Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: TrN/IXPvHoMC2w92GoJOEl7sk35JryB592ILjD9iihY=
Subject key identifier: D6:44:EB:9E:31:DF:1B:6A:E9:81:F6:9C:67:89:94:E7:12:78:E0:62
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 019921E7B27C3FED7299D9A05EF383B41F39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 167B
Signing time: Sun 07 Sep 2025 02:00:56 +0000
Manifest this update: Sun 07 Sep 2025 02:00:56 +0000
Manifest next update: Mon 08 Sep 2025 02:00:56 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: BHjgQwzF4HdAgjOncx5Kmj7yOM0rZAOPFb+XQHe9c8Q=)
2: RKyzB9bUwZYi5TsxSj7CGxt394k.roa (hash: Hh9WM4Bb/ik/WwsavUvg8LAp8Fn8QkXbUV4e4PeWt3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:b2:7c:3f:ed:72:99:d9:a0:5e:f3:83:b4:1f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Sep 7 02:00:56 2025 GMT
Not After : Sep 8 02:00:56 2025 GMT
Subject: CN=d644eb9e31df1b6ae981f69c678994e71278e062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5a:9b:52:e8:e5:8a:12:31:1c:2e:63:9d:f3:
86:cc:9a:73:98:54:95:38:c1:ad:8f:22:fc:c4:54:
0c:e1:c5:49:8f:fd:1a:17:e2:f5:53:28:9c:49:2b:
d0:63:b2:44:c4:fc:5f:28:87:67:a9:b6:3b:fb:c4:
80:81:da:f0:58:4d:4f:23:ff:9e:4a:0f:c4:16:49:
01:cb:cb:01:bf:63:cb:cb:1c:f7:01:d0:0a:49:ba:
31:eb:b0:ba:da:46:7a:64:36:6a:2e:41:2b:03:93:
24:dd:75:23:8c:f6:56:ab:3b:82:7a:ee:84:6a:ba:
cd:78:d8:89:63:af:67:c2:02:ea:e2:90:3c:b0:4d:
e2:29:8d:a7:c0:b4:33:1c:0c:d1:82:a0:95:43:0e:
9d:3a:96:03:80:74:aa:4d:c7:75:7a:34:d5:b1:f4:
e5:e3:4e:dd:6c:af:52:7a:8c:f7:10:1a:59:30:60:
70:e1:5e:f5:f9:c8:3b:be:31:27:a1:d1:a5:cc:64:
89:27:4e:c2:fd:cf:03:ed:55:5d:ac:d7:ed:08:57:
73:34:93:3d:fb:10:02:ac:12:92:14:06:5f:a9:7a:
27:4e:84:95:fd:65:9b:f8:d8:ca:d2:da:ad:f7:69:
a0:c8:58:84:a0:93:00:58:19:23:0f:c0:ae:67:21:
d0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:44:EB:9E:31:DF:1B:6A:E9:81:F6:9C:67:89:94:E7:12:78:E0:62
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0d:a9:d0:ae:9c:a0:11:02:fa:33:d5:91:ad:1d:c5:b1:28:
2b:2b:cb:74:30:8b:7a:d8:f5:1c:dc:48:b5:4f:fe:5b:e7:3f:
6c:c8:0a:a8:ae:29:3e:e7:d6:32:16:96:41:b3:e0:d3:b6:23:
27:ef:2b:21:33:99:fb:c4:b5:8f:4f:a5:f5:b9:2a:7e:1e:d3:
04:1c:e8:f5:b3:61:bd:25:9c:d3:10:23:ec:85:52:bf:73:92:
e7:ce:b3:20:b7:c5:b0:4c:6a:aa:86:19:46:4e:db:45:a7:83:
64:d4:d2:2b:ac:a6:30:e9:2c:56:6b:03:3f:09:5f:03:b8:4e:
16:c0:3c:1d:13:13:cc:2f:68:28:85:8e:62:e5:47:b0:78:da:
16:4a:6e:19:d1:15:a4:9a:03:30:6b:51:74:00:40:eb:db:a9:
d1:86:86:91:3c:34:fd:a4:79:ed:39:96:8f:11:d6:40:a6:03:
d9:67:81:06:00:0b:27:aa:0a:8d:bf:a0:c9:f2:1b:0d:e5:c4:
79:ea:14:e8:12:74:2f:ee:70:16:32:76:20:59:62:01:15:4e:
00:0a:26:30:0f:50:da:2d:54:33:48:80:cb:dd:f9:37:60:06:
fc:33:e1:aa:b6:5a:dc:5f:9b:e4:69:98:58:30:f4:bd:57:de:
52:fb:6d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:30:45 2025 by rpki-client