Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: 8lkHSxq3X2CH5PEvXps0YezKN0cmt57I1nw70e1tL5M=
Subject key identifier: 31:67:C7:6E:0F:23:DC:0D:0F:37:CD:C4:1C:2E:BD:8C:D9:14:1E:88
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019E31F2FC4F74B133A73F6D35705D2ABB9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0E32
Signing time: Sat 16 May 2026 18:01:08 +0000
Manifest this update: Sat 16 May 2026 18:01:08 +0000
Manifest next update: Sun 17 May 2026 18:01:08 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: gJakMQrXBjc/b3nrKtrCMr/j4IzFhQzPoMadO/YQEic=)
2: bdOQfAWdL7wiwVEQoYOuUBY_f9o.roa (hash: nNRgBnyPBnuWyk/W/uELLwEd7uoijhFF49TNbx1XS78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f2:fc:4f:74:b1:33:a7:3f:6d:35:70:5d:2a:bb:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: May 16 18:01:08 2026 GMT
Not After : May 17 18:01:08 2026 GMT
Subject: CN=3167c76e0f23dc0d0f37cdc41c2ebd8cd9141e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:a1:7b:63:92:b2:f3:46:54:fc:a7:57:cb:
cf:2a:b8:83:9f:d4:5e:3a:ae:02:ef:d3:99:4d:b7:
27:eb:ae:69:31:e3:cb:e7:6c:9b:b5:64:e2:23:81:
25:41:02:7c:5d:5d:d6:27:b3:bc:d2:be:8b:ef:d7:
47:62:95:03:2d:da:fa:68:87:fa:a4:33:9c:63:ec:
a9:0c:cb:e8:9d:f1:b5:f8:6c:37:b9:0c:12:bc:85:
35:6c:50:bd:0c:72:f1:61:92:03:2f:0d:75:b4:5f:
3a:fb:c4:d1:95:1f:22:aa:47:19:1f:da:01:f0:57:
28:85:b5:00:04:71:72:85:06:1e:11:a0:7d:32:6d:
91:ae:04:b5:cf:c7:f1:5d:87:6c:57:8d:f3:00:e6:
08:23:30:00:a1:44:35:f3:b5:d6:cc:60:4f:ef:7f:
7f:b7:f2:c8:d5:6d:2f:d8:27:53:c4:c0:7e:15:38:
4c:78:0c:77:ac:a4:2c:bd:44:dc:18:3a:b6:70:63:
16:3e:e2:98:a8:f2:d2:60:6e:15:56:f2:7f:dd:7a:
6b:73:01:b7:dc:36:4f:eb:c3:09:4c:b7:9a:b2:b2:
b6:d8:e6:69:6f:70:ba:44:69:cb:84:1e:48:97:0b:
49:c4:a4:ac:b0:6e:bb:45:3e:b7:7a:c0:a9:05:2b:
49:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:67:C7:6E:0F:23:DC:0D:0F:37:CD:C4:1C:2E:BD:8C:D9:14:1E:88
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b8:3d:44:6d:4c:88:28:91:e8:10:5a:6a:b2:b1:ed:00:44:
f4:cd:36:0b:21:07:5d:16:b5:75:5f:6e:6b:bb:9d:4a:cd:42:
d5:61:5e:5c:75:b6:bf:b7:42:7c:22:c5:70:88:c0:f0:95:fe:
5e:ab:d0:71:82:2e:b7:9e:dd:2f:83:75:7b:a7:8f:b2:45:7f:
ee:4d:dd:15:72:f8:48:ac:f2:c5:94:59:75:09:32:67:e9:8f:
7e:78:80:ee:83:c2:14:d9:56:0d:e3:dd:84:2c:cd:28:8a:f1:
0e:8e:78:cc:db:c0:5a:97:85:48:2a:12:b1:03:f5:89:bf:c8:
2a:09:c5:19:a0:cc:bf:de:b2:76:82:c5:c2:c3:80:40:79:3c:
3c:d3:96:6d:c9:4c:f8:67:bc:ce:37:4a:e5:db:9f:a9:c3:32:
6b:7c:d8:8f:25:86:44:2d:b8:b1:46:35:1b:01:5e:e6:ea:7c:
3a:88:3e:93:ad:d9:10:60:e4:f4:d3:9b:e9:29:d2:07:93:ce:
3c:a0:a8:ed:8f:a8:e8:7a:f2:ec:50:85:96:90:36:78:b6:c9:
ab:86:2c:92:8c:3b:87:db:66:68:32:a7:28:4b:48:57:67:f1:
c4:c2:e8:d1:25:9e:63:55:41:05:54:19:0a:27:76:6b:67:da:
95:f3:99:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:14:29 2026 by rpki-client