Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: ee5hJVn0Kh4bFcLefkh4kKuN4qryMeX+Iz/WyzdDMGw=
Subject key identifier: B0:F4:C6:8D:E8:81:A5:6A:E3:D5:40:14:DA:32:0F:52:7A:99:46:78
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 01995D8F9C154DDD7EB80DB4FC23A281D8CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 1442
Signing time: Thu 18 Sep 2025 16:01:56 +0000
Manifest this update: Thu 18 Sep 2025 16:01:56 +0000
Manifest next update: Fri 19 Sep 2025 16:01:56 +0000
Files and hashes: 1: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: W1p/CA9iPh1/G1q7o3d60+WTq9+LYyvTiy+4FkTV9hI=)
2: ub3jhWL8KmU55QyzLWlOgggBar8.roa (hash: uMoRi+7KkYToPIHx+yE4FpiPieRkes7ACBQfGkW0VCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 13:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5d:8f:9c:15:4d:dd:7e:b8:0d:b4:fc:23:a2:81:d8:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: Sep 18 16:01:56 2025 GMT
Not After : Sep 19 16:01:56 2025 GMT
Subject: CN=b0f4c68de881a56ae3d54014da320f527a994678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ae:58:87:0b:02:22:40:8d:60:d6:33:d3:a5:
90:21:fe:1a:2a:b6:bf:3f:c4:e9:be:af:7c:80:38:
e2:54:b3:a9:ad:f7:c3:5c:88:2c:fe:a1:af:17:1b:
ad:2f:b8:24:40:d3:54:0a:90:41:25:65:80:f7:85:
9a:96:6a:39:76:9e:cf:b9:7f:c6:ec:66:dc:72:e7:
0a:58:74:3c:15:db:2e:bc:68:9b:71:c5:db:6e:23:
5c:6a:76:4a:cc:ad:8d:79:53:4b:f1:cc:ad:ed:54:
e9:1a:e9:5c:f6:2e:60:07:33:89:1b:a0:e3:9a:2f:
61:8b:c0:64:d0:28:3f:c7:a5:9f:84:4b:e3:8e:14:
32:53:f7:f5:54:41:b0:b8:a2:10:d3:5f:13:00:7e:
7e:31:04:95:8a:24:de:c4:cc:11:08:0f:61:85:7d:
95:9d:35:e0:a8:71:69:8c:61:a8:c1:bb:df:56:ea:
f9:b8:9e:58:73:a5:3c:2d:22:b7:6e:5c:c4:76:56:
e7:20:ff:1c:fb:54:d9:aa:40:09:3e:28:42:65:4b:
79:88:36:ab:30:c0:89:45:d6:41:45:da:a4:e0:f0:
dd:06:1f:c8:8d:6f:cc:79:ac:88:c7:92:c4:69:0c:
1a:91:eb:3b:60:f9:5b:d0:d9:f3:45:20:37:3f:87:
9d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F4:C6:8D:E8:81:A5:6A:E3:D5:40:14:DA:32:0F:52:7A:99:46:78
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ee:d7:ad:8f:7c:79:ad:36:f0:5e:5b:57:7d:3d:97:23:15:69:
60:92:21:56:5c:47:c2:c2:5d:3c:5d:27:d4:c3:6c:60:e3:9c:
21:a5:63:49:45:89:52:16:65:0d:d0:bd:46:2f:c1:81:b9:80:
39:74:84:ec:3f:1b:d6:41:6f:a7:9b:bd:be:ea:49:17:6a:b1:
87:34:30:05:88:a8:70:7e:80:67:22:77:cf:1c:a8:7d:69:96:
9d:8c:c1:7d:65:6a:01:23:66:19:dc:bd:2b:93:ec:12:47:6f:
55:a1:57:6d:7e:17:34:16:ce:a7:95:fa:20:fd:2d:34:37:e6:
e2:05:d6:ce:9c:1b:14:e2:ff:70:77:4f:58:63:77:da:11:82:
85:40:7e:7b:23:4a:22:bb:72:0a:e2:b6:4c:b2:d4:4a:c0:fc:
db:15:b2:ab:03:3d:e1:8d:99:8a:7f:71:96:fe:15:81:1b:c3:
cf:c0:03:52:27:db:6f:e6:26:0e:ef:31:cd:a7:a3:d8:39:aa:
5f:1e:d2:71:61:67:61:da:35:5c:0c:08:92:5e:7f:ee:59:3f:
19:95:f0:93:8e:54:40:37:14:87:5f:90:9d:77:54:4b:63:93:
54:ca:52:27:20:4d:ad:78:7f:6f:74:98:1c:79:ec:11:88:0b:
e0:5b:83:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 22:57:27 2025 by rpki-client