Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
File: hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft (raw, json)
Hash identifier: PLgeH+E+o5R7RqfBMsc3Hp7QzLvMUofQgm/QzVu/YFo=
Subject key identifier: BB:F5:94:77:99:0C:8A:62:E3:72:5B:31:A3:5C:A4:CF:FA:3F:26:54
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 01974630226FBADAEAF8B59BC4FF0EB53608
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 17:00:49 +0000
Manifest this update: Fri 06 Jun 2025 17:00:49 +0000
Manifest next update: Sat 07 Jun 2025 17:00:49 +0000
Files and hashes: 1: 1WUnRPC7TQDCpNLBGqvpavEUfIY.roa (hash: 9QvvOYrRTeWxJPVmSD6bFU7GJTKQU/1G/slvGit4Jc8=)
2: RNRuwUDah5HvDqZL8fLpyHsOiSQ.roa (hash: IBeeTINphPH0VAeRRmwtztVgI3ETdvS9ro285LvOBzI=)
3: hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl (hash: 84udasEr9+AdTo/UVwSbm1SfcTYc+ZGFPTdjIfNTDho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:22:6f:ba:da:ea:f8:b5:9b:c4:ff:0e:b5:36:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Jun 6 17:00:49 2025 GMT
Not After : Jun 7 17:00:49 2025 GMT
Subject: CN=bbf59477990c8a62e3725b31a35ca4cffa3f2654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:14:60:26:2c:d7:07:a0:cc:83:60:7b:28:
57:20:04:3a:43:23:fd:90:d0:03:0a:31:a6:2f:05:
80:02:42:68:56:51:92:0f:fc:b4:71:0f:e9:2b:e4:
73:15:35:8e:a5:7b:4f:f0:a7:e5:a6:a7:0c:9b:c8:
5d:a6:93:44:7f:65:1e:ba:6e:9d:0a:9e:e8:98:f6:
06:51:2b:fd:cd:08:8c:cc:31:f9:de:bb:f1:07:12:
94:d5:97:ba:45:8b:6b:e4:f4:ad:d6:3c:53:d7:f3:
69:23:9c:39:b6:ba:d3:e4:01:70:ad:6f:c0:be:4f:
f1:01:89:5d:22:e7:04:c1:4b:dc:13:85:f6:3c:3a:
7f:f1:1f:0e:1b:24:df:9b:ff:34:55:3c:3e:eb:5e:
cd:b7:26:0a:ef:d3:94:1c:ea:ab:14:2d:af:0e:0d:
23:b6:57:81:90:ac:13:c9:f5:47:98:f5:92:01:a6:
ab:62:44:55:a8:b6:07:37:75:6d:c5:ab:b8:53:da:
0e:f8:f5:89:9c:e4:36:01:86:1a:2b:42:fd:eb:fb:
ee:98:7e:28:53:c2:58:2c:67:6f:d1:11:2b:86:43:
bf:21:c5:bd:39:13:ac:5d:f3:d1:59:47:d3:49:f4:
07:a2:61:a8:7a:79:1d:6a:8f:eb:aa:bf:68:6d:72:
3b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F5:94:77:99:0C:8A:62:E3:72:5B:31:A3:5C:A4:CF:FA:3F:26:54
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:be:14:05:61:4d:a1:2e:87:28:32:2e:1a:47:3b:f3:5f:ed:
85:f0:d9:dc:1b:97:73:9c:eb:4a:7f:07:23:8f:94:56:fc:b2:
52:cd:13:46:49:68:3c:8e:52:4f:fc:ee:8e:b3:05:69:1f:13:
4e:6e:0d:71:52:7d:4c:17:15:17:61:10:e4:8b:b8:e1:aa:50:
7c:0f:5e:fa:02:9a:e3:07:b8:38:9e:fb:79:68:fb:c5:af:e9:
80:73:ae:82:33:1e:ea:c2:67:8d:3b:83:3b:54:f3:05:21:c9:
eb:24:a5:74:84:ed:f7:79:d4:16:ef:4b:0e:4a:5f:61:6b:c3:
e8:71:a1:65:3c:86:63:3b:bc:ab:fe:9c:8f:a3:52:07:1e:c5:
9d:e9:22:4c:08:fe:6d:ef:77:81:c1:72:bc:1b:92:64:21:62:
f0:d9:99:90:f7:96:c4:51:d9:d9:97:86:59:83:9e:cf:29:b8:
1f:17:a2:e5:4a:43:ce:fc:94:55:3e:30:04:3c:2d:70:bd:53:
f1:5b:46:e4:03:e7:b1:40:fd:d0:3a:46:bd:17:b7:7a:ad:35:
b8:5b:be:b5:49:eb:a7:76:6a:58:2b:cb:c5:be:0c:73:b1:d5:
0f:77:3a:24:61:49:43:aa:c6:3d:ed:69:33:60:9d:47:79:6e:
1b:d2:d0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:23 2025 by rpki-client