Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: 6SHKvVw/F5ygS1OXhBg/E2ssKtX7Ukzu13r8G9D3ulI=
Subject key identifier: 29:00:D4:E2:C8:48:98:B6:82:EE:03:0B:9D:92:E2:4E:E7:E2:2D:2A
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 0198D4A83C4BEE2B17A4DFDE4768892988B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 02:00:51 +0000
Manifest this update: Sat 23 Aug 2025 02:00:51 +0000
Manifest next update: Sun 24 Aug 2025 02:00:51 +0000
Files and hashes: 1: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: Hxpw/YnyJyV2/t3oe7MdVD3byEa90D2Ci/gSBPuFadc=)
2: xSS92RJP_9kDYA2uBQZz6tpYK1I.roa (hash: rR5n4U9xDx2H85hw0wOs3NY+BK3tAcVO4QlJE3rUQXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:3c:4b:ee:2b:17:a4:df:de:47:68:89:29:88:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Aug 23 02:00:51 2025 GMT
Not After : Aug 24 02:00:51 2025 GMT
Subject: CN=2900d4e2c84898b682ee030b9d92e24ee7e22d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:2d:c9:eb:af:22:ab:91:8b:91:e2:5a:a5:35:
73:13:74:34:05:3a:b8:b9:dd:f9:ca:d7:1e:fc:12:
2d:fe:6f:75:ff:66:65:76:4c:d9:31:74:7d:03:8d:
31:7e:3e:54:9a:f0:41:01:dd:c6:2f:1c:a7:e6:4e:
db:50:51:75:5c:b1:03:37:5e:a2:da:7e:e6:bc:d6:
79:d9:7a:c8:34:59:2b:c5:39:0d:87:7c:7b:97:97:
34:9b:25:97:f3:a5:63:98:44:e3:27:fc:31:c6:dd:
2d:de:24:58:8b:f5:6b:ae:72:04:3b:06:25:d9:33:
6c:68:c2:9d:5a:1f:80:1b:f6:fe:0e:40:a3:66:23:
a5:46:f3:01:10:c1:02:33:97:d3:77:db:f5:37:f3:
89:1a:1e:86:9b:0f:13:a6:3a:ac:39:9d:10:f1:98:
9f:76:00:a8:28:6b:fb:d1:78:63:e1:32:d5:9c:39:
80:b3:68:f9:c9:c8:7f:d2:a9:c2:8e:ce:8b:37:3e:
6a:25:02:5d:da:1b:0e:7a:54:c0:0b:77:e6:92:22:
71:d7:de:20:86:c0:37:04:5e:a0:6f:c9:fd:0d:31:
56:d1:21:66:09:95:ec:db:f9:da:14:0e:60:54:b7:
85:13:d2:8d:ca:22:ab:be:f7:ea:45:d6:3e:9d:b1:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:00:D4:E2:C8:48:98:B6:82:EE:03:0B:9D:92:E2:4E:E7:E2:2D:2A
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:0f:15:14:ee:83:fd:3b:c2:5b:90:da:7e:a9:97:f4:24:5f:
95:7a:97:97:d3:40:82:69:dd:4f:6c:8b:8b:57:d1:43:15:d9:
fa:61:a2:f0:2c:68:11:43:f2:68:c5:55:cf:ae:eb:bf:5d:e9:
35:b2:a4:5d:db:4a:24:54:1e:07:60:f2:f0:15:c6:9b:50:34:
0b:a6:3b:3e:80:ef:44:f9:ab:7c:4b:99:47:68:53:04:30:f8:
e9:5f:8c:56:c3:b4:13:27:69:4c:06:13:0c:73:3e:de:ac:a4:
98:bc:46:2f:a5:84:fa:a3:e0:ba:e4:c2:53:98:8a:e0:f3:37:
09:01:e3:d3:24:2d:3f:16:2b:e7:af:e3:28:2b:e8:79:3f:bb:
74:85:f9:85:45:72:c8:a6:4d:b8:5a:e7:10:61:42:79:55:db:
dc:cc:27:d6:22:fc:72:5e:9a:0f:e9:d9:be:13:66:e7:ca:3a:
a9:5d:6e:2d:b7:d2:87:9e:f3:79:45:9f:9d:c7:7f:ad:d5:23:
e3:62:2b:0c:85:54:21:5b:24:0f:80:cb:07:ce:26:b5:6a:a2:
12:37:38:a7:a3:3e:57:b0:b3:f4:a4:0f:c1:96:32:f5:f2:d7:
11:47:41:37:b3:0c:04:d2:26:00:42:8a:97:09:b7:25:cd:9d:
46:87:ef:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:23 2025 by rpki-client