:2C:94:CD:23:FE:85:C7:48:9D:C4:79:0F:59:84:0E:B9
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 01987B9D72DAC0577422753EA27E89FF3332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 14E6
Signing time: Tue 05 Aug 2025 19:02:52 +0000
Manifest this update: Tue 05 Aug 2025 19:02:52 +0000
Manifest next update: Wed 06 Aug 2025 19:02:52 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: qWGdOKYIXP+Z+1usbYDoRysD5cIiB65sVdQ4X7aKwdk=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9d:72:da:c0:57:74:22:75:3e:a2:7e:89:ff:33:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Aug 5 19:02:52 2025 GMT
Not After : Aug 6 19:02:52 2025 GMT
Subject: CN=3352e1162c94cd23fe85c7489dc4790f59840eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:62:ab:60:11:07:4d:cd:88:72:31:3a:86:4c:
fb:a5:81:2d:e2:6f:ae:9c:38:3a:fb:b0:24:24:b2:
5f:fc:58:4e:a0:5b:b0:04:e0:8b:bf:77:75:0c:fa:
e5:f3:7c:7a:31:07:c6:c8:e3:ec:b3:5e:30:aa:d9:
47:8e:c1:b6:16:4b:46:ef:5b:42:3d:fc:e7:eb:0b:
f0:e4:fc:cf:7d:51:bf:99:3c:a8:6b:74:fd:c4:21:
35:6f:e8:41:22:96:f7:c5:38:70:a7:23:e9:15:46:
58:8c:d3:ab:a5:cf:5c:6f:42:01:69:d6:29:8c:cf:
05:59:b9:b6:16:7a:b9:40:60:d3:82:54:38:bd:d6:
01:6a:34:0c:07:2f:f0:f2:b0:f2:2e:f0:9c:ba:a4:
35:b7:15:ca:3c:cb:63:6f:d4:40:a7:27:8b:2b:68:
1a:c0:af:8e:36:fd:29:03:30:4f:f7:5f:77:1e:b5:
52:75:1d:54:84:1d:8f:a6:e8:2d:d7:c7:41:df:75:
2b:cd:e5:9d:22:d5:78:d9:f6:2d:4f:10:41:57:61:
c9:64:fc:d2:e1:cb:7d:96:bb:c6:b1:e9:b6:19:e8:
57:3c:79:79:e5:3b:9a:54:7f:bf:cb:25:b2:d5:4f:
5e:79:84:15:b1:59:5a:f3:dd:2e:1b:a2:11:d2:68:
57:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:52:E1:16:2C:94:CD:23:FE:85:C7:48:9D:C4:79:0F:59:84:0E:B9
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:69:51:69:7d:17:5b:5d:f7:28:04:4d:79:72:4f:c7:05:8a:
89:a8:b2:24:36:de:38:8e:b9:ff:e1:21:e5:a3:ec:57:96:af:
65:3c:b5:d3:94:84:aa:da:3f:40:95:7c:fb:48:0f:c6:b1:d2:
7f:8e:1d:60:6d:f3:a9:15:fd:5c:9b:40:43:82:da:cb:2f:91:
ea:37:0c:f9:af:99:0a:bc:65:e2:c0:41:b1:38:bd:30:a2:69:
dc:d1:8e:79:68:ef:94:86:0e:60:e3:00:a1:bb:10:76:29:30:
94:ee:66:44:93:08:3f:a1:e4:fd:cd:36:0e:f9:81:99:89:02:
75:ac:a2:81:8a:d7:37:04:5f:a2:ba:d3:f3:53:5c:45:7c:ff:
2a:dc:a7:6c:c8:63:89:af:28:3a:98:9e:10:75:42:44:50:0a:
6a:f3:90:98:5b:4f:10:0f:63:2f:14:d8:47:3b:25:ba:cd:97:
95:f4:0d:2b:d8:0f:0e:02:87:01:6f:c0:98:5a:10:8f:52:55:
ad:3d:56:77:dd:6e:01:33:25:bc:ce:77:48:ff:43:6a:55:61:
f4:3d:97:8f:db:e5:87:59:1b:de:75:64:e9:44:68:b4:b5:8b:
7b:18:cc:16:8a:ad:db:82:fd:67:02:31:bc:23:fd:44:e5:33:
b0:64:17:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:00:58 2025 by rpki-client