Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: VFh9T5yRMWhMn+c6urjHtdyCqiVWhuCP6crV7+KiIwc=
Subject key identifier: EE:72:92:C1:64:B5:80:DD:52:BD:4F:11:3D:95:E6:EC:40:FF:4E:59
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019F19B1F7D69CE5CFF178576B16CE5626EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0EAA
Signing time: Tue 30 Jun 2026 18:02:01 +0000
Manifest this update: Tue 30 Jun 2026 18:02:01 +0000
Manifest next update: Wed 01 Jul 2026 18:02:01 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: 9QBXXdd+oEwpyZXhFZoOdSqYgH4775YaIaAKX/3KQYc=)
2: bdOQfAWdL7wiwVEQoYOuUBY_f9o.roa (hash: nNRgBnyPBnuWyk/W/uELLwEd7uoijhFF49TNbx1XS78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:f7:d6:9c:e5:cf:f1:78:57:6b:16:ce:56:26:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Jun 30 18:02:01 2026 GMT
Not After : Jul 1 18:02:01 2026 GMT
Subject: CN=ee7292c164b580dd52bd4f113d95e6ec40ff4e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:5f:3b:f1:3a:e6:08:af:1b:25:28:3a:33:a2:
8a:51:c5:83:83:ba:c3:95:17:bd:6e:c9:b5:2b:1c:
8c:ef:fc:3d:71:c4:7d:ad:ee:4f:05:d2:98:a7:f2:
ea:1d:fb:cf:fd:13:75:73:3c:d0:3d:3b:cc:4f:da:
51:0f:58:a0:74:41:89:f0:df:5a:43:22:a2:3a:1c:
3c:02:b8:04:12:63:dc:09:1b:cd:86:18:1d:24:d7:
13:f9:5a:15:7a:8e:58:2e:4e:ee:b4:5f:34:11:26:
8b:55:b9:cc:a5:b1:f0:53:8b:37:94:dc:f2:6c:ad:
ec:44:43:93:df:b4:41:83:1f:36:c9:fc:23:1d:fd:
94:33:d5:82:f3:67:6d:d1:8d:3f:c7:b1:5a:d0:15:
59:88:eb:42:05:95:09:0a:79:df:77:51:bc:e5:e3:
63:32:9e:99:41:d4:3c:cc:44:e3:b1:27:82:8c:08:
3b:7c:c1:fa:0f:af:8d:de:fb:4b:7f:6c:b8:fa:6b:
ec:0a:5c:4b:55:6a:23:da:19:33:47:83:00:46:b0:
63:b4:35:9c:e8:7c:38:eb:27:e1:9e:bb:a9:df:3c:
6c:d2:e5:4e:67:1e:3c:20:96:06:01:0b:2a:60:a0:
c2:e8:92:ee:50:93:46:19:49:16:27:89:8c:02:4a:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:72:92:C1:64:B5:80:DD:52:BD:4F:11:3D:95:E6:EC:40:FF:4E:59
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:43:21:9f:10:33:80:a5:92:b7:54:53:be:a9:6a:83:eb:f1:
ce:09:09:20:ca:b6:88:98:de:e1:d4:57:1d:c9:eb:85:86:10:
3f:ae:3b:19:22:df:fc:4f:2d:71:84:b9:c3:71:2d:7f:51:35:
4f:bf:ec:b1:3b:b4:89:07:4b:95:fd:4d:d8:29:38:95:27:8a:
e7:c7:05:1b:b0:51:6e:59:5e:c1:a6:ba:ea:30:26:61:df:ad:
a6:5f:c5:43:65:23:54:b0:a4:d7:1b:71:f0:3b:22:00:94:51:
ef:a2:c3:c0:18:01:04:aa:de:1c:8a:42:5c:6d:42:e6:d9:44:
f2:94:73:92:e8:43:2e:75:73:5f:33:d3:ae:bb:81:65:0f:15:
39:46:4e:6d:6d:c2:ed:fd:58:eb:15:98:1f:fa:01:bc:1e:15:
18:33:1f:7c:c5:4b:5c:91:03:73:6d:08:ee:9c:c0:0e:a1:c7:
95:12:1d:14:00:2a:2a:c5:68:a0:9a:02:51:d2:b5:0e:64:df:
0f:a3:7e:d0:a9:49:40:d8:c8:89:d9:7a:f9:b2:fd:3b:d4:5e:
5a:85:6e:6c:b3:86:ff:9b:ed:f6:87:78:00:b1:a8:3b:13:40:
a3:8e:b9:f5:a8:7c:4e:56:96:a2:df:f6:7b:56:75:1d:e3:71:
ca:cf:3e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:20:00 2026 by rpki-client