Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 1p85gtw1fn0cL27d4RpgaXlM12cjWJy7+ipcJQxcANM=
Subject key identifier: 7F:A2:3D:F1:3F:6F:B9:7E:EC:A0:75:F4:C3:5C:5D:62:28:D2:AB:25
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019A4EF42AA3781B50212334EC5397664764
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 15D8
Signing time: Tue 04 Nov 2025 13:00:15 +0000
Manifest this update: Tue 04 Nov 2025 13:00:15 +0000
Manifest next update: Wed 05 Nov 2025 13:00:15 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: rV6bCNNajtEbvWgakN9QEkwlWRGsHgPrTfeKZ+4sw7I=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:2a:a3:78:1b:50:21:23:34:ec:53:97:66:47:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Nov 4 13:00:15 2025 GMT
Not After : Nov 5 13:00:15 2025 GMT
Subject: CN=7fa23df13f6fb97eeca075f4c35c5d6228d2ab25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:71:22:7c:e9:e9:86:12:91:8f:17:f3:95:ad:
eb:e8:fe:ed:d9:6f:f3:80:be:77:a4:42:74:c9:33:
f6:42:16:c2:47:af:26:7d:47:12:74:9c:a2:72:66:
12:09:12:83:ab:fe:65:24:a8:79:ee:7a:43:0c:e9:
de:40:9a:e3:ae:cc:93:70:e9:a0:f1:64:96:23:41:
6c:eb:35:3e:71:5c:49:b0:3b:0c:5c:44:fe:9e:86:
a5:97:21:e9:c1:99:fa:e9:f9:12:96:19:68:7e:76:
d8:6f:d6:59:9f:1d:ca:21:3a:c1:27:d9:72:3c:07:
25:11:c8:7b:af:01:8f:5f:15:6e:88:f5:ba:41:f9:
66:68:ef:bd:11:b3:be:91:02:d3:00:0f:e5:d5:9a:
4d:05:90:dc:8c:28:8e:27:b7:fb:e3:bd:8c:ec:67:
98:fa:1d:b7:61:ea:86:9c:86:c1:b7:c5:9e:67:7b:
65:7e:46:6f:e6:d6:bd:8c:7e:e4:5a:c5:66:aa:c4:
11:04:0b:43:18:f4:8e:56:f1:42:49:cd:50:22:94:
10:e8:bc:51:67:ae:74:74:e2:df:80:14:59:68:ce:
74:1b:10:07:8f:c6:93:09:22:ae:39:b4:77:99:16:
dd:e8:ac:87:7c:1f:6e:52:8d:1b:81:26:95:0d:b3:
84:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A2:3D:F1:3F:6F:B9:7E:EC:A0:75:F4:C3:5C:5D:62:28:D2:AB:25
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ea:34:da:a3:65:2f:27:03:d8:b7:d6:bd:e6:a2:19:a2:3d:
6f:0c:d5:c4:70:ad:d9:b4:e0:c3:b4:12:7c:9b:e3:7e:88:2f:
7a:4c:de:ef:03:20:c6:f3:b1:4e:3a:71:91:a3:bc:2d:a7:9a:
8b:22:30:14:62:d9:b1:ac:10:9e:4a:ea:f8:42:eb:36:ff:8e:
56:ef:c9:ab:98:4f:81:fd:03:65:a0:89:51:72:9e:a5:6d:93:
f8:2e:2d:9b:23:b8:89:0e:75:35:4e:a0:3d:fc:22:95:60:29:
0a:bb:15:50:6a:62:d9:12:d4:4a:5d:56:57:58:d4:4b:eb:fe:
b9:d4:f7:62:00:ed:93:eb:c2:c3:02:15:14:3f:34:28:45:cf:
a6:c7:78:fa:9c:55:1e:5b:06:04:79:df:40:6e:aa:13:99:e7:
0c:aa:b5:66:bd:6a:d7:8c:06:be:26:a8:6a:f6:b9:09:d0:b1:
3d:4b:9c:e5:03:da:12:bc:20:c8:ca:cb:57:d3:a6:9c:14:47:
51:af:ca:4f:23:6a:78:ee:5e:f2:96:27:48:c8:3d:60:0c:29:
7f:f1:53:5e:1a:af:1e:e4:38:2a:a4:bf:f4:f2:0a:ea:e1:46:
9a:7b:7d:81:fc:43:bc:94:90:7b:d2:9e:0b:05:02:3b:83:4c:
53:5c:54:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9CqjeBtQISM07FOXZkdkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWI0ZTAwYzBkOTJjYjUwMWJiYjIyM2FjZjAzOWUyNzA5
MWRiNGUwHhcNMjUxMTA0MTMwMDE1WhcNMjUxMTA1MTMwMDE1WjAzMTEwLwYDVQQD
Eyg3ZmEyM2RmMTNmNmZiOTdlZWNhMDc1ZjRjMzVjNWQ2MjI4ZDJhYjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4XEifOnphhKRjxfzla3r6P7t2W/z
gL53pEJ0yTP2QhbCR68mfUcSdJyicmYSCRKDq/5lJKh57npDDOneQJrjrsyTcOmg
8WSWI0Fs6zU+cVxJsDsMXET+noallyHpwZn66fkSlhlofnbYb9ZZnx3KITrBJ9ly
PAclEch7rwGPXxVuiPW6QflmaO+9EbO+kQLTAA/l1ZpNBZDcjCiOJ7f7472M7GeY
+h23YeqGnIbBt8WeZ3tlfkZv5ta9jH7kWsVmqsQRBAtDGPSOVvFCSc1QIpQQ6LxR
Z650dOLfgBRZaM50GxAHj8aTCSKuObR3mRbd6KyHfB9uUo0bgSaVDbOEmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH+iPfE/b7l+7KB19MNcXWIo0qslMB8GA1UdIwQY
MBaAFB6rTgDA2Sy1AbuyI6zwOeJwkdtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMt
MTliYTg0ZDg0YWYwLzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMtMTliYTg0ZDg0YWYw
LzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAneo02qNl
LycD2LfWveaiGaI9bwzVxHCt2bTgw7QSfJvjfogvekze7wMgxvOxTjpxkaO8Laea
iyIwFGLZsawQnkrq+ELrNv+OVu/Jq5hPgf0DZaCJUXKepW2T+C4tmyO4iQ51NU6g
PfwilWApCrsVUGpi2RLUSl1WV1jUS+v+udT3YgDtk+vCwwIVFD80KEXPpsd4+pxV
HlsGBHnfQG6qE5nnDKq1Zr1q14wGviaoava5CdCxPUuc5QPaErwgyMrLV9OmnBRH
Ua/KTyNqeO5e8pYnSMg9YAwpf/FTXhqvHuQ4KqS/9PIK6uFGmnt9gfxDvJSQe9Ke
CwUCO4NMU1xUMA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:07:34 2025 by rpki-client