Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
File: hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft (raw, json)
Hash identifier: fRPWltFVd+y6WCmloNY5Y7fi1TK5U1mfTvMnXrAjnEY=
Subject key identifier: 18:64:20:A8:AB:13:CB:CA:B9:30:8A:A6:28:A7:E5:7F:9A:8F:2F:51
Authority key identifier: 86:AF:AA:E2:E3:E0:54:07:3A:38:AA:B6:35:DC:96:46:0E:EF:48:7E
Certificate issuer: /CN=86afaae2e3e054073a38aab635dc96460eef487e
Certificate serial: 0197B7EA9CF4AC2D4A3D62C80F6DE3B2CD4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
Manifest number: 126E
Signing time: Sat 28 Jun 2025 19:01:35 +0000
Manifest this update: Sat 28 Jun 2025 19:01:35 +0000
Manifest next update: Sun 29 Jun 2025 19:01:35 +0000
Files and hashes: 1: ZDU98pLej6G5Y69Flle0aPv1r5A.roa (hash: A41/y0PjRZXqiD5cmhEr4Mj1BgTXTsWtK/kWghBv8z8=)
2: hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl (hash: Luza9zI6P0T5pXUsUL78Uf36KLlja9ubkTRYM4XfsNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:9c:f4:ac:2d:4a:3d:62:c8:0f:6d:e3:b2:cd:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86afaae2e3e054073a38aab635dc96460eef487e
Validity
Not Before: Jun 28 19:01:35 2025 GMT
Not After : Jun 29 19:01:35 2025 GMT
Subject: CN=186420a8ab13cbcab9308aa628a7e57f9a8f2f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:25:cc:32:11:92:ff:dc:d1:93:d9:8c:75:87:
3f:e6:06:87:74:5f:1e:c3:5e:09:85:4b:67:01:e2:
83:96:ec:3d:a4:4d:89:7e:7b:ab:eb:ce:bf:c6:9f:
d0:b0:61:e1:30:fd:5c:d2:23:e4:07:a6:20:5f:02:
d7:73:48:cb:71:b4:c9:6a:7d:bf:ba:7a:ba:ca:ed:
f4:43:23:08:0e:50:21:59:56:67:dc:d1:77:f3:dd:
78:a9:c8:25:6c:7c:c7:a5:5f:f4:57:c9:38:c1:73:
21:d9:f7:aa:9b:0a:2c:f6:da:e0:8b:d8:b9:d0:72:
92:2d:90:ce:72:46:ab:d9:4e:f7:25:45:98:a6:1d:
f2:5b:68:8a:70:c7:b3:c9:4a:d5:f4:9d:ec:b3:5b:
da:f1:2f:95:08:cd:f9:25:03:c7:b0:9c:2e:5e:6e:
7d:ad:3b:11:5d:bf:c2:2d:01:e2:4f:51:4a:87:aa:
a5:4e:98:28:76:3b:4f:f7:a2:10:ce:ef:15:ea:52:
91:68:c9:74:f5:cf:94:a2:a6:45:32:f0:58:ee:98:
56:ee:e5:e2:27:99:b7:ee:55:35:b0:4a:f2:e1:92:
15:1a:fa:f1:72:f8:bd:3a:19:d5:a5:63:9a:a3:d8:
49:cf:c1:9a:7c:a4:fd:ac:b5:cb:03:2b:f4:8c:c6:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:64:20:A8:AB:13:CB:CA:B9:30:8A:A6:28:A7:E5:7F:9A:8F:2F:51
X509v3 Authority Key Identifier:
keyid:86:AF:AA:E2:E3:E0:54:07:3A:38:AA:B6:35:DC:96:46:0E:EF:48:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hq-q4uPgVAc6OKq2NdyWRg7vSH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e76a1a-3724-495b-ac72-472040b247f6/1/hq-q4uPgVAc6OKq2NdyWRg7vSH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:f6:48:2a:10:e8:aa:1b:59:33:7d:c1:d5:29:ea:9c:05:c7:
ef:2e:d4:0f:15:51:ba:68:55:8b:a3:8b:90:d6:1f:0f:3a:4a:
59:0e:e3:9a:cb:96:18:9b:ff:8e:1b:14:4d:6e:18:cb:6d:0a:
68:06:0e:55:9a:be:bf:c9:22:d8:fb:ad:64:a3:21:aa:4b:7e:
a3:7e:4c:6e:a2:eb:11:e3:20:28:08:7c:3c:72:cf:ef:97:05:
75:f5:95:b8:76:82:90:81:9a:fe:6b:53:25:85:22:66:92:ab:
67:80:d4:ce:a1:c8:ed:8e:d6:1b:e8:70:a2:2c:ab:58:8e:9b:
3e:1f:39:47:3b:38:de:9e:e7:78:85:ce:17:bb:d4:61:cf:a6:
f0:4b:1b:e8:eb:d9:3d:a3:17:b7:d8:24:f7:6b:25:c9:04:3f:
a5:6e:1e:71:9d:db:24:ee:50:82:12:b7:39:99:4f:8d:40:05:
21:93:58:85:d4:33:42:49:33:9e:c1:97:18:aa:83:86:c4:b9:
02:15:40:8d:36:a3:84:a1:64:5c:ce:87:77:44:fc:ce:d1:ad:
a7:66:cf:ce:ea:08:2d:6d:bc:41:76:42:2a:ae:bb:9c:1c:66:
52:87:c5:19:e1:9b:7e:8e:fa:3b:f3:79:4a:47:11:36:a9:e9:
00:3d:87:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:58:06 2025 by rpki-client