Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: TFpHzMQ86MXmp/lWM1gr66b6S1+vBxMxYrMSAzDrLCk=
Subject key identifier: 4C:E1:CB:47:B3:49:FC:43:0B:21:77:20:84:4E:E8:EB:25:7D:77:68
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 019D51EE0061631F4884A88B39E6904DF4DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 164F
Signing time: Fri 03 Apr 2026 06:00:45 +0000
Manifest this update: Fri 03 Apr 2026 06:00:45 +0000
Manifest next update: Sat 04 Apr 2026 06:00:45 +0000
Files and hashes: 1: FD1D3tD8Wgemy0D_hjVkHNyyffA.asa (hash: dC2+srWHZQSVqWN4gNxQ5m+5yJw+nSPbHERxoSOT3g8=)
2: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: WoWmIy4EwNQOHvPjWJkHGlacWYNfUm+QOPBb/LhN2V4=)
3: Ygz8nv_cil4CTr3aZUug7yPj4v8.roa (hash: PHkNGvc8VFiKuUZOzOtLVzJuZVZBuOD5WdBuF+PV+G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 Apr 2026 00:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:51:ee:00:61:63:1f:48:84:a8:8b:39:e6:90:4d:f4:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: Apr 3 06:00:45 2026 GMT
Not After : Apr 4 06:00:45 2026 GMT
Subject: CN=4ce1cb47b349fc430b217720844ee8eb257d7768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e2:bb:4e:22:94:2e:88:69:09:de:de:8d:c9:
4f:b2:7d:de:9d:e2:0e:55:b1:6d:04:a6:97:8f:5a:
0f:5c:a7:0b:67:17:68:37:a1:f3:90:f4:94:50:e2:
5c:d9:db:a2:49:dc:be:d8:24:a1:38:8f:35:4b:11:
41:de:fb:43:95:c6:58:4d:33:e7:a7:73:0e:9b:67:
ca:f0:ee:73:a7:33:13:08:48:f2:b4:46:f4:76:c2:
bd:de:d9:9f:a1:de:da:9d:d6:d9:ba:2a:d1:c9:72:
09:76:d3:c5:45:71:49:c9:63:90:c9:36:2f:0c:83:
e5:9b:40:2d:05:83:9e:94:03:26:17:0c:82:fa:75:
a6:04:c9:74:a6:07:63:e0:58:1a:13:bd:c1:6f:29:
63:0b:96:16:a2:96:0d:7e:5f:81:ae:72:10:08:33:
8b:eb:b7:92:42:95:54:62:54:3b:76:de:10:49:c2:
ca:a0:1c:15:47:64:31:9a:7d:ce:e3:81:57:1e:33:
41:64:12:45:b6:b1:c2:b9:1e:da:ac:23:64:ee:aa:
40:63:af:68:5d:0b:61:14:44:35:07:f4:99:5f:dd:
c4:9d:17:eb:00:17:a8:40:88:ee:3e:a4:dc:9e:ec:
26:0a:69:1f:b7:40:8c:16:51:f0:48:4a:44:3b:2c:
8f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E1:CB:47:B3:49:FC:43:0B:21:77:20:84:4E:E8:EB:25:7D:77:68
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:4f:4e:50:14:5c:73:9c:f8:31:8d:ee:d0:6f:80:ee:45:cd:
a0:85:7e:a6:f9:3c:ea:56:5d:f4:e4:2a:c3:a4:4a:fc:fa:27:
02:12:09:af:19:30:2e:44:8f:d8:2e:d1:5c:9d:ca:1c:36:14:
5d:85:8f:85:77:e7:31:38:91:f5:f3:c2:ef:ff:9b:75:f1:de:
f6:90:a7:74:dd:97:e3:f2:00:40:7d:1f:15:f9:a8:39:8d:3b:
82:7d:53:6a:22:67:e0:c1:c6:3b:90:9b:4e:57:d1:2b:71:29:
fc:f6:f7:54:67:83:ca:da:7f:45:32:4a:53:2a:12:e0:1a:c9:
fc:9d:9e:3f:2d:09:88:24:2b:17:2f:00:e3:a5:f5:c0:af:8c:
80:c8:3e:8c:4b:1b:10:be:f1:8f:65:45:7a:f8:52:2e:d5:b5:
69:83:3f:96:19:5b:04:40:82:d6:a8:17:d1:cf:19:03:94:00:
67:56:89:60:c1:93:46:b5:91:7c:7b:4f:8e:57:f1:b2:b4:be:
d7:fb:18:2c:6f:50:9b:28:2b:d3:86:80:fb:17:e8:2a:e0:7a:
a9:ea:bd:24:14:7b:f2:1f:c1:19:46:c4:94:cc:85:44:d4:4b:
a8:04:ab:b2:b9:90:8d:99:71:0c:ce:8b:a2:0a:a4:cf:29:58:
ef:d4:75:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 3 08:54:55 2026 by rpki-client