Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json)
Hash identifier: j9qP2Ee9Sp3wpaRMEMzuFAO6S1/pQ6cBHzpnVtBQwIo=
Subject key identifier: 0D:46:05:4A:7A:CD:A8:3B:14:B2:CC:DF:12:A0:4A:5A:06:4C:0B:E2
Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Certificate serial: 019A1F1A65F0DB96C25DA2940E2A12F858B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
Manifest number: 1685
Signing time: Sun 26 Oct 2025 06:00:14 +0000
Manifest this update: Sun 26 Oct 2025 06:00:14 +0000
Manifest next update: Mon 27 Oct 2025 06:00:14 +0000
Files and hashes: 1: AJvWKjlfflZ9cQofDD0ppbseZLQ.roa (hash: VGiicvrQITfBrX3SAtjyhR6B6SA41PSS6lItKnKTNYo=)
2: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: qF5MX3WJkZECJYBy/7JoVQ9j8kKhPCTTyoSBKy5AzmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 05:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:1a:65:f0:db:96:c2:5d:a2:94:0e:2a:12:f8:58:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Validity
Not Before: Oct 26 06:00:14 2025 GMT
Not After : Oct 27 06:00:14 2025 GMT
Subject: CN=0d46054a7acda83b14b2ccdf12a04a5a064c0be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:23:9a:8c:bd:1a:1b:d5:e5:22:28:ce:3d:09:
42:78:d2:a8:61:60:48:59:48:dc:8f:81:eb:cc:d3:
28:93:f2:81:5f:b4:e4:dc:a6:87:3d:cc:78:7f:4d:
1c:18:e8:02:12:58:61:e6:4a:96:2e:eb:6a:57:99:
e4:05:57:e5:87:e8:91:13:f6:8d:12:b9:c6:f2:f4:
1e:b0:d2:00:2d:26:8a:89:9a:24:4a:06:73:23:3d:
e2:42:b9:a1:16:ea:d2:89:14:5b:f6:49:41:79:91:
b7:98:bd:b4:0c:e9:be:96:6f:55:c8:4a:7c:9e:07:
96:86:fa:03:18:40:9e:fb:a4:48:62:df:fd:91:78:
d4:56:43:87:72:2b:20:e4:dd:e7:02:3a:5f:93:bf:
de:95:5e:60:24:d9:60:bd:17:0d:40:dd:5d:b9:39:
78:76:19:1d:2d:4f:81:a1:5d:a9:6e:a6:a4:ff:68:
91:b6:42:cd:32:78:b0:60:d4:cc:f2:8a:ba:0f:5b:
65:03:8a:15:85:dd:cd:2b:4b:76:27:c2:f8:5c:d0:
dd:dd:6f:dd:71:32:d7:92:88:55:13:57:a2:24:da:
5b:59:f0:da:ac:8e:77:29:aa:f7:8c:ff:f0:f6:7c:
ea:40:23:87:34:dd:56:59:d4:a2:38:06:d6:e2:72:
1b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:46:05:4A:7A:CD:A8:3B:14:B2:CC:DF:12:A0:4A:5A:06:4C:0B:E2
X509v3 Authority Key Identifier:
keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:c6:ca:e0:a1:c7:ab:d4:89:96:ee:f2:73:10:5e:3b:d6:b4:
cb:60:58:b1:14:3c:62:1f:e3:84:49:fe:c8:90:08:a1:d8:3e:
82:87:d0:64:6b:94:b5:fd:57:3c:66:a1:00:a8:14:26:0d:36:
4b:6b:34:70:d7:26:41:e8:c9:c9:c5:52:7f:3f:bf:68:41:b0:
9a:50:bf:6c:60:15:13:40:36:3c:cf:4a:81:31:2a:7e:fc:86:
18:38:58:a8:dd:f2:a7:ab:59:cd:da:27:6c:ef:ca:fc:05:20:
aa:d8:f6:89:b2:d9:de:dc:d0:63:07:bf:40:01:d4:ff:1f:4a:
27:21:4c:bb:7b:2f:d2:dc:70:b1:c7:cb:f9:c0:d1:57:df:46:
71:61:36:b8:a5:ee:be:0b:f5:8e:35:03:7e:41:b9:f6:c2:c2:
b2:fc:a5:51:c6:b2:49:c3:40:5f:26:9b:dc:cc:c3:ed:fd:2a:
47:aa:58:cb:8f:80:4c:13:b5:9b:84:ee:9d:ea:86:ce:67:9a:
c9:54:67:4b:f5:42:b7:0d:38:1c:9b:f9:79:dc:a0:91:c7:af:
06:3b:9f:af:10:f8:1d:62:9a:93:4d:de:d2:d2:4f:a5:4c:9e:
10:25:e3:2f:7d:cd:5e:0e:fe:c7:7b:b9:e7:06:af:93:de:45:
65:2b:a8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 15:24:27 2025 by rpki-client