Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 5w+F8Y2vTfkS6Oe+jJER8g++e5KAm28TmKCy4AI+yqI=
Subject key identifier: A5:D7:9E:19:83:B0:A6:92:83:50:0E:04:D1:84:A6:C0:B4:1D:71:59
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 0199C3E954B17D3D499CA5BC7F7288FE53A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1590
Signing time: Wed 08 Oct 2025 13:01:12 +0000
Manifest this update: Wed 08 Oct 2025 13:01:12 +0000
Manifest next update: Thu 09 Oct 2025 13:01:12 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: 6f0tluCwBALUNdDOc9tyguvBu9Fxwoosl8mqHusF0dY=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c3:e9:54:b1:7d:3d:49:9c:a5:bc:7f:72:88:fe:53:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Oct 8 13:01:12 2025 GMT
Not After : Oct 9 13:01:12 2025 GMT
Subject: CN=a5d79e1983b0a69283500e04d184a6c0b41d7159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:35:3f:be:fd:d5:b2:bf:55:c0:aa:26:ca:3c:
97:19:79:40:8f:8f:51:4d:83:d4:b2:9f:81:e3:58:
d0:1d:d3:a6:d7:c3:35:79:c4:9e:96:c2:9b:c1:62:
74:2f:b0:b6:63:0d:d1:3b:a5:37:ea:89:c8:08:48:
63:c3:66:54:40:c4:a9:7f:cf:df:59:2c:19:00:ca:
ca:30:74:ec:f1:3b:ed:d2:cb:e5:a1:6e:df:84:a2:
2f:d2:e7:b5:5b:bd:7f:30:f2:c0:19:e1:c9:7f:ac:
22:18:43:77:13:d4:62:1b:ee:44:77:7b:62:7f:7c:
06:98:cc:a7:04:d4:11:47:28:68:d2:b2:07:e5:f1:
c2:a8:75:4f:c0:3c:7a:6e:ed:da:7e:e1:0a:c8:23:
4a:3d:27:80:e9:19:24:35:3b:ee:83:1d:2d:27:24:
ef:7a:ff:bb:f9:91:b6:71:9c:c7:bd:35:8e:f7:16:
2b:9a:64:0c:de:47:29:52:8e:bf:8f:06:0b:17:f8:
89:09:eb:d0:bf:a7:e7:cc:c5:44:74:3a:4f:7d:1d:
a6:b2:90:be:32:14:22:e3:0c:86:18:b2:9d:3f:55:
2e:2c:15:47:4f:25:37:27:60:3f:67:86:96:e3:2d:
0c:c5:cc:f4:38:df:24:4f:87:b6:d9:18:52:6d:d6:
c1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D7:9E:19:83:B0:A6:92:83:50:0E:04:D1:84:A6:C0:B4:1D:71:59
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:01:1d:a0:c1:a2:2a:e1:c5:6e:b8:70:f9:4f:f6:bf:64:cc:
03:9e:50:e5:51:d2:99:37:cf:56:03:cd:37:d0:51:d4:86:71:
d2:ca:42:48:db:69:2f:30:ad:40:5d:cf:f8:a8:bb:49:cc:a0:
c9:42:8d:a3:84:b0:64:e3:54:a2:46:d2:f5:0c:de:ce:99:b6:
dc:07:e3:c2:fd:93:25:b5:45:5c:4b:5f:c6:ed:7d:3a:2b:6b:
f0:d2:b6:17:c3:85:69:19:d6:9c:bc:2c:99:d7:0b:55:d8:fe:
5f:b9:a7:de:e8:f1:3c:18:37:0b:c7:f5:a3:5a:0d:cb:87:02:
56:42:e9:31:c0:be:d2:38:c7:27:a5:fc:42:14:a7:f2:ac:1e:
78:fb:4b:9f:60:77:c1:8a:3d:8e:20:1c:69:16:e4:40:0f:ef:
26:02:71:8c:ac:53:4c:ce:ac:c3:e8:fc:55:d8:77:c4:08:42:
65:a0:ec:43:6e:0d:78:5c:a1:61:c6:67:ed:87:b2:41:c1:fd:
fc:ed:77:04:03:1d:5b:c7:12:6e:67:0f:41:49:f3:3e:96:10:
ff:e5:a3:da:e0:30:b2:7f:ee:cd:95:00:6b:11:93:fb:4d:9c:
72:12:1b:8b:bb:c0:72:15:a1:90:56:c9:ce:ac:51:0a:66:05:
46:11:67:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 15:48:26 2025 by rpki-client