Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: dywA5lVlroXkDB6MIV6trDK7YhT6i7Uq9jA2LPvFUaQ=
Subject key identifier: F6:7F:64:83:17:DD:CD:F4:33:A4:91:F8:9A:30:E0:9C:05:7A:81:23
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 01974C69A1FA2A428B17155DB30171AA609A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1449
Signing time: Sat 07 Jun 2025 22:01:20 +0000
Manifest this update: Sat 07 Jun 2025 22:01:20 +0000
Manifest next update: Sun 08 Jun 2025 22:01:20 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: y7beMaEc6g/AWwE4NO6mNK2rMue9no47h9IsG4fH5cY=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:a1:fa:2a:42:8b:17:15:5d:b3:01:71:aa:60:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Jun 7 22:01:20 2025 GMT
Not After : Jun 8 22:01:20 2025 GMT
Subject: CN=f67f648317ddcdf433a491f89a30e09c057a8123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:71:b8:0b:d2:7b:d7:38:f6:bc:32:60:ab:19:
43:82:63:a6:06:3c:5b:67:f4:4e:6f:c0:e4:01:83:
19:64:5e:41:8d:ea:32:40:ee:8b:e8:ed:2f:57:38:
c4:e1:28:2a:4c:5a:f1:34:20:59:97:89:7d:b2:07:
24:30:8b:d1:39:6d:68:ba:9c:64:2e:91:b4:66:69:
33:32:d9:52:e7:6e:05:0f:1b:27:78:37:77:49:58:
78:ef:17:e5:25:dd:91:28:c2:fa:65:64:07:ad:0b:
6d:5a:6d:ea:ed:0b:b8:60:51:0b:c8:b2:5c:c3:c7:
15:6d:ca:43:52:8f:ec:ed:ed:b1:f1:df:a4:40:ed:
df:05:fc:4f:d5:4b:52:f8:de:c3:f0:41:f6:3c:3c:
84:72:ef:d1:00:7b:fb:50:68:b4:d3:f8:88:3d:ae:
04:4c:e3:a9:29:aa:bf:46:84:17:ae:42:a2:96:24:
d6:d9:d0:ce:db:55:27:da:ac:fa:a4:ef:88:ef:83:
2b:0a:7f:f6:90:6f:52:fa:8d:f3:81:67:91:99:4d:
f3:25:fa:7d:83:32:91:40:5f:82:ba:e8:59:80:f8:
02:14:03:bd:03:5e:1f:55:b5:b0:17:40:dc:5d:3d:
58:7a:70:c6:eb:d9:a8:64:a8:95:75:05:98:b0:fc:
cf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:7F:64:83:17:DD:CD:F4:33:A4:91:F8:9A:30:E0:9C:05:7A:81:23
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:49:3e:61:6f:03:90:f3:98:5b:7c:ca:e1:4b:67:8f:d6:26:
8b:79:db:f6:f7:8c:16:b0:c3:08:2e:b7:30:65:0b:bb:3c:13:
95:37:34:5b:6c:37:d7:65:76:e5:54:81:80:b4:2f:19:02:b2:
dd:cb:5b:97:62:d2:f1:08:b9:aa:7c:ef:5b:b2:80:1e:d9:2d:
87:c4:0a:10:48:00:3d:e1:70:f2:ea:d0:c0:56:21:b9:a6:b1:
48:f7:1c:0c:34:e6:ef:69:9c:15:32:18:ce:c6:83:3a:88:8a:
75:df:14:65:01:36:20:9f:01:42:bf:e3:ad:db:31:26:6b:98:
83:66:87:d0:30:c5:4f:1f:98:fd:aa:8e:af:fe:2a:61:12:e4:
c1:19:61:5c:a1:83:a5:74:b3:bd:0b:97:4f:ec:98:fc:82:ad:
18:44:fd:c2:f0:9f:d4:0f:6e:66:2d:2c:33:6d:d1:0f:25:4f:
5f:5d:2b:8a:eb:a4:6e:12:7f:09:06:84:93:8d:63:65:24:be:
3f:f4:8e:00:d4:b1:34:90:cd:a5:c3:0c:cd:02:32:1d:46:14:
c5:a5:cb:8e:fb:7a:9a:ed:13:02:66:f1:67:5c:15:af:9e:1c:
f1:33:ff:e2:e7:e6:8d:c0:67:e3:96:e4:8c:ce:82:58:a2:86:
16:ab:68:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:14:29 2025 by rpki-client