Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: uNxutoQ6jk7KQswf5RgaHkLxE2ZDFnWhT5BT6EL9NPI=
Subject key identifier: 01:B0:77:38:AF:E3:0A:78:95:59:4B:8A:9D:9E:6B:B8:8E:F2:85:FA
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 0198D515C62C2D11156C84847E0B027055D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1653
Signing time: Sat 23 Aug 2025 04:00:30 +0000
Manifest this update: Sat 23 Aug 2025 04:00:30 +0000
Manifest next update: Sun 24 Aug 2025 04:00:30 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: cv1sgb5J09TbB0t0EGk0akGKOTmv0vUPRhQpxSWBa5Q=)
2: MCvxtXhDv-4sOFSG3-70es9IbCc.roa (hash: zG6t5oGWGri6Roj7Zds9875D3+Pp2Gk1iyyfA9Fh0BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:c6:2c:2d:11:15:6c:84:84:7e:0b:02:70:55:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Aug 23 04:00:30 2025 GMT
Not After : Aug 24 04:00:30 2025 GMT
Subject: CN=01b07738afe30a7895594b8a9d9e6bb88ef285fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cd:3f:fe:9b:f1:55:4b:a3:00:91:df:7f:ba:
d6:44:3d:48:2f:cb:62:e5:34:aa:96:b6:9b:97:6b:
77:1c:4d:4e:c9:31:07:e1:47:35:b7:2e:e1:b3:a7:
77:90:af:04:04:ce:ab:cb:af:77:ca:75:12:76:e6:
98:02:a6:5f:f2:0a:f0:51:5f:94:62:1b:47:bd:a0:
c2:93:b2:92:ae:8f:3a:b1:70:f7:55:3a:da:de:10:
ae:5d:d4:04:04:12:98:19:27:4a:0a:ff:ba:3b:f9:
f2:b9:6c:a2:c2:c7:c8:e6:cb:83:81:5b:5e:c9:36:
42:c2:c6:0e:cb:9c:b0:62:db:b4:76:00:8f:a8:87:
4d:bc:71:b1:a1:70:f2:cd:3b:b1:93:7f:9b:82:fd:
6c:a6:4f:32:dd:cb:f4:23:bd:ef:65:a8:33:6c:38:
68:af:8a:c8:c0:1d:bc:84:14:f4:f0:16:e7:22:0b:
f1:dc:c4:9f:10:62:5f:bd:a7:d3:9f:ba:90:d3:bb:
76:f0:97:db:14:f1:04:1c:13:22:3f:c5:ce:13:91:
ba:8c:7a:b4:3e:e5:27:27:a5:ea:9a:9c:18:ed:c2:
72:4e:af:57:6d:e4:48:d1:db:10:0d:41:33:f2:e3:
39:4e:9d:08:ad:d9:41:9f:25:d9:49:66:bb:86:8a:
13:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B0:77:38:AF:E3:0A:78:95:59:4B:8A:9D:9E:6B:B8:8E:F2:85:FA
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:7b:23:98:46:d1:62:13:12:5b:ca:c1:41:ee:1c:df:7f:b4:
9f:3c:06:d8:62:35:a6:ee:fb:56:51:12:2c:41:d0:f1:23:c4:
62:37:e3:b3:43:ed:f4:77:2f:70:35:62:a2:12:0d:49:6e:b0:
1f:0a:2b:5b:b6:09:5e:e1:e8:aa:bf:81:21:dd:c9:34:57:0b:
54:cd:65:c2:57:35:82:98:67:b3:4a:a3:fc:6a:ac:83:80:ad:
7a:84:32:13:45:8f:5f:fb:a4:02:73:ea:44:57:b9:e8:19:be:
91:c1:0b:f4:da:c5:7f:3c:eb:bb:4c:43:d8:0e:95:14:68:63:
f1:50:7a:2e:b0:1d:15:e3:2d:d8:df:c7:77:5a:a4:4c:a7:d4:
fc:18:4a:54:82:15:08:c4:a4:ec:a6:38:51:eb:7e:02:fb:32:
35:a9:41:fd:f9:d1:19:c0:ea:9b:d3:5b:a2:45:41:02:34:4a:
b7:4b:17:1c:b5:6a:77:a5:5f:a4:40:fb:a1:36:ff:f9:36:a4:
4f:e9:90:bc:e9:79:e0:25:59:b7:01:93:7b:a0:bc:31:4c:9b:
0c:84:8f:2c:9e:f3:d4:30:d0:4c:55:75:e2:4a:09:11:9a:f3:
6e:31:25:39:4f:e1:e7:21:f2:78:fa:d6:0a:a5:de:20:b4:0c:
e2:9f:63:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:23 2025 by rpki-client