Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
File: HqvXZaBQUv7FmmonPV70v8ekA1o.mft (raw, json)
Hash identifier: T5+0870wk7vXfKqpAArMZXz6tWnUsFSe3B8Tw/OQRIo=
Subject key identifier: 90:EB:A5:D1:65:33:52:E9:15:94:B8:F1:8F:71:70:D6:94:4C:02:85
Authority key identifier: 1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
Certificate issuer: /CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Certificate serial: 0199221E793DD924FEEB7010C607F5FE6C44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 03:00:46 +0000
Manifest this update: Sun 07 Sep 2025 03:00:46 +0000
Manifest next update: Mon 08 Sep 2025 03:00:46 +0000
Files and hashes: 1: HqvXZaBQUv7FmmonPV70v8ekA1o.crl (hash: nlmBOEe70nRmqcRGM+s2/uTh0eVivpa5sN86DCJSNBU=)
2: MFHqmqIi0lc_Re9PoYpL1Pw-ATg.roa (hash: iQ8gQVoAElI9FMya7NrxkBP0Xq9GVsJ7ePhe9Fu3PJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:79:3d:d9:24:fe:eb:70:10:c6:07:f5:fe:6c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Validity
Not Before: Sep 7 03:00:46 2025 GMT
Not After : Sep 8 03:00:46 2025 GMT
Subject: CN=90eba5d1653352e91594b8f18f7170d6944c0285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:10:aa:53:68:6e:41:6f:88:ae:7e:61:a1:
96:f5:3c:2c:75:ff:f6:7d:55:4d:f4:9f:83:ac:0f:
1a:9d:96:de:62:dc:1f:fa:71:27:4d:54:13:b1:fa:
74:38:20:80:06:15:55:80:dd:81:ee:3a:14:b6:58:
5d:79:3a:a3:80:f0:14:62:a6:7f:45:65:8c:21:5c:
2e:6b:9c:df:55:94:93:6b:ef:e7:82:49:c6:52:4e:
56:20:45:d6:2b:15:cb:94:41:14:8f:98:a5:f5:63:
3f:1d:90:04:fd:d5:bc:b4:19:7c:cc:f0:50:5c:3e:
da:bd:73:a6:16:bf:5d:5d:90:c7:77:ff:42:69:c6:
ce:ef:16:6d:66:cc:9a:b3:01:24:01:7e:aa:a0:f9:
7d:4c:a9:72:e4:72:95:39:ca:c1:7f:ba:04:4f:ba:
34:b4:7a:2f:c1:64:92:d9:85:d7:9d:1d:ae:27:41:
13:c2:4a:a4:cc:37:5f:c0:c6:92:23:d8:dc:16:6e:
72:7e:cd:82:2f:dc:b6:28:ed:82:56:95:92:64:96:
af:7e:aa:2b:76:15:67:7e:6e:11:bc:3b:2f:03:39:
01:67:7a:34:3d:8d:88:65:95:22:9f:bd:68:56:02:
70:4c:6f:9c:ed:30:74:35:15:2c:25:0a:d8:5c:88:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:EB:A5:D1:65:33:52:E9:15:94:B8:F1:8F:71:70:D6:94:4C:02:85
X509v3 Authority Key Identifier:
keyid:1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:f9:a2:41:86:29:4b:72:11:e0:96:9d:08:7e:6d:05:29:d2:
2e:db:67:e0:d3:6b:97:9b:17:3b:7b:3d:73:3f:2c:95:9a:23:
8c:33:37:d0:fd:5f:4d:65:01:db:11:81:8f:13:6b:27:47:40:
ee:8b:23:2c:03:ec:00:bd:ee:e3:d5:ce:c2:07:28:e6:2f:b2:
67:99:bc:c0:9c:dc:3a:07:ac:ea:79:06:92:5c:5b:84:a8:62:
f8:76:fc:de:89:a5:62:2b:93:66:a9:16:eb:ef:1e:90:80:b5:
a1:ca:22:86:d8:05:16:57:d6:de:35:1b:28:e8:88:f5:f1:ed:
6f:6c:fc:d3:41:a5:3b:1b:92:1c:17:33:ba:c0:e8:7e:7f:ea:
13:f4:69:fc:9c:4e:25:55:4a:86:94:69:d4:6b:25:f9:9c:51:
4b:ac:f7:0c:95:94:16:a6:67:9c:d2:3f:b7:ad:48:cc:1d:f7:
b3:1b:e6:63:a6:a5:1d:f3:ba:b4:55:3f:cb:78:5d:48:ea:24:
02:6f:f8:d1:26:2b:e9:df:e3:6e:01:49:ac:fe:ba:d4:fd:09:
14:28:fe:cd:4a:60:18:6f:ae:eb:6e:a6:3d:96:7c:2e:c4:6b:
d5:61:07:28:16:1c:94:64:18:36:33:f3:15:9a:ed:b6:e6:69:
96:38:f8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:08 2025 by rpki-client