Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: D0HtY60WsnzRTUO0uqK8EfUfEhop1TqdmEhAoiJsMZg=
Subject key identifier: 79:FF:E2:D7:96:1C:A0:73:D7:B8:C8:3B:EF:A3:DA:69:C1:6C:82:6A
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 0198D472B537155C01884FA10AD0E2C368DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1514
Signing time: Sat 23 Aug 2025 01:02:23 +0000
Manifest this update: Sat 23 Aug 2025 01:02:23 +0000
Manifest next update: Sun 24 Aug 2025 01:02:23 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: ZFIgMWisF+pwQzxzT4Hb6KvFgCo/zFN+7H/zvLrfUL8=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:b5:37:15:5c:01:88:4f:a1:0a:d0:e2:c3:68:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Aug 23 01:02:23 2025 GMT
Not After : Aug 24 01:02:23 2025 GMT
Subject: CN=79ffe2d7961ca073d7b8c83befa3da69c16c826a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:45:86:aa:e2:c8:ea:84:cb:b6:52:e4:32:09:
f7:90:02:63:13:f6:7f:30:79:3c:61:59:e7:b6:78:
2d:c9:df:2b:16:1a:19:e2:a2:ec:8e:ff:32:83:f7:
93:6e:f9:97:85:b7:2a:01:a4:87:af:31:0d:29:f5:
6a:a2:da:c5:c3:e4:e2:9c:62:e8:f9:4e:27:f8:14:
83:81:bf:9a:45:d2:2c:fd:ee:5f:6e:39:fd:72:2e:
db:fe:17:f6:bb:b1:4c:dc:3d:97:2f:6f:1c:5a:20:
7f:cf:26:aa:30:06:d8:07:dc:51:73:02:51:a0:19:
2a:b6:a4:39:48:04:e7:2b:54:7d:69:3a:0b:8d:f2:
6c:bb:c1:ef:2c:a1:90:59:d4:a1:a7:36:e8:a9:59:
24:eb:7b:05:28:c5:d6:4d:0c:5c:bf:55:e6:1b:e5:
81:59:21:4f:57:6c:cb:56:54:ca:19:7e:9c:d5:d3:
80:11:38:2d:f8:df:da:de:20:28:ff:d5:6c:95:0e:
7a:4d:bd:e4:3d:5d:54:0c:cf:6d:97:f3:ef:b3:71:
7f:c0:6d:f4:75:79:52:c8:3d:af:25:ef:ee:90:f4:
2b:06:23:7e:21:23:16:45:61:99:bf:4a:eb:fe:e7:
99:fc:21:97:0e:e4:3d:55:99:83:e0:c3:b5:ca:78:
86:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FF:E2:D7:96:1C:A0:73:D7:B8:C8:3B:EF:A3:DA:69:C1:6C:82:6A
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ec:c6:17:63:16:a4:6e:8d:3d:31:62:08:19:2b:da:45:8f:
70:89:c6:53:5a:e5:5a:9d:76:59:9c:f6:ce:b1:d8:45:be:2b:
e8:10:24:9d:ab:25:2b:f0:b9:7b:9b:7e:b9:b8:48:74:13:99:
2a:3d:9a:2f:0f:d5:28:09:b2:28:c3:83:9b:a7:95:16:f3:0f:
4d:22:43:08:67:f5:ea:c7:4d:e0:ed:c9:ac:77:21:b0:84:72:
4c:c4:3e:fe:56:06:1e:6b:26:31:03:0f:9b:f6:ec:41:5e:69:
ca:bb:30:e5:e5:9d:eb:5a:9e:0a:8a:05:3e:36:f3:1d:7f:d0:
b6:05:7f:e2:5f:60:d7:20:24:da:b0:bc:7b:f1:b4:40:5b:ce:
68:7b:63:79:51:a4:ae:c8:f5:71:d3:82:e0:c3:73:0e:c1:70:
e7:33:f9:4f:cf:9b:1d:97:e0:53:2e:f8:46:86:1a:82:68:43:
85:3b:77:a1:a8:95:10:9f:7e:34:cb:34:d7:69:cf:fa:c8:c1:
7f:d3:79:a3:7b:59:28:9b:ab:ca:b1:17:ae:12:2f:a4:33:06:
0d:e9:a7:70:cd:d3:36:7c:cd:4e:80:84:0f:c5:9d:22:30:c5:
8b:66:46:11:ae:00:f5:a5:cf:91:8c:26:3b:72:eb:7e:be:37:
52:d9:2f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:53:07 2025 by rpki-client