Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
File: hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft (raw, json)
Hash identifier: GIkX0paZsY8/3lzduv9zb4iq6QKdCvuCZX/I21UeyDI=
Subject key identifier: 7A:5A:3D:A3:43:94:15:DE:9C:2D:C8:34:F0:61:2E:07:26:DF:6E:23
Authority key identifier: 86:AF:AA:E2:E3:E0:54:07:3A:38:AA:B6:35:DC:96:46:0E:EF:48:7E
Certificate issuer: /CN=86afaae2e3e054073a38aab635dc96460eef487e
Certificate serial: 0199FC8F783722C71774AF3559529ADDFABF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
Manifest number: 139D
Signing time: Sun 19 Oct 2025 13:01:24 +0000
Manifest this update: Sun 19 Oct 2025 13:01:24 +0000
Manifest next update: Mon 20 Oct 2025 13:01:24 +0000
Files and hashes: 1: hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl (hash: 5jk/W/pKGG4Aa9pnh2xE4wV7iBTL9sRkiugjZfBquO0=)
2: u40_CVPRXQU3uk4qPbqc4cI2sHY.roa (hash: gnlLqRtRQL2T8+oJwalCgtWLP3BAY4oa8AUD9M1Xi/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:78:37:22:c7:17:74:af:35:59:52:9a:dd:fa:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86afaae2e3e054073a38aab635dc96460eef487e
Validity
Not Before: Oct 19 13:01:24 2025 GMT
Not After : Oct 20 13:01:24 2025 GMT
Subject: CN=7a5a3da3439415de9c2dc834f0612e0726df6e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d2:36:6a:1a:4e:7b:2f:63:21:17:ea:cf:12:
34:a6:f7:2f:51:22:f1:1c:ff:c7:3f:d6:9a:11:e5:
25:03:e6:55:52:92:0a:68:d3:69:e1:a9:9c:8d:c0:
e7:24:92:ee:d3:00:98:49:bc:17:61:f8:01:1c:7d:
78:7c:3d:3e:5d:74:0f:bd:ef:64:f3:40:e1:27:90:
50:15:05:ae:09:11:99:39:2c:c8:c0:95:0c:fd:14:
a2:cd:c5:d1:3c:63:da:0f:e3:be:07:0d:6a:9f:80:
e5:7f:f5:6e:21:44:62:39:26:43:29:f9:c5:04:e2:
cc:e8:5b:8d:28:58:dc:2d:06:ca:e8:7e:83:73:8a:
f6:67:a8:32:71:1f:45:98:77:35:0f:fa:ab:a2:bf:
05:b4:51:f1:82:54:ff:25:bf:8d:c8:0e:50:de:b8:
5c:2c:44:eb:e2:53:d1:69:1d:2c:8e:df:0a:09:ca:
f1:36:e2:b1:37:c0:cc:82:90:38:a6:4b:ab:07:ad:
df:8d:51:c6:be:d7:ef:ee:67:e1:9e:18:7a:22:ad:
80:4c:c8:68:8a:a6:9f:73:ab:39:6f:21:20:5b:23:
2c:92:3f:cf:7c:86:ac:e2:85:a7:a1:3c:2b:0f:1e:
18:ba:39:a2:18:06:eb:c0:d1:65:d2:ef:d3:c3:7d:
e0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5A:3D:A3:43:94:15:DE:9C:2D:C8:34:F0:61:2E:07:26:DF:6E:23
X509v3 Authority Key Identifier:
keyid:86:AF:AA:E2:E3:E0:54:07:3A:38:AA:B6:35:DC:96:46:0E:EF:48:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:99:f9:bd:0c:6b:bb:d2:d9:bc:88:b6:8d:22:72:ae:e6:07:
4b:06:3a:dc:fc:bc:2a:93:b2:de:42:10:8a:5c:34:37:2f:c0:
c9:83:b6:bf:9c:63:f6:b9:33:c4:56:1c:9e:24:16:a7:a0:c5:
76:83:8d:1a:22:65:81:1e:c9:e3:35:c7:8d:fd:c0:10:f4:19:
05:9f:3f:40:44:82:91:a2:81:4b:34:a5:ad:47:40:3c:66:03:
fd:22:da:d6:9f:3d:86:6e:8e:f9:3b:75:57:80:1b:5f:57:e4:
3c:15:18:d8:8b:11:50:ba:4e:c0:02:a1:c6:d6:97:56:c9:d3:
67:9d:12:3a:7f:be:40:1a:f6:35:ab:e2:4b:00:27:fd:44:a9:
ca:71:71:77:a6:96:c1:e4:b5:c4:b6:00:a1:83:71:22:3c:cd:
bf:6d:2d:67:d9:f9:ca:5e:7c:ff:3f:9d:39:62:0e:89:c2:ad:
a0:ae:29:01:33:00:63:02:15:ac:71:95:fa:cc:a4:4f:05:65:
d2:99:b5:78:d9:ff:85:bb:3a:c7:5e:8b:15:77:0f:0b:c4:ee:
d7:f5:e1:2a:89:e5:e7:ec:9f:0d:16:ba:05:61:6b:80:2c:1c:
ea:25:de:c9:26:4e:39:70:5f:db:31:de:6c:b8:db:8e:3b:1c:
1b:52:9e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:09:35 2025 by rpki-client