Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: MCblKeBdpeEw1ztIJeaqkGYoYDzDji2Vp0ITXdYOqEE=
Subject key identifier: 00:AC:1A:81:4F:AF:45:12:11:7D:39:E0:AE:43:50:D6:17:3C:B4:0B
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 019E3F782EF21A4C2D2506A8FCFC06224F5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 16CA
Signing time: Tue 19 May 2026 09:01:41 +0000
Manifest this update: Tue 19 May 2026 09:01:41 +0000
Manifest next update: Wed 20 May 2026 09:01:41 +0000
Files and hashes: 1: FD1D3tD8Wgemy0D_hjVkHNyyffA.asa (hash: dC2+srWHZQSVqWN4gNxQ5m+5yJw+nSPbHERxoSOT3g8=)
2: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: viUzD1aTW8qvCDGTj+NEGsM9gbOImNmvqZCl6CLKvuM=)
3: Ygz8nv_cil4CTr3aZUug7yPj4v8.roa (hash: PHkNGvc8VFiKuUZOzOtLVzJuZVZBuOD5WdBuF+PV+G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 09:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3f:78:2e:f2:1a:4c:2d:25:06:a8:fc:fc:06:22:4f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: May 19 09:01:41 2026 GMT
Not After : May 20 09:01:41 2026 GMT
Subject: CN=00ac1a814faf4512117d39e0ae4350d6173cb40b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:67:4d:c8:b9:7f:67:5a:18:23:c9:d0:89:0a:
82:1b:b8:59:96:0e:c2:ae:db:43:29:8a:49:93:80:
1c:a4:0a:e4:05:bf:b3:ab:c3:3a:2c:bc:cf:78:c0:
4d:94:af:38:e0:03:a1:03:dd:04:45:7c:e6:0d:38:
41:c0:91:45:1c:d6:07:a4:2e:da:0b:00:a3:ed:0a:
a1:a8:eb:72:c8:f4:f1:a9:fa:f8:7f:01:b3:0c:86:
71:95:a7:be:64:8a:76:b2:bc:e1:0b:e0:0d:5f:67:
0d:57:e5:f2:88:01:29:f4:13:09:88:29:9a:70:aa:
34:88:00:e2:11:aa:f9:95:8e:75:c9:1f:e5:1e:3e:
26:88:03:f6:49:10:50:8a:95:46:86:29:15:f5:11:
aa:20:bb:3b:4e:8f:34:3d:d3:5f:63:0b:ed:1f:54:
77:6a:23:d1:6d:43:60:15:a9:1e:c3:1b:9d:c4:67:
16:78:b0:1d:4f:05:d1:31:4c:40:d1:0a:3e:47:06:
07:ac:3f:d6:02:38:97:82:0b:ac:16:89:ac:be:a3:
98:78:19:43:0a:18:f7:12:b9:f2:e1:3f:96:83:07:
5e:9c:39:ef:d2:84:55:9e:c5:47:c5:9c:4a:cf:cf:
34:e4:79:54:e1:ec:b3:12:8d:98:ac:43:6e:ae:d7:
2d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AC:1A:81:4F:AF:45:12:11:7D:39:E0:AE:43:50:D6:17:3C:B4:0B
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:f7:26:5a:d6:41:fc:b2:d2:76:f1:16:79:91:48:ab:e8:61:
ed:4d:8b:5f:ed:07:90:8b:a8:5d:6d:70:52:3f:a3:85:0a:24:
67:f3:70:76:46:a1:3b:49:dd:19:d3:02:b5:bb:22:74:5f:a8:
47:67:10:6c:6a:31:61:60:e0:ae:88:35:62:02:e1:d8:77:25:
cc:9d:9b:ca:45:d3:d3:1d:8a:d9:db:4b:72:e4:18:1e:fd:4f:
06:9e:6a:71:3e:71:9b:25:11:73:d5:98:41:76:37:be:c7:0e:
99:d6:be:a0:c3:59:97:6b:87:0e:93:f2:3f:98:11:ea:d2:3e:
a9:38:85:f7:33:08:fb:41:d5:32:3f:a0:bf:18:60:9f:5f:94:
41:ee:90:24:68:3e:2a:ff:64:fa:13:fd:0e:a6:68:dc:d9:79:
fb:48:80:29:a7:7d:2a:d6:d2:b5:81:ba:dd:ee:3e:e8:ba:f1:
11:81:a4:e9:83:30:bd:9d:c5:b2:f4:c8:ee:23:3c:03:e8:74:
15:53:62:a1:49:c9:62:72:8b:2c:b6:cb:35:52:6b:90:99:71:
d4:6d:39:b7:d9:6f:37:0e:f1:12:8f:78:18:23:7c:fb:8f:6c:
1f:5a:22:36:85:76:90:dc:4e:1e:cd:55:9c:77:f0:f1:32:96:
46:b6:48:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 16:00:47 2026 by rpki-client