Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
File: hqnzrkX3AVCvF-uHiel4iQKe5dM.mft (raw, json)
Hash identifier: HY3HJ5cnSHQWeaj130OYCPC7TGM2c+y9q6U/jPUVDuY=
Subject key identifier: 87:78:B5:DB:FA:68:5F:5B:A1:EC:4F:F1:A2:C9:27:73:A3:93:1E:A0
Authority key identifier: 86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
Certificate issuer: /CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Certificate serial: 019D270423DE48CE2C708BDE5DA2EDF20CBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
Manifest number: 1885
Signing time: Wed 25 Mar 2026 22:01:15 +0000
Manifest this update: Wed 25 Mar 2026 22:01:15 +0000
Manifest next update: Thu 26 Mar 2026 22:01:15 +0000
Files and hashes: 1: O3Ze20ZxAwVm_hG9bsYyUaAYePQ.roa (hash: TSl1RQes/j1AF84x+h+cAOoSi4izTWDFh+hMOg3IRm4=)
2: hqnzrkX3AVCvF-uHiel4iQKe5dM.crl (hash: Z7f1vREV2cu99uvLOFAbhrjBaaITy/uY80YPIMXwmDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:23:de:48:ce:2c:70:8b:de:5d:a2:ed:f2:0c:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Validity
Not Before: Mar 25 22:01:15 2026 GMT
Not After : Mar 26 22:01:15 2026 GMT
Subject: CN=8778b5dbfa685f5ba1ec4ff1a2c92773a3931ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7e:45:5b:10:04:c0:7d:08:38:cb:71:82:18:
c9:81:88:1b:e8:92:3a:50:bb:77:cc:cb:f4:c9:f4:
53:6c:cd:0f:f0:e0:e9:bc:44:f4:06:a0:e0:98:56:
22:b4:58:b2:b6:e2:0e:3b:d5:ac:d8:c9:7a:3a:4e:
19:dd:58:f1:dc:99:6f:e7:d8:c7:3b:ed:0a:0d:bc:
f7:11:41:a6:88:cd:7e:06:73:e8:ae:b1:d3:ac:cc:
30:de:74:d3:37:1f:4b:4b:78:fd:44:d0:04:39:ce:
ed:da:a3:2e:9f:08:b3:88:d2:d5:6e:92:7d:13:ff:
c7:e2:fe:52:4a:f8:93:69:ab:ac:f3:2f:12:43:cb:
f5:b2:f1:28:32:2e:24:0e:99:b9:2d:d0:18:47:38:
45:67:a2:b3:d5:3a:e6:1d:d1:b8:70:fc:2c:6e:bf:
42:c0:33:ab:6f:1f:94:1d:f5:2a:09:6a:bc:b3:b4:
79:64:5b:b0:74:91:d4:01:20:37:9c:b5:64:24:ff:
49:ee:93:1a:7a:bd:8e:0f:12:40:96:8f:e8:c6:fb:
08:b8:4d:0d:08:0e:cb:14:14:dc:67:04:a4:78:24:
68:a1:ee:a5:2d:ca:6c:89:b7:5d:61:02:25:74:1d:
a0:5c:e2:73:85:46:b1:f3:d4:44:2e:01:78:39:1a:
b0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:78:B5:DB:FA:68:5F:5B:A1:EC:4F:F1:A2:C9:27:73:A3:93:1E:A0
X509v3 Authority Key Identifier:
keyid:86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:4d:91:30:3e:d2:c2:5b:a5:8a:52:5b:57:72:90:16:9f:c4:
4b:f7:87:5b:91:b9:5e:d3:49:08:6e:ed:db:0e:bf:b3:67:48:
80:ba:06:7f:b0:15:71:fe:6f:f1:2d:54:29:33:aa:e9:71:e7:
5e:1a:ad:22:44:21:66:5d:70:78:d4:e4:f8:71:97:5c:b0:e3:
37:6b:e9:f6:1f:c3:9b:01:08:d2:09:19:54:b3:39:5b:21:72:
81:dd:fb:9d:39:69:0f:47:47:12:91:bf:c6:3a:dc:44:dd:fa:
10:44:c5:a1:e1:80:e9:c3:2b:3b:53:65:37:ef:68:30:bd:53:
79:7e:83:8f:43:97:5b:83:a6:3f:e1:3d:54:e6:57:2f:57:98:
60:7f:3e:ff:06:96:08:cc:6c:d6:61:fb:29:e9:a8:c7:c6:e5:
15:67:a5:5f:ae:04:fb:92:7b:b5:10:01:06:67:ef:e7:fa:ad:
6b:9a:00:11:26:d2:35:be:72:b2:a9:fe:88:ad:ad:90:6c:e8:
02:66:3b:7a:f5:f5:fb:f7:c9:1d:36:e5:71:99:fb:eb:c0:10:
77:fa:8c:70:d4:33:e5:25:05:0f:86:46:3d:6d:78:c9:0b:90:
41:08:c6:9c:02:4d:93:4c:14:08:2c:7f:82:8c:87:f0:c8:8e:
1b:d5:13:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:41:18 2026 by rpki-client