Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: MF9YbVQ38/qsOYZAPPcqiNNofQV4YSQSPjsHQwt9xGM=
Subject key identifier: 7A:55:99:2B:54:5D:3D:BE:B0:37:76:BB:A1:6D:B9:A4:7C:C2:C8:D0
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 0198D5F18FE52D3C472B10076B493A2871C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 146B
Signing time: Sat 23 Aug 2025 08:00:34 +0000
Manifest this update: Sat 23 Aug 2025 08:00:34 +0000
Manifest next update: Sun 24 Aug 2025 08:00:34 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: K5riS1FMvKhKIdIL0XdxcYE6s7qEr/GIROD62K2qeio=)
2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:8f:e5:2d:3c:47:2b:10:07:6b:49:3a:28:71:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Aug 23 08:00:34 2025 GMT
Not After : Aug 24 08:00:34 2025 GMT
Subject: CN=7a55992b545d3dbeb03776bba16db9a47cc2c8d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a6:1b:23:a6:51:bb:8d:da:a2:8f:c4:15:86:
ca:e5:60:65:95:0e:b7:73:46:86:9d:2f:af:14:c9:
b7:62:e3:84:d1:0c:a8:f6:e4:f1:74:64:d1:6c:24:
02:76:bb:de:98:22:0a:80:3b:b1:9b:06:d6:69:6c:
2e:b3:e2:bc:94:81:c2:6b:5e:e5:52:71:59:8f:9b:
06:ca:19:20:b0:40:53:a7:7c:08:11:a9:76:0a:78:
eb:52:a0:6b:a2:bc:35:07:64:9b:41:5c:5c:5f:51:
eb:d5:f3:95:03:dc:5f:60:4c:7a:24:d4:89:e6:36:
e1:8c:2a:f8:91:44:38:95:5f:aa:0b:78:27:80:93:
4a:b3:7a:18:a6:41:79:dd:09:10:c2:91:b7:31:f6:
77:50:b3:2e:4e:19:20:a3:4e:ba:3d:db:43:96:8a:
ff:88:5f:b8:7e:59:35:62:ae:c7:13:71:90:09:af:
ca:f6:76:70:9a:8c:95:99:e2:14:7b:a0:77:04:7c:
65:ba:e8:71:9e:bc:8f:55:07:b6:09:a1:a2:d2:aa:
e6:9a:10:4e:8f:ed:7e:2d:60:b3:6d:d6:87:e7:a5:
bc:2e:7a:6a:45:25:20:c4:1b:0e:43:d8:fd:35:9c:
24:57:49:f1:96:30:38:2d:67:be:8f:a4:1c:2f:7d:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:55:99:2B:54:5D:3D:BE:B0:37:76:BB:A1:6D:B9:A4:7C:C2:C8:D0
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:c6:72:de:0a:d4:d0:71:3e:85:d0:ae:3c:cc:04:1e:9b:1e:
24:4a:2e:c1:47:de:29:62:3d:f0:62:3e:ae:08:39:4a:2b:9c:
a5:00:cd:ec:da:bf:7e:53:68:38:8b:24:06:2f:2a:98:62:eb:
b5:40:1a:8f:98:4a:c0:ca:6a:b6:85:56:a9:fb:12:98:85:f4:
99:31:3a:8d:87:24:91:f1:39:dc:85:78:00:d8:c3:bc:75:f6:
f8:89:52:e4:35:c6:2b:ea:11:2a:9b:9d:8e:03:36:0a:c9:83:
57:16:2e:69:9a:fb:fd:82:9c:10:16:3d:6a:19:87:51:6c:cb:
00:cd:1d:53:42:27:89:c3:49:c7:a4:12:84:19:b2:4e:ac:f3:
26:52:fe:89:ec:16:e6:1f:ea:0b:b6:f8:8b:3b:6c:e2:7d:5a:
5a:2f:fa:e2:6e:f3:04:88:f3:d2:51:45:88:c3:30:c0:71:db:
dd:ce:61:45:c4:45:af:ec:cc:75:73:b1:d8:8a:ae:30:f5:10:
06:87:fa:bc:9b:c2:a5:eb:94:da:c8:93:80:d9:f5:85:81:10:
2f:90:7f:df:6e:a9:55:1b:0a:fa:17:fa:3c:82:c9:20:e2:cc:
7a:c1:77:1d:79:f6:0e:de:15:d5:d0:00:70:80:2f:a3:c5:31:
0c:3b:75:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:10:44 2025 by rpki-client