Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: ByOMxJV3zgAMPf9A+QMqdYz7LLNOaleyx0XYnGH4ivQ=
Subject key identifier: 1A:EE:35:69:02:1F:99:B8:34:A2:5C:B3:D0:96:FB:38:A9:3A:FB:07
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 01992330FD0664B38BDE7733AC6226BAEA3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 1493
Signing time: Sun 07 Sep 2025 08:00:37 +0000
Manifest this update: Sun 07 Sep 2025 08:00:37 +0000
Manifest next update: Mon 08 Sep 2025 08:00:37 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: c52/IMzPYFVs2gYHknBOEaq6umiN8VROjYfAC1H/tRY=)
2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:fd:06:64:b3:8b:de:77:33:ac:62:26:ba:ea:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Sep 7 08:00:37 2025 GMT
Not After : Sep 8 08:00:37 2025 GMT
Subject: CN=1aee3569021f99b834a25cb3d096fb38a93afb07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d9:76:a8:e8:58:40:c6:0a:b4:09:e2:38:23:
11:d7:4c:b5:db:f0:e4:75:ce:fe:e5:09:7c:56:94:
28:d3:15:88:62:55:23:e5:dc:64:df:6b:b3:a9:d9:
d5:be:39:d0:32:9b:f3:99:3b:9e:26:45:16:2d:f5:
8b:d5:b6:8c:8e:5c:83:d7:20:14:f8:0f:a1:21:6b:
b3:c0:9e:ea:ec:ad:29:de:41:81:f7:56:c8:65:32:
62:70:4d:27:92:8f:99:fb:f7:3a:e8:6d:71:5e:38:
0f:86:30:c2:b3:fe:d7:b2:cd:24:ce:b5:ca:51:78:
40:4d:3f:a8:ad:c3:dc:44:5d:6b:7b:9a:02:2f:9d:
1c:59:b7:51:d0:02:51:19:b0:6b:a6:18:f7:35:96:
0c:bf:ad:34:2c:2b:0a:68:ef:33:d6:48:ef:3d:ac:
ce:39:56:c1:8e:ab:15:68:91:8c:31:af:16:3d:0b:
62:51:34:04:71:21:e8:61:cb:fa:8d:30:5b:b7:f6:
c5:a5:7b:90:d6:26:b5:52:6e:8e:75:62:57:ad:c4:
a7:25:5a:0d:22:bc:1b:9d:7c:e2:0f:6c:3b:c4:a9:
da:69:0e:3e:19:24:ab:19:36:6a:bc:a3:0d:19:3e:
5d:8b:be:07:f6:77:6a:b1:c5:53:51:0b:6b:3d:87:
95:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EE:35:69:02:1F:99:B8:34:A2:5C:B3:D0:96:FB:38:A9:3A:FB:07
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:15:76:d7:85:6a:0e:24:71:17:ae:79:80:72:5c:98:bf:7f:
93:69:7f:00:0b:20:db:0c:4a:e2:14:03:25:70:bf:e5:c2:23:
3a:92:c6:3c:69:43:e5:c9:a0:ec:09:6d:00:d0:3c:fa:5b:02:
f9:b5:cc:56:cf:7c:9e:6e:43:29:d7:54:e3:bc:ee:f8:14:db:
44:bb:ed:d0:7b:8c:21:69:c6:a0:36:b4:f5:53:77:8d:30:b0:
fd:fd:35:25:b2:5b:da:10:1d:ca:19:e3:26:17:9c:b2:9d:03:
46:fe:f7:19:c4:0c:de:5e:bc:ce:66:14:5a:be:e8:6b:d5:ec:
73:8f:24:66:66:47:71:11:7f:6e:6f:9f:76:2a:0a:3b:eb:7f:
f9:29:5a:08:fa:1a:e5:fd:0a:9d:7a:a8:6a:4d:3c:18:34:06:
01:fd:99:fb:08:b1:df:dd:f7:87:e1:3c:ef:de:e0:8e:2c:e2:
8d:78:e3:a6:80:a2:2f:ac:31:ec:f5:8f:0e:6d:59:bb:cc:10:
be:ac:0f:d4:2e:7f:a8:2f:5f:60:e0:a4:88:6d:d6:ae:c5:2a:
2d:50:99:c8:d9:13:2c:94:69:81:48:5f:40:ae:06:dc:47:fc:
da:42:7f:ed:da:b8:d4:66:f4:64:13:ea:f7:9a:2e:b0:d0:ce:
a9:12:9e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:07 2025 by rpki-client