Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: GPUf+L5fCQ6sN6rFXqkCPcwM/AxYyQdbH7bPBoPjHsg=
Subject key identifier: 9C:32:21:E3:99:2A:AD:47:D5:EB:03:42:EC:A0:BF:EB:D5:6E:58:9B
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019E2023D1AB2462FE24DA15E2F573C87411
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 17D3
Signing time: Wed 13 May 2026 07:01:18 +0000
Manifest this update: Wed 13 May 2026 07:01:18 +0000
Manifest next update: Thu 14 May 2026 07:01:18 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: 57usDg6mDzhd3DJeQUXW2Av6kxNVW1JJ0e4RtXHCHcA=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:d1:ab:24:62:fe:24:da:15:e2:f5:73:c8:74:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: May 13 07:01:18 2026 GMT
Not After : May 14 07:01:18 2026 GMT
Subject: CN=9c3221e3992aad47d5eb0342eca0bfebd56e589b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ad:2d:72:96:de:db:c7:0d:ea:c4:7e:ef:8b:
c1:d2:c4:c1:e3:eb:f9:c1:0a:2d:dd:41:2c:a2:79:
5d:86:08:f9:b4:f9:e4:c1:65:7c:eb:8b:af:60:a0:
ac:68:b7:4c:d4:d7:e4:de:f3:e5:70:e7:b6:1f:95:
82:c2:fa:fe:d7:88:d5:a5:d8:b7:f9:f3:58:02:52:
6d:97:9c:80:b6:bc:1a:ba:86:85:8c:82:10:71:a9:
d9:de:6b:f7:3b:28:13:1a:44:fc:93:dd:c9:98:80:
d9:26:f5:6c:2d:ff:89:65:20:5b:30:a6:6a:c1:da:
d3:00:db:16:38:c7:54:4a:de:1b:98:9f:20:ac:1a:
18:54:20:79:eb:a4:ba:82:9d:42:05:b2:9f:1b:e5:
e0:02:aa:8e:f7:d1:c5:7b:ca:78:16:96:8c:c0:d7:
41:47:0d:da:50:db:b3:cc:61:a7:34:38:76:60:2a:
61:fc:d2:78:3c:bf:28:20:d4:94:a8:6d:82:44:5d:
9e:8e:55:b6:2f:8c:6c:0f:3c:49:d5:4a:bd:4c:f1:
d7:20:50:1b:8d:58:48:09:84:d6:ff:5d:6c:29:77:
35:0f:e9:36:4c:11:9f:28:10:21:ed:5d:2c:3e:44:
78:34:57:d8:d0:e4:c0:32:81:0c:e9:8e:73:9d:05:
b3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:32:21:E3:99:2A:AD:47:D5:EB:03:42:EC:A0:BF:EB:D5:6E:58:9B
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:bc:ba:d9:9f:66:f0:8a:cd:5e:46:34:2c:f0:5b:bb:bd:20:
f0:8a:52:d3:cb:f9:01:99:eb:57:1c:4e:e2:f4:80:1a:e4:80:
94:d4:66:6b:08:cb:b7:eb:7f:2f:6c:2e:4c:2d:23:87:9b:62:
a3:1c:6b:7a:77:fc:9a:3f:c3:8f:29:83:d5:cb:64:46:82:a0:
b0:21:d4:15:d3:c8:b4:91:7c:11:e9:95:18:23:45:f5:5b:19:
a2:52:13:fa:63:a5:a7:f7:a9:57:b8:77:aa:93:b0:b8:da:cf:
c9:d5:d8:8c:f0:e6:21:02:32:78:7c:72:85:78:7d:a0:0f:26:
f5:4f:45:6e:8c:82:55:b1:bb:c3:0e:d9:ca:92:a1:2a:c1:4e:
a0:f5:e7:88:6d:8e:17:d2:8c:a6:d8:76:ca:29:67:10:70:4f:
01:09:46:e6:fd:8a:16:db:97:2c:89:20:6c:c0:97:4a:ca:37:
18:23:42:54:df:18:88:25:04:6b:0c:5d:4e:d3:53:d8:12:f9:
d0:33:32:24:94:34:1f:03:e4:85:8b:5a:8a:c4:65:8f:ac:ac:
e0:80:e0:d4:66:7b:ef:17:f7:3b:96:be:d6:1c:91:85:60:d4:
6a:97:66:78:76:1c:4a:4e:42:77:ae:4e:12:0d:40:e3:89:c1:
f1:4f:6f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:01:26 2026 by rpki-client