Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: UaT4ZPeea+IOrBqdTUt5Ozs+Uty1EPgzrAxiyI2O4rA=
Subject key identifier: 7A:49:1A:28:59:F1:1F:40:7A:44:EA:7E:D0:4F:08:9F:3A:20:3F:C8
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 019CED82E1335ECB6FEF5E04597801C71341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 161B
Signing time: Sat 14 Mar 2026 18:01:43 +0000
Manifest this update: Sat 14 Mar 2026 18:01:43 +0000
Manifest next update: Sun 15 Mar 2026 18:01:43 +0000
Files and hashes: 1: FD1D3tD8Wgemy0D_hjVkHNyyffA.asa (hash: dC2+srWHZQSVqWN4gNxQ5m+5yJw+nSPbHERxoSOT3g8=)
2: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: pzoyD4DhbHwFFb1jlKjYHuzfnUYbHbm3BRPU3klW/ok=)
3: Ygz8nv_cil4CTr3aZUug7yPj4v8.roa (hash: PHkNGvc8VFiKuUZOzOtLVzJuZVZBuOD5WdBuF+PV+G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 18:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ed:82:e1:33:5e:cb:6f:ef:5e:04:59:78:01:c7:13:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: Mar 14 18:01:43 2026 GMT
Not After : Mar 15 18:01:43 2026 GMT
Subject: CN=7a491a2859f11f407a44ea7ed04f089f3a203fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:29:4e:ef:37:aa:79:34:3b:df:d9:47:bb:1c:
7d:eb:83:49:db:2b:03:f2:15:68:67:08:5a:d6:4b:
ab:5e:50:56:3f:ee:73:37:92:5b:82:bf:bd:f7:1b:
82:f7:c8:7b:77:88:0b:2e:8d:e8:92:38:a9:3c:bd:
c7:3b:85:5e:ee:59:6d:5b:b9:dd:85:ac:e5:e5:2c:
f1:39:ec:59:31:c3:a8:02:ce:55:91:da:d8:c6:bc:
36:9c:ff:fb:44:6a:76:29:44:79:ed:09:de:6b:86:
b9:68:10:0b:77:f5:f1:14:42:ee:1f:54:a2:0b:8d:
dd:85:e3:27:45:6d:52:60:26:6e:20:73:e6:76:af:
e6:e6:8d:3b:30:76:dd:7a:15:60:e6:3e:23:57:84:
a0:58:e4:33:cb:ae:d9:5c:1b:12:f6:94:6a:83:cc:
06:63:b7:1a:64:ac:00:7b:fc:ec:2d:a8:cd:09:0b:
34:46:f0:e1:f2:a6:97:8e:76:26:71:d7:cd:cf:9a:
0a:d0:19:52:5a:cb:09:af:54:be:72:dc:b2:62:a4:
99:12:38:af:57:a8:25:dc:40:0b:79:e8:40:37:ac:
1b:a4:59:bb:35:92:44:f5:1a:e1:cc:9b:c2:ee:38:
f6:6f:33:b8:c7:33:8b:e7:fa:71:f7:52:72:d5:12:
45:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:49:1A:28:59:F1:1F:40:7A:44:EA:7E:D0:4F:08:9F:3A:20:3F:C8
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:28:a4:00:b2:18:57:c5:c8:0c:db:a2:82:09:5d:27:da:ea:
dd:23:11:ce:ba:9e:e7:e0:4f:39:2e:3d:07:a4:5a:d4:2c:89:
69:81:58:3b:51:30:fb:5f:4f:ff:da:0d:41:b5:8b:9c:7f:27:
23:61:6f:eb:ed:4b:09:8a:f7:b8:ae:3d:0d:46:55:e3:6a:bd:
05:ed:fe:3a:a0:7d:96:26:6e:77:8b:3e:c6:66:d0:d3:31:50:
02:cc:c5:f5:f0:0c:cb:65:f2:2c:d8:1e:42:da:3a:8f:d0:37:
8f:36:9d:7c:e3:32:c6:0f:e2:00:c5:e7:b6:67:a6:41:51:56:
03:3c:3c:25:8c:f5:ae:79:83:dc:9b:be:d4:8a:b1:00:52:98:
2d:8d:0b:b5:14:be:55:67:75:19:8d:f7:cb:b3:20:fb:32:d0:
f6:48:5e:bd:cc:51:44:1b:30:1b:65:a1:1c:65:21:ce:e2:4a:
21:cb:9e:e6:a8:36:e8:72:5b:7d:8a:44:70:6f:36:78:dd:22:
f7:ef:8d:3c:64:17:84:c9:72:5e:3f:6a:cf:92:c2:69:45:f0:
5f:cd:6e:0b:51:21:58:5e:a8:71:25:bf:d8:14:72:9c:b8:1f:
1b:a5:71:2c:fd:e0:d6:7d:e8:31:7c:a7:ce:02:4e:76:71:a5:
01:a5:46:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 23:39:50 2026 by rpki-client