Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: pyQjrZzUklPZndAITeW09tG8WW5kOO4KP0qskYctE9k=
Subject key identifier: 59:21:1B:2E:FF:89:A6:73:5F:02:D7:29:48:B7:BB:54:95:4A:A7:24
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019D2704178EC6CEF200989D459C24C97AAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1752
Signing time: Wed 25 Mar 2026 22:01:12 +0000
Manifest this update: Wed 25 Mar 2026 22:01:12 +0000
Manifest next update: Thu 26 Mar 2026 22:01:12 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: x1OGGNbNGNoHQTZes9kC6MVNN6AK3XHXymsU2cOJiHQ=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:17:8e:c6:ce:f2:00:98:9d:45:9c:24:c9:7a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Mar 25 22:01:12 2026 GMT
Not After : Mar 26 22:01:12 2026 GMT
Subject: CN=59211b2eff89a6735f02d72948b7bb54954aa724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f5:f9:b2:64:6d:34:5b:82:3d:23:c6:3d:03:
d9:fd:aa:76:75:60:fa:e1:19:49:f3:d5:9e:32:15:
63:e0:32:34:ba:8f:89:64:72:29:55:dd:f7:42:38:
0a:9b:c5:e5:11:c4:57:f9:af:c6:24:22:f9:09:1c:
b9:4c:6d:f4:e8:8f:9a:de:a1:1b:f8:a3:b5:6e:3f:
72:2a:5b:32:c4:35:9c:21:59:31:db:ec:1f:b0:f0:
0a:31:b0:24:e4:4b:9b:9f:fc:d3:95:ac:c2:68:bb:
7f:a1:15:c1:fb:5e:bc:c2:93:3d:b8:ac:ad:33:ed:
44:94:00:a2:9c:2c:d9:96:f2:3c:04:47:87:5a:ad:
65:42:6e:1a:a9:08:e3:63:b4:ac:9f:86:8e:0a:d3:
e0:71:50:68:02:3f:49:88:e9:c9:6a:b9:fb:54:b9:
22:bf:27:a7:74:73:2b:06:78:c0:67:da:a0:44:89:
da:69:c3:e4:20:6b:1e:96:da:7f:df:e6:e9:3e:40:
55:1d:c4:2b:2a:55:2a:6e:12:8b:1a:a6:0a:14:06:
85:64:82:28:b6:95:80:9f:e5:53:00:dc:78:96:fa:
4d:e1:dc:1f:fb:43:cb:bf:31:31:a7:59:6a:03:64:
05:bd:dd:08:88:e5:84:dd:b9:16:e0:6e:44:ef:26:
43:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:21:1B:2E:FF:89:A6:73:5F:02:D7:29:48:B7:BB:54:95:4A:A7:24
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:5a:91:38:53:ca:d5:1b:0d:ed:8d:85:d4:1b:62:ac:f5:35:
18:f0:14:7d:f4:01:5f:74:18:ca:55:64:3e:e3:f9:81:82:3e:
5e:88:28:1f:9c:2e:93:fd:ad:a6:27:06:77:67:c3:2a:ac:94:
d8:a0:08:7a:55:81:46:4a:38:b7:5e:a1:3f:44:45:f2:50:b0:
c5:71:52:2f:c2:8b:68:9c:0e:88:35:76:b4:2d:99:5d:06:cb:
93:9d:77:48:52:71:10:ae:0b:0a:01:44:5e:8a:a6:b0:7f:52:
b6:09:f1:76:d5:c2:1f:67:f1:f2:79:ef:c2:89:39:45:84:72:
d5:bb:1b:96:09:a5:56:2f:a2:79:1e:76:82:64:47:52:bb:2a:
0f:d2:00:eb:f4:cc:66:1d:4d:d8:57:69:f3:3c:6d:f5:97:60:
2d:91:2c:99:7c:51:b6:ba:97:93:c3:22:36:2f:13:a8:90:61:
73:34:57:ae:d0:2e:02:3a:2d:c3:41:8c:7a:e7:79:cd:28:8e:
91:03:90:6d:82:c7:a5:5e:dc:81:02:47:94:af:8a:ae:d7:62:
17:fe:d3:1b:ff:8c:e9:ed:1a:40:57:73:1b:a4:77:12:67:75:
05:f0:b0:51:17:96:0b:a6:6c:fa:de:36:c3:31:2f:c7:63:dd:
a6:af:9e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:53:04 2026 by rpki-client