Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: d02DkcaGgToewXiGgXTjchB+jtdL5x0Hsgn0rkjPGIo=
Subject key identifier: A3:3F:7C:A3:8A:BC:88:72:C5:0A:D5:9F:F9:ED:24:60:45:A1:E5:DC
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 0198D473CC66B12D6A7C941BE0752CDDDDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 043A
Signing time: Sat 23 Aug 2025 01:03:35 +0000
Manifest this update: Sat 23 Aug 2025 01:03:35 +0000
Manifest next update: Sun 24 Aug 2025 01:03:35 +0000
Files and hashes: 1: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: /Aa88cF+Nr5iTV4Iuni5F73JPkgHckRyrhZNQrGf3yY=)
2: p8T_kCS-MYJ8fc4C7hUc5E1T1qg.roa (hash: CHS1S8lMOJ2pkxab6trVxWbo2qQA5JXICjYrqXb1IdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:cc:66:b1:2d:6a:7c:94:1b:e0:75:2c:dd:dd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: Aug 23 01:03:35 2025 GMT
Not After : Aug 24 01:03:35 2025 GMT
Subject: CN=a33f7ca38abc8872c50ad59ff9ed246045a1e5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b9:1d:47:5b:91:b4:d2:cb:b0:52:0b:64:a6:
33:2e:1a:b4:7a:ed:cc:cf:2a:f8:47:db:26:02:73:
d3:ad:bb:06:34:e0:d6:e5:24:7a:90:93:c1:51:d2:
4b:d5:44:6a:4c:d3:c6:81:b9:ac:54:68:11:4c:ea:
fd:ae:f9:77:7e:dc:b8:53:fb:20:0c:70:68:7e:99:
b4:d0:03:e2:a2:89:9e:75:46:56:e0:3e:24:8c:7a:
77:7a:b6:6c:bc:89:0e:62:a0:e8:64:a5:38:b8:ca:
31:7a:1b:31:2b:20:45:d2:a3:06:f1:f3:42:c7:9b:
73:e1:b8:c4:56:39:0a:06:57:b3:96:7a:07:b8:b5:
ad:af:3f:89:1b:2e:4a:51:df:5a:11:81:25:5e:35:
ef:68:08:d1:a3:42:65:6f:2d:30:ef:bc:f5:e2:d7:
5e:f2:21:9f:cf:eb:2c:2b:b7:86:c7:2c:84:95:9c:
6d:ca:0c:99:d3:d3:d9:bb:6a:78:a5:39:23:62:38:
13:19:8a:d5:34:23:35:b0:45:dd:c3:02:c0:f9:9b:
f5:c4:31:b4:aa:3f:fe:53:3b:7b:ca:49:44:6d:3d:
5a:1c:62:bc:20:ae:dd:1a:8f:be:58:23:b9:a4:a8:
ec:4a:93:50:b3:bf:c1:fd:90:df:df:8a:8e:78:fc:
b9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3F:7C:A3:8A:BC:88:72:C5:0A:D5:9F:F9:ED:24:60:45:A1:E5:DC
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:aa:f2:25:65:b6:2a:c4:dc:73:f7:c6:5d:ee:81:31:fe:ed:
99:52:50:81:9c:c9:6b:42:f6:8d:6f:25:c4:d4:40:30:a8:c5:
ae:3e:32:f2:8d:1c:8f:c4:17:c8:7a:9c:15:ec:84:43:e5:65:
6d:01:06:69:96:fc:1e:c2:d1:0d:61:f0:6b:4f:a3:f8:7e:46:
fe:95:de:f3:45:b9:fc:36:16:db:94:40:0a:e6:b9:06:39:9e:
cd:e3:02:ba:b0:fa:dd:ea:e5:63:0c:02:6c:73:51:20:fd:1a:
f2:1b:59:dd:ec:42:dc:80:06:fc:4c:6d:7f:24:8e:31:f1:a3:
07:be:e5:3a:c0:ff:39:73:a3:e9:27:a9:69:29:d4:11:af:cc:
6b:73:b0:be:16:89:70:97:e7:ba:ba:e5:6d:2a:ce:48:27:eb:
75:47:65:d2:cc:41:6c:91:b8:1a:6d:87:33:75:92:c2:71:35:
e8:76:d0:0d:bf:34:b0:9f:61:ca:05:36:e6:51:f8:2b:75:60:
75:ee:b9:9c:ed:6a:61:65:82:9d:f3:9e:0b:89:89:8f:0c:1d:
73:3d:9e:7f:bb:93:e7:16:06:85:16:84:34:69:47:79:7c:b9:
f8:d8:4d:15:1b:b0:96:44:87:3c:19:04:4f:25:88:ae:b2:ab:
ed:cf:b7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:42 2025 by rpki-client