Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
File: HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft (raw, json)
Hash identifier: h7NWI2OQ5sI5lv+h7LMhOqNUKZHiYuoaURyoQT236g0=
Subject key identifier: 9C:0F:32:66:A6:27:42:D9:29:58:9F:75:7D:66:53:D0:E9:FF:4D:CA
Authority key identifier: 1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
Certificate issuer: /CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Certificate serial: 019A70A505DD6F0579E5D25C68A85999A94A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 02:00:54 +0000
Manifest this update: Tue 11 Nov 2025 02:00:54 +0000
Manifest next update: Wed 12 Nov 2025 02:00:54 +0000
Files and hashes: 1: HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl (hash: 5kLrf3jzgsSV9EP73bnJv2tqjGkgFN7Lw5GAOSpawhg=)
2: UhsTPDlkEVTfjN0gtgklGlfn_mQ.roa (hash: gvwxeqU03k4MQD3WdF59OWVu6wgm7kgHM+ORIWuetR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:05:dd:6f:05:79:e5:d2:5c:68:a8:59:99:a9:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Validity
Not Before: Nov 11 02:00:54 2025 GMT
Not After : Nov 12 02:00:54 2025 GMT
Subject: CN=9c0f3266a62742d929589f757d6653d0e9ff4dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ce:c8:25:7b:74:59:11:2a:04:51:f2:50:9d:
74:56:dd:33:d3:10:f1:d8:76:21:96:79:12:79:28:
fb:14:eb:f8:5e:a1:52:11:a6:0a:46:40:13:06:9d:
d0:2b:10:e9:d8:36:c6:c4:4b:8a:49:d6:ba:d4:a3:
b9:fd:c5:39:d2:4d:d1:3a:66:49:14:94:1b:b1:07:
fc:f8:6d:92:8c:cf:77:35:14:cd:80:50:13:2b:2f:
1d:54:f1:ae:06:fb:97:b3:15:85:58:dc:bf:fb:84:
c1:d3:30:4f:ed:c9:bb:ee:b3:f4:35:f1:bb:a8:95:
28:4b:02:b3:74:25:c7:6b:41:f5:5a:a1:43:70:27:
bd:e6:88:85:57:01:70:af:37:51:2c:05:25:20:00:
f2:e0:68:f8:27:2a:af:5b:9e:41:83:dc:35:a8:63:
9c:d9:bd:8b:a6:f9:2d:a1:eb:63:4a:8f:4c:fd:40:
fa:f7:b3:58:03:17:e2:ae:9a:3c:2f:71:eb:86:01:
14:94:79:ae:8b:e4:6f:9b:df:db:07:6e:9a:f4:1b:
3b:67:fa:7b:4d:f8:2f:7d:13:29:20:84:da:65:2d:
8a:c5:02:77:b9:f8:e1:33:ae:a7:ac:25:2d:5d:ee:
9a:bd:bc:bd:df:8c:45:a0:0c:d9:0f:8d:98:da:54:
49:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0F:32:66:A6:27:42:D9:29:58:9F:75:7D:66:53:D0:E9:FF:4D:CA
X509v3 Authority Key Identifier:
keyid:1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:92:b3:28:e1:29:50:30:2f:eb:37:09:ae:e0:2c:71:98:60:
b2:42:f9:73:0e:4c:f8:28:db:56:41:ed:19:b9:06:39:43:a4:
2a:b6:ba:00:39:6d:d0:53:cb:2c:b6:3a:b7:7a:7f:9b:ff:56:
05:99:ad:0d:a7:5a:e8:50:ef:50:da:3d:d9:1b:d2:bc:a3:42:
d8:63:6e:bb:f8:6a:44:44:1b:1b:3e:c5:21:f0:0e:11:72:e2:
b8:c4:88:88:7a:d1:e7:4a:08:9c:1d:8a:f4:c2:d7:4c:9b:64:
7e:00:6f:e4:2b:65:07:f6:a7:15:6a:68:ab:49:41:44:4f:37:
45:c0:c0:3e:ef:9d:8a:7c:9e:00:d9:03:cd:84:9e:dd:c2:1d:
0f:ed:12:00:23:60:c2:ce:65:19:45:0a:93:38:d2:f4:64:61:
1b:98:d7:5a:1a:eb:11:1d:3e:7d:03:a4:8e:5b:e5:e9:58:bb:
ef:59:d1:f3:0c:84:83:90:6b:2b:a4:2b:c1:fb:ae:ed:27:72:
eb:3f:7a:96:96:c8:1c:6c:80:b5:4d:f9:9b:84:80:ac:fa:ce:
2f:0d:9c:c0:c2:70:e0:e0:ca:34:6c:fe:b6:26:50:9e:3c:c2:
03:15:8a:fb:b7:d2:8d:d3:42:e6:df:de:01:ed:e5:7a:11:77:
c6:5a:5d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:20 2025 by rpki-client