Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
File: HQrO6hf1PecI-ac6vAyHFk0gfQg.mft (raw, json)
Hash identifier: isgFfMcHmYIgsMmHlKpHIjzb+XE6O3UF7Ytu3WhsZGE=
Subject key identifier: 54:67:49:6C:E6:16:B0:C8:10:DE:95:E0:9E:5E:1B:4A:4C:EF:D7:3B
Authority key identifier: 1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
Certificate issuer: /CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Certificate serial: 0199FDD910D3011590BA729DFC95E55F15F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
Manifest number: 1406
Signing time: Sun 19 Oct 2025 19:01:25 +0000
Manifest this update: Sun 19 Oct 2025 19:01:25 +0000
Manifest next update: Mon 20 Oct 2025 19:01:25 +0000
Files and hashes: 1: 9zhTOpiuNqKnk778yI8rOgQQ8-A.roa (hash: ABWXF/FnYjdj8H9UnlqrtLWEbBYpls+daSI459eMuZM=)
2: HQrO6hf1PecI-ac6vAyHFk0gfQg.crl (hash: qI4/mh6ZbIlvc6vJ8I3MdNevc9/ir/SIyNowT2Gc6t0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:10:d3:01:15:90:ba:72:9d:fc:95:e5:5f:15:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Validity
Not Before: Oct 19 19:01:25 2025 GMT
Not After : Oct 20 19:01:25 2025 GMT
Subject: CN=5467496ce616b0c810de95e09e5e1b4a4cefd73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:67:f7:87:7c:5e:e6:5a:00:98:09:95:d6:
62:d0:55:20:2b:38:c8:e8:b9:c5:c4:aa:b6:da:7e:
2d:55:6a:0f:f4:a6:2a:bd:bc:f3:8e:6f:02:29:2d:
3b:1f:2c:38:aa:43:cc:74:84:dd:11:f5:ec:3b:db:
b1:28:fd:36:ea:d2:05:30:74:65:59:20:29:c3:e8:
7b:ab:6d:40:45:39:4e:59:4b:b5:71:09:67:7d:75:
1c:7f:90:23:cd:10:d0:3b:1c:39:3f:32:e8:f8:81:
8a:d4:82:64:7f:95:53:ad:84:15:7f:00:5b:f1:e1:
fb:14:f8:44:df:84:e5:57:1e:9a:91:5d:91:ba:79:
f2:b2:67:b5:f7:2a:ed:b9:b2:65:24:75:5a:2a:71:
39:af:ed:0a:11:36:19:19:4f:71:71:d9:a5:ce:f9:
be:2b:4d:ba:11:53:81:d6:42:79:0a:eb:96:37:98:
0c:95:2e:24:0b:fe:67:88:5a:e8:b2:9a:f2:e8:d0:
7e:2e:24:c1:fb:ac:2a:38:a5:22:5d:c1:48:b7:1e:
b0:f6:79:0a:0f:88:7d:93:57:b4:8c:8d:fc:d9:82:
84:18:da:c3:ac:95:49:1f:f9:ae:55:2d:66:9a:4d:
64:87:2f:fd:9c:fc:05:a8:db:e8:22:9d:65:61:03:
9c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:67:49:6C:E6:16:B0:C8:10:DE:95:E0:9E:5E:1B:4A:4C:EF:D7:3B
X509v3 Authority Key Identifier:
keyid:1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:b4:60:e8:27:f9:3d:e9:61:33:37:c8:14:f4:19:4e:c7:04:
87:bd:34:ec:df:f0:13:8a:5b:71:ca:41:85:5d:9a:46:a2:13:
27:ff:7c:29:41:ec:96:a7:db:8e:36:11:78:e6:34:6e:c9:a8:
5e:38:90:c4:5c:98:71:f8:ed:c9:27:93:1f:35:62:a1:62:db:
a2:97:2e:6f:e1:e9:59:f5:1e:af:9c:d0:e6:dd:32:fc:97:e2:
1a:79:0c:24:41:bc:46:aa:dc:d7:42:ba:2d:e7:d5:20:d8:33:
d9:70:6c:85:89:64:41:e1:e4:87:fd:7a:c0:36:aa:81:78:c2:
16:ef:0c:eb:0c:a3:ca:f8:67:4c:9e:e4:35:ab:8d:83:ef:55:
fd:18:19:cf:d0:a5:4d:d8:cf:18:e3:de:c9:37:77:dd:b7:3c:
52:84:b3:73:84:58:2e:21:fa:3f:bc:20:f0:44:7b:69:95:48:
20:c3:3d:e7:75:73:0b:c6:ca:67:6c:f7:73:b3:3e:4a:49:e8:
f9:db:f7:dd:d6:48:15:0a:ba:04:e2:4f:5a:cd:ce:3f:6d:88:
69:2e:f5:66:49:e5:8c:87:cb:eb:e4:c8:0e:49:45:cc:7f:7e:
45:29:0b:11:8f:bd:83:bd:94:a2:3d:bc:79:38:02:b2:5e:c7:
8a:32:49:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:23 2025 by rpki-client