Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 6A295wKv5B55G+wdRD4BU5yrRCkW7L+JGhZJECScFQw=
Subject key identifier: 20:5E:1E:4E:C6:C0:54:C5:34:35:2C:C1:4A:3C:84:5D:FF:E8:D2:8B
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 01976961AA6BC82728B24B401AE956899B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1458
Signing time: Fri 13 Jun 2025 13:01:37 +0000
Manifest this update: Fri 13 Jun 2025 13:01:37 +0000
Manifest next update: Sat 14 Jun 2025 13:01:37 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: ZtRjpD96OgY9I/zl8uRQkiwyQwPRDD3JanDr4WrGuHU=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:aa:6b:c8:27:28:b2:4b:40:1a:e9:56:89:9b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Jun 13 13:01:37 2025 GMT
Not After : Jun 14 13:01:37 2025 GMT
Subject: CN=205e1e4ec6c054c534352cc14a3c845dffe8d28b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:97:c5:19:76:9e:57:b2:78:0f:d4:1e:b8:ff:
04:e3:af:a7:3b:01:76:da:66:e3:0c:a8:c3:34:e3:
30:19:55:b2:21:4d:f2:09:35:bc:c4:ee:fe:94:be:
be:2b:06:0b:c0:89:09:94:ff:94:af:0c:03:0d:0d:
99:a2:8b:74:c3:57:08:55:54:d0:e2:80:a5:45:5e:
89:6c:32:45:d1:f0:30:7c:d9:71:6c:10:e1:94:76:
03:2c:fd:59:a1:38:e8:ba:23:8c:ac:56:79:55:4a:
c4:a8:ac:56:8e:d5:10:a4:d7:ea:b9:7a:0d:61:1a:
08:c6:a5:4c:e5:9e:73:d1:e4:86:5c:46:f1:fe:73:
7a:69:07:79:60:bb:24:ae:d7:56:a1:b8:9d:d7:a0:
49:78:37:a4:5c:3c:28:03:af:0e:2a:8a:be:1c:a0:
4d:38:ea:90:b6:cc:d2:92:49:63:3f:51:74:d8:cc:
11:b8:7e:91:17:6c:2b:3f:a5:2c:ff:4e:76:f6:04:
1b:d4:98:cd:79:e2:43:44:52:8a:cb:7b:a5:19:ca:
53:0d:a4:b3:c2:ee:77:19:16:38:f3:f2:c6:fc:46:
ec:29:82:aa:ed:19:5f:d9:90:f2:72:4d:22:90:5f:
a6:ba:d2:a2:b3:aa:85:5a:96:0d:fa:80:cc:64:5c:
c6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5E:1E:4E:C6:C0:54:C5:34:35:2C:C1:4A:3C:84:5D:FF:E8:D2:8B
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:37:58:bd:ae:97:65:52:c7:01:ec:81:16:14:5d:91:75:5c:
2f:f5:41:70:b5:9c:42:39:69:88:0a:51:00:59:5e:5e:f5:ae:
03:91:22:48:9a:61:00:c0:f1:c6:d9:c7:92:98:ad:4f:82:30:
a8:0c:ee:81:8a:a6:be:5a:55:15:9f:ab:42:70:b6:1e:cc:95:
f8:3b:6a:de:02:3b:a6:f8:84:63:b4:98:06:d2:7b:0d:ee:36:
2c:80:5c:cf:41:23:99:db:da:15:73:a9:e6:dc:e0:9a:61:a5:
9d:90:b3:0e:1b:16:5d:06:e4:9c:3f:51:9f:1e:cb:5c:d9:5d:
dc:d9:98:ea:41:15:55:5d:11:c1:61:14:de:0b:4a:50:57:63:
9f:8a:ba:8b:0d:9b:93:2b:c2:d9:54:08:c6:3f:d4:8b:93:0b:
b7:e3:f4:aa:2e:97:0a:69:55:32:c4:5f:df:be:f8:fb:b2:45:
36:0d:e6:b1:b0:9c:c1:57:c9:1e:c1:f6:ed:a4:36:3b:31:30:
7a:ef:50:28:d7:49:b9:2e:d3:b8:d1:2c:29:14:6a:c6:15:f3:
62:8a:7d:33:41:14:5a:3b:d0:f9:92:05:83:1d:95:a6:f0:ca:
e4:02:46:9f:3a:da:ae:32:00:d4:fe:e9:21:d5:1f:a9:f0:d2:
1f:4a:49:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:26:38 2025 by rpki-client