Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: zzZaFxAYBWfDNdHLocSfj5fMhF9vCJ1ObyJJsXVkrhA=
Subject key identifier: E7:2E:D4:66:19:6E:37:A2:C4:F2:8E:F7:58:AD:D2:30:37:EC:CB:70
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 019A71B7BCA1723D1230A60580F619EF51DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 0510
Signing time: Tue 11 Nov 2025 07:00:58 +0000
Manifest this update: Tue 11 Nov 2025 07:00:58 +0000
Manifest next update: Wed 12 Nov 2025 07:00:58 +0000
Files and hashes: 1: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: UKOoyropHmMWJBmH09/mF0huKiCH0afqxpeZCc6BqRI=)
2: p8T_kCS-MYJ8fc4C7hUc5E1T1qg.roa (hash: CHS1S8lMOJ2pkxab6trVxWbo2qQA5JXICjYrqXb1IdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:bc:a1:72:3d:12:30:a6:05:80:f6:19:ef:51:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: Nov 11 07:00:58 2025 GMT
Not After : Nov 12 07:00:58 2025 GMT
Subject: CN=e72ed466196e37a2c4f28ef758add23037eccb70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:ce:3f:6c:69:29:e1:ab:7d:84:ae:b6:30:
11:5a:6e:1b:e8:3a:3d:12:45:bc:73:80:ef:bf:b5:
e2:bd:a8:ba:3a:dd:a9:51:e7:ce:6d:0d:50:c3:0c:
fe:59:2e:5e:be:68:ac:14:59:1b:ff:36:3d:e0:2a:
bb:f1:da:83:3b:6d:ac:dc:c9:26:29:71:02:e2:29:
eb:ac:90:07:5e:26:dd:1b:d5:77:65:fb:e1:f0:71:
26:66:be:36:1c:9d:cc:60:f5:f9:41:a4:c7:e2:0a:
96:7c:b8:c7:c6:ff:a2:1d:d1:c5:2b:a5:80:a7:b8:
7e:31:56:6a:be:d6:93:cb:45:e5:d0:66:e1:dc:0c:
4a:f1:47:27:5d:01:f4:a9:a1:ee:0d:99:98:66:24:
59:d7:0c:c1:13:2c:6f:82:a8:d0:1f:12:7d:7c:b6:
a7:40:9e:31:df:14:81:6a:87:26:04:04:b5:a8:d8:
46:63:45:93:83:a4:08:d9:d8:e1:9e:06:7a:cd:5d:
0c:98:ae:ee:d2:58:66:66:07:41:a8:c0:c0:3c:5b:
e1:c9:08:67:a6:87:10:1c:f0:98:61:92:bf:bc:80:
96:26:33:6b:27:17:64:68:14:ac:84:31:da:78:5c:
9f:9b:e3:68:8f:ea:61:d9:ee:f1:64:d8:9c:fc:a0:
70:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2E:D4:66:19:6E:37:A2:C4:F2:8E:F7:58:AD:D2:30:37:EC:CB:70
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b8:2c:08:20:2f:9b:1d:44:63:c4:f8:9f:1c:67:d4:d6:ec:
f2:9c:fa:17:0e:bb:fe:b0:9f:d5:46:89:46:ba:d3:10:4f:53:
e2:fd:24:a8:4a:5f:ae:ea:65:5e:3f:e1:d5:58:11:94:16:da:
d2:0a:37:dc:cb:8b:25:be:2e:18:55:51:41:94:38:3e:e7:ce:
3a:52:85:bd:f5:cf:9b:c1:29:36:7a:11:0d:41:0b:71:c0:7f:
88:4d:5b:11:11:02:8d:73:6a:e2:57:36:4a:ad:dc:95:59:3b:
06:33:e1:76:0e:de:1e:a7:50:a9:9c:2f:04:66:1d:73:51:1e:
32:9f:51:f3:ec:d4:61:06:f5:24:2f:36:6e:0f:ca:d3:1f:e0:
d9:64:ee:52:17:10:67:83:1c:ca:1a:12:00:39:75:ad:8e:9a:
cb:11:f6:b7:c4:c1:1b:da:d1:9a:59:f9:29:60:f7:25:c1:1f:
bd:1b:6a:82:24:cf:c7:02:6b:e2:22:d3:ab:cd:d6:23:c9:11:
31:8b:10:bc:b9:57:24:5b:6a:a5:9f:65:cc:94:36:0a:99:2d:
c4:17:2e:be:17:b6:f2:ce:3f:56:94:29:e1:e7:45:05:a2:00:
f7:f3:de:4d:12:06:08:7d:9d:69:e8:ac:15:bf:e5:e6:01:5f:
15:41:98:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:11:06 2025 by rpki-client