Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: JWqoIQzjlY5o5nT/JAWfpbm8zwoFy28gdXivUvON4DQ=
Subject key identifier: 2B:71:42:72:02:11:8D:3A:0D:D4:AB:CA:4D:F8:20:0A:6B:02:CE:EB
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 019921B09F75D03E63B73647376F1B2EFEDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 0462
Signing time: Sun 07 Sep 2025 01:00:47 +0000
Manifest this update: Sun 07 Sep 2025 01:00:47 +0000
Manifest next update: Mon 08 Sep 2025 01:00:47 +0000
Files and hashes: 1: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: Fe83lL7ILzQ1Pp94XpGWYfJsR6LXFw6Ks3A6/RJY+iA=)
2: p8T_kCS-MYJ8fc4C7hUc5E1T1qg.roa (hash: CHS1S8lMOJ2pkxab6trVxWbo2qQA5JXICjYrqXb1IdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:9f:75:d0:3e:63:b7:36:47:37:6f:1b:2e:fe:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: Sep 7 01:00:47 2025 GMT
Not After : Sep 8 01:00:47 2025 GMT
Subject: CN=2b71427202118d3a0dd4abca4df8200a6b02ceeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:df:f8:65:da:39:cc:af:01:55:93:8b:77:97:
20:3e:ad:ae:10:e8:2b:a2:be:c9:88:69:3d:24:ce:
4d:89:c7:88:3a:89:3b:9a:da:af:78:c9:f5:a8:64:
f7:fa:86:da:74:aa:4e:6f:51:87:88:fd:fd:73:a3:
c2:a4:84:c9:cb:eb:f1:52:ed:a8:fc:75:6a:1e:a4:
38:1d:58:fb:1b:5f:f3:e2:4e:3d:97:0a:78:b8:12:
bf:79:20:bb:0d:cd:b5:5f:ee:e5:b7:9a:2f:44:8e:
44:f8:c4:0d:e9:13:84:23:e6:df:8a:be:9b:50:c1:
58:e0:c6:d8:dd:f1:40:f8:f3:ea:b0:25:0d:2f:75:
46:2e:0c:3a:75:4b:34:09:8c:78:c3:3a:08:33:75:
65:55:cc:c8:60:1e:14:4e:a8:2a:28:39:b0:b4:aa:
c4:df:cf:9f:df:11:87:87:7f:21:93:20:70:06:3f:
28:6d:3c:2f:1f:18:fd:07:ba:c7:39:1f:80:71:d1:
4e:26:d1:99:d7:3b:47:d6:9b:eb:0c:ac:da:3e:c9:
0b:8c:9d:83:51:87:11:04:28:6b:d3:9a:f1:2a:04:
c8:83:42:13:bd:eb:b4:14:ee:36:df:48:b3:85:48:
0a:3b:35:e3:a4:4c:18:26:dd:d0:23:06:39:36:b2:
5e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:71:42:72:02:11:8D:3A:0D:D4:AB:CA:4D:F8:20:0A:6B:02:CE:EB
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:6e:eb:db:98:79:75:06:ae:12:84:2b:0c:c7:82:a5:52:b8:
1a:9a:0a:07:d2:17:8b:bf:7f:05:0a:25:aa:63:2b:75:51:16:
38:72:04:c4:ca:51:0d:55:0a:a2:c4:55:fc:d5:7e:af:f3:ba:
36:a4:19:77:1b:e2:06:0c:d4:83:87:77:5a:16:45:2d:6e:17:
1b:e0:a2:9a:5e:59:66:1b:33:6e:6a:7a:4d:4e:0c:d6:6e:21:
90:d7:f3:09:bc:82:0b:94:1d:a4:2b:6e:80:59:86:75:fc:d1:
d9:2f:ce:1a:b8:0e:3e:a7:b0:bb:88:ce:57:e5:30:c6:1c:40:
b9:a6:cc:ec:a7:c7:9b:e8:e7:b0:af:09:ad:14:d6:bc:43:e4:
66:d1:e1:a8:bc:8a:58:69:d9:90:64:86:7a:6e:0a:ec:d2:63:
d6:1a:7b:c6:dc:f0:fe:55:ae:9f:82:28:f6:c7:f1:3f:84:58:
ce:7a:27:7f:b9:40:32:5a:b7:53:6b:4f:fb:8f:18:d2:b6:e5:
78:ca:72:7d:d6:77:19:65:21:ff:b7:b8:ed:e8:15:6b:ec:5d:
fe:8e:c1:2d:36:db:63:dd:e5:dc:69:77:e1:c1:92:a1:2c:e1:
bc:9d:17:8e:5e:ef:d3:40:65:67:87:d1:b7:a0:06:99:1c:b2:
9c:f7:fb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:17 2025 by rpki-client