Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: 2HboQ+ZBvOq/75AFUUSVPKPyyTXIdmVdMI4Y3jBW++0=
Subject key identifier: DB:57:C5:03:AA:23:D4:CE:AA:E0:70:47:D2:B3:1D:B0:C6:5B:55:35
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 0199FB7C8D82CFE173ADAEA5BD8CF613D7DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 1503
Signing time: Sun 19 Oct 2025 08:01:07 +0000
Manifest this update: Sun 19 Oct 2025 08:01:07 +0000
Manifest next update: Mon 20 Oct 2025 08:01:07 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: fq8892tIfuvdRXuXEehrHrT5ZD+hd72azZJmE0PsL60=)
2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:8d:82:cf:e1:73:ad:ae:a5:bd:8c:f6:13:d7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Oct 19 08:01:07 2025 GMT
Not After : Oct 20 08:01:07 2025 GMT
Subject: CN=db57c503aa23d4ceaae07047d2b31db0c65b5535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d4:45:af:20:a8:bd:89:3b:72:2a:be:fc:9f:
88:86:77:c0:22:dd:c8:39:6f:a7:65:9f:91:5d:b5:
52:7f:d4:d5:de:67:aa:8b:81:8b:75:47:80:51:89:
6d:32:43:16:b7:67:77:75:5b:d1:74:ec:8e:a6:59:
f6:59:04:df:a5:04:99:28:5c:cf:2a:6a:6c:5e:bc:
ec:25:ed:2b:b7:26:ad:de:bb:26:f1:69:2e:70:88:
1f:ae:f7:87:11:5b:7b:20:5a:8c:c6:2a:f7:c4:8c:
94:96:0b:ea:b6:54:c0:36:e6:3d:97:6d:a0:05:97:
58:31:be:04:03:30:63:09:23:39:03:a8:59:d5:f5:
dd:3e:d1:34:aa:6e:a7:c4:63:d0:cf:8d:bd:4a:fc:
c5:ba:29:15:0b:86:0d:45:a8:a3:cc:ce:13:fe:ef:
7c:aa:ea:32:1f:bb:8b:6a:6c:93:9d:27:06:33:dc:
76:bf:2a:46:8a:cd:1a:69:3e:71:d4:2e:71:d6:48:
78:7f:ef:08:11:de:4b:c0:e8:30:47:42:9a:01:e4:
c0:2d:6c:dc:d1:94:23:4a:2b:7d:c6:ea:17:b8:02:
a4:28:54:54:bc:e3:f8:ec:68:4f:f8:54:af:e3:f8:
20:6c:8b:28:c2:b9:e4:54:bd:ec:91:28:4e:ba:2a:
e0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:57:C5:03:AA:23:D4:CE:AA:E0:70:47:D2:B3:1D:B0:C6:5B:55:35
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4e:27:b3:0a:5a:2f:21:4e:7e:81:47:2c:26:bd:6b:c9:66:
c8:b5:de:36:4c:03:6f:bd:32:43:10:b0:e7:cd:5e:22:97:4d:
1e:34:d9:43:75:19:0d:f9:a2:71:ea:23:31:1a:e1:31:3d:5b:
b8:e7:9e:3b:fd:78:f6:45:24:88:0e:78:e6:cc:52:5a:0c:c9:
de:7c:e5:06:88:36:87:06:67:0c:8a:f4:1a:97:d0:6b:c5:e3:
b3:58:44:f3:7c:4c:c7:8f:27:ec:31:92:10:a9:c6:38:66:78:
61:60:d2:2d:e3:95:af:90:3f:5c:9f:34:3f:59:78:df:0b:ba:
26:be:0c:4c:b2:af:25:55:b0:5b:82:02:1a:19:6d:c2:5e:0e:
78:d3:85:2b:bd:b2:05:4e:96:ec:0a:c3:78:f3:e4:54:dd:b8:
a9:d3:c9:96:c9:82:3b:ca:88:95:08:5d:93:f9:ec:7c:84:d9:
cd:2a:a1:be:5e:2f:5b:dd:64:ec:29:30:df:07:8b:a2:da:f5:
a9:29:43:83:7c:e2:aa:84:71:e0:ff:23:23:3b:52:62:c4:ae:
12:38:b2:ab:f7:91:30:4e:94:24:0e:46:ce:bc:8e:57:c5:31:
8e:f9:47:60:af:fc:95:b2:64:df:be:7c:83:89:b2:fe:b2:70:
ad:89:f7:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fI2Cz+Fzra6lvYz2E9feMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMDFlZDIzNjRlYzgyMjY1YzY4ODY5ZmU3MmJlNzU3MzE5
YTMxZWIwHhcNMjUxMDE5MDgwMTA3WhcNMjUxMDIwMDgwMTA3WjAzMTEwLwYDVQQD
EyhkYjU3YzUwM2FhMjNkNGNlYWFlMDcwNDdkMmIzMWRiMGM2NWI1NTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNRFryCovYk7ciq+/J+IhnfAIt3I
OW+nZZ+RXbVSf9TV3meqi4GLdUeAUYltMkMWt2d3dVvRdOyOpln2WQTfpQSZKFzP
KmpsXrzsJe0rtyat3rsm8WkucIgfrveHEVt7IFqMxir3xIyUlgvqtlTANuY9l22g
BZdYMb4EAzBjCSM5A6hZ1fXdPtE0qm6nxGPQz429SvzFuikVC4YNRaijzM4T/u98
quoyH7uLamyTnScGM9x2vypGis0aaT5x1C5x1kh4f+8IEd5LwOgwR0KaAeTALWzc
0ZQjSit9xuoXuAKkKFRUvOP47GhP+FSv4/ggbIsowrnkVL3skShOuirgDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNtXxQOqI9TOquBwR9KzHbDGW1U1MB8GA1UdIwQY
MBaAFB0B7SNk7IImXGiGn+cr51cxmjHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS85OWQ2ODMtNDNkYy00ODRhLTkwNDct
YjQzY2FlNmUyMzE5LzEvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS85OWQ2ODMtNDNkYy00ODRhLTkwNDctYjQzY2FlNmUyMzE5
LzEvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdU4nswpa
LyFOfoFHLCa9a8lmyLXeNkwDb70yQxCw581eIpdNHjTZQ3UZDfmiceojMRrhMT1b
uOeeO/149kUkiA545sxSWgzJ3nzlBog2hwZnDIr0GpfQa8Xjs1hE83xMx48n7DGS
EKnGOGZ4YWDSLeOVr5A/XJ80P1l43wu6Jr4MTLKvJVWwW4ICGhltwl4OeNOFK72y
BU6W7ArDePPkVN24qdPJlsmCO8qIlQhdk/nsfITZzSqhvl4vW91k7Ckw3weLotr1
qSlDg3ziqoRx4P8jIztSYsSuEjiyq/eRME6UJA5GzryOV8UxjvlHYK/8lbJk3758
g4my/rJwrYn3yA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:38 2025 by rpki-client