Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: 7Bzk9DVGgTzo+xg6rr7qVWv7E9u5ziyEdB1FoGLTGHc=
Subject key identifier: BD:62:59:EE:55:FB:4A:F6:AE:D9:73:25:AD:5C:4F:9A:F6:A2:96:57
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 0199FBEB9F198AA4883684EA6836FFF45426
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 04D3
Signing time: Sun 19 Oct 2025 10:02:26 +0000
Manifest this update: Sun 19 Oct 2025 10:02:26 +0000
Manifest next update: Mon 20 Oct 2025 10:02:26 +0000
Files and hashes: 1: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: nGP0KKvPxRk5aleN88JhNSgurRSc/kErTHqECKCbSHo=)
2: p8T_kCS-MYJ8fc4C7hUc5E1T1qg.roa (hash: CHS1S8lMOJ2pkxab6trVxWbo2qQA5JXICjYrqXb1IdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:9f:19:8a:a4:88:36:84:ea:68:36:ff:f4:54:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: Oct 19 10:02:26 2025 GMT
Not After : Oct 20 10:02:26 2025 GMT
Subject: CN=bd6259ee55fb4af6aed97325ad5c4f9af6a29657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:27:cb:28:82:b6:ce:98:2b:ea:fc:06:2a:dc:
dc:62:01:49:92:af:19:c7:ae:34:a1:48:20:08:fa:
33:fa:68:91:b0:a2:04:50:71:55:78:61:f2:e0:71:
20:00:96:b9:ce:d0:3a:f0:e2:69:46:f1:a6:8d:3a:
db:1e:f8:9c:22:6b:e5:27:fb:05:d4:73:b0:f3:78:
9a:07:29:33:c6:9a:99:82:7f:62:1e:c2:19:39:db:
2d:c8:49:d9:67:44:15:c2:e7:1f:f9:e1:ce:74:d7:
68:d0:36:ae:32:38:f7:63:c9:d8:cd:d6:62:99:d4:
6c:99:e1:f9:8d:c7:c4:6a:a0:0f:22:f8:a2:91:2d:
05:b3:4d:40:d4:44:dc:11:26:23:8a:81:6a:9c:3f:
b6:25:20:0e:cc:d8:ff:45:5c:11:73:05:f7:20:59:
45:2e:60:07:88:18:05:9f:a1:3b:df:1f:dd:e5:f4:
6f:ca:a6:a9:e3:7e:df:9a:12:aa:94:e8:a3:fe:a6:
c9:32:74:4e:51:fa:87:75:58:49:c6:46:b2:99:35:
4c:ee:d8:86:2d:d2:bc:60:67:b0:ac:a1:10:3a:32:
61:9c:73:cb:55:8f:46:5b:c4:95:8b:f7:d6:3b:82:
6b:ad:cc:6b:bc:d4:10:bc:ed:4a:db:37:d7:1e:a7:
78:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:62:59:EE:55:FB:4A:F6:AE:D9:73:25:AD:5C:4F:9A:F6:A2:96:57
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:f5:d7:78:2e:ef:72:b0:ae:fe:85:c1:8d:3e:46:13:e0:c3:
3c:8a:64:85:7b:0c:be:38:1f:38:0f:cc:e9:6b:98:9e:87:f0:
72:06:2c:e4:0f:36:d2:3f:07:0d:b8:83:83:94:29:c6:15:e1:
7e:f9:1a:88:7f:73:8a:ca:43:af:58:41:c8:9b:1d:bb:77:41:
3e:67:13:4e:5e:f3:e1:69:55:71:2f:5e:02:1c:37:56:f5:89:
80:28:fb:40:d4:66:61:2a:fd:8e:d5:6f:71:42:b6:86:0b:ec:
20:a1:6e:aa:ab:4c:97:7c:27:20:c9:c9:a8:48:51:77:f0:05:
18:7b:bc:74:8d:b5:36:fa:bf:8a:37:d7:7a:bd:3f:bd:dc:e9:
a3:07:c7:8f:d3:07:33:b9:38:b1:ce:d2:46:49:ad:ef:a9:c2:
d0:73:fe:f0:17:0a:5d:3c:7c:cf:dd:03:6d:4e:17:a4:11:a7:
ec:6b:af:5f:18:9a:bf:00:f8:45:43:71:d2:5a:e7:60:b5:13:
0f:a5:98:04:61:6f:0d:d9:08:61:72:34:d8:7f:3a:b8:73:31:
45:c7:85:f6:e1:1c:52:17:5a:8a:d9:9e:01:87:ef:aa:86:1b:
8a:da:8d:bb:ea:13:0c:55:8e:41:0a:3d:80:54:7f:58:19:61:
f7:83:b8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:13:46 2025 by rpki-client