Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: V/xGs/VryiSSp70soewglz/1ieoKAQgpLK/JT8b6jQs=
Subject key identifier: A9:03:DF:D3:C8:28:FE:BE:C4:3E:DE:34:AE:81:3F:32:73:F0:75:CB
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 01974FD7B81A2A7247B3C0696DD6EEC53244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0AA1
Signing time: Sun 08 Jun 2025 14:00:26 +0000
Manifest this update: Sun 08 Jun 2025 14:00:26 +0000
Manifest next update: Mon 09 Jun 2025 14:00:26 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: iWLGR/oPgz9TaQkK/YEd2fMm4ndMVd2Np9zBI/eHYgo=)
2: cnFeqHBw9aaza2RenBeNwJKndxs.roa (hash: kjgI4uTxYMi7MCfdj3M5XWKqSFRmZG0IxbqIvN1jC7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:b8:1a:2a:72:47:b3:c0:69:6d:d6:ee:c5:32:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Jun 8 14:00:26 2025 GMT
Not After : Jun 9 14:00:26 2025 GMT
Subject: CN=a903dfd3c828febec43ede34ae813f3273f075cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8b:61:61:95:e3:09:b1:40:e9:35:a4:fd:14:
69:23:6b:6e:6f:8d:de:d9:57:79:95:94:94:40:56:
93:63:13:3b:9e:d2:7c:de:15:63:45:bf:61:94:68:
87:16:e0:de:05:57:af:ef:a5:d5:bd:d0:4e:54:0d:
60:76:73:54:b3:a6:c5:53:fd:33:43:9e:9c:22:55:
9e:91:3d:0a:26:2b:bd:8a:47:6d:0c:06:99:15:0e:
f5:10:4a:16:c1:16:98:c7:b8:b6:95:37:e3:82:17:
5c:e5:c9:5c:e2:1d:52:93:b7:cb:43:21:a4:e7:a7:
2c:cc:16:03:34:57:1a:df:a2:29:07:e6:34:9d:b9:
35:f9:0b:73:16:a6:51:37:32:3b:57:73:3c:34:cd:
43:7a:1b:18:38:88:b2:1d:cb:7e:d2:39:a3:12:14:
3a:64:ea:58:e0:45:91:2e:de:4f:c9:57:8b:7c:fd:
f3:1e:eb:f4:fe:d4:d7:a4:d6:12:57:0a:c2:98:52:
d5:4e:94:c6:20:b9:5c:c1:51:98:a7:b0:37:8b:16:
da:1f:99:88:54:40:02:d3:74:ac:a1:f7:a5:39:66:
03:b5:fd:e8:ea:4a:5d:15:23:6b:19:6b:40:a3:0a:
7a:59:12:6c:1f:d5:a4:64:db:17:b6:81:6d:27:7b:
a4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:03:DF:D3:C8:28:FE:BE:C4:3E:DE:34:AE:81:3F:32:73:F0:75:CB
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:a6:ba:34:8f:9a:3c:cb:61:45:b1:53:88:2a:30:57:fa:30:
ce:a9:6a:8b:10:d6:52:5f:51:e2:6b:ff:7f:78:01:25:1e:7a:
7e:de:be:e2:71:42:90:83:f3:4d:4a:dd:7d:53:40:41:ed:7e:
24:94:6f:80:ea:e7:42:9c:d1:09:93:fb:53:bc:1c:89:0f:4c:
4c:7c:13:e0:75:bf:36:05:c2:03:fa:c8:49:d0:ce:8b:60:f6:
03:31:e9:01:e9:3c:82:f2:9c:6b:01:a1:a8:97:77:8e:71:d3:
6c:cf:08:40:fe:30:78:a0:0d:cf:16:17:d9:f8:68:2c:3a:de:
06:1d:86:4b:13:ca:d7:5a:e1:dc:c2:0e:3f:06:0b:cc:8f:0d:
7a:55:2a:b2:27:38:c6:20:c8:79:c4:5e:83:af:6e:ff:ca:c0:
36:b8:c1:7e:8c:92:58:90:78:74:17:08:a1:8c:65:da:ab:ab:
5e:82:66:75:e7:b2:73:ac:5d:b7:d5:5c:84:8d:3b:eb:60:b3:
11:75:b1:6c:85:f1:51:c2:a8:40:33:1e:e3:43:54:ce:62:e7:
99:62:6f:2b:09:38:e2:fe:45:71:02:dc:75:81:22:9c:6a:1c:
28:71:64:bf:92:15:b4:f7:95:79:ba:d2:d4:3e:1f:4f:b5:30:
f0:f0:7a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:30:40 2025 by rpki-client