Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
File: hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft (raw, json)
Hash identifier: 1oPy/18VHdxE+7zsVkUDi25HXHPwEKnN5lI8rkqio0E=
Subject key identifier: E5:FB:DD:EE:80:28:04:99:39:40:94:8A:E6:A5:1A:CD:B1:76:EF:E5
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 019DB133BF64758F46D72C21113906DD8F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
Manifest number: 18CF
Signing time: Tue 21 Apr 2026 18:00:51 +0000
Manifest this update: Tue 21 Apr 2026 18:00:51 +0000
Manifest next update: Wed 22 Apr 2026 18:00:51 +0000
Files and hashes: 1: Xt9gim6uGZAO-XoH9YVT_sjrnmc.roa (hash: EDOq5gPDJvJThydl2Ogu3GFdpWlVfncejE+dMuzQn70=)
2: c06039lKyV_J6xBbo-T4U-OvKpY.roa (hash: iZi7artEej/ZvwjEPmdFR6zAlAdw9xNqyuBRvLMxbow=)
3: hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl (hash: 3a3lVEE3xv1YEWmwChv2bNrblFKCW2qGQ6n1eQd7OoY=)
4: oEY0i9r3K2XzpeIqb_uHhC_ZJf8.roa (hash: eStOq03pWfBN0BFsIv2si494zM3pBol5A5EHh+T2UJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 18:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:33:bf:64:75:8f:46:d7:2c:21:11:39:06:dd:8f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Apr 21 18:00:51 2026 GMT
Not After : Apr 22 18:00:51 2026 GMT
Subject: CN=e5fbddee802804993940948ae6a51acdb176efe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:61:8f:2a:cd:cb:72:7d:33:d3:19:04:d1:59:
6c:83:33:a5:b7:0e:23:28:7e:71:09:ae:2b:52:76:
2b:86:78:f0:c4:ee:8b:84:4d:2c:4d:a2:4c:25:ba:
a2:6f:ec:3f:7c:e1:10:8f:2c:9c:0a:17:14:dc:6a:
fc:30:4f:ce:4d:50:72:75:85:2d:2f:e1:ad:6a:36:
71:4a:c4:e1:59:93:7b:bb:9c:26:cd:14:3c:91:0d:
a5:1f:24:26:71:3b:fd:30:8f:f1:8f:a3:24:84:f9:
a7:b3:ce:8b:d4:12:46:84:db:eb:e8:f4:4b:35:45:
e1:1d:ee:1b:cd:d8:d4:d8:a0:80:0b:85:ae:cf:ab:
5d:55:b4:20:63:fe:67:df:e6:8b:3c:a7:f7:52:3c:
aa:00:36:35:28:9a:6f:38:b5:21:38:e3:cc:b3:66:
fe:b0:c9:69:ec:91:c6:0c:b0:79:b0:2e:43:fd:ab:
c1:6b:c1:d1:61:01:50:b5:dc:b1:c3:bf:e2:fc:34:
55:98:32:02:0a:bc:2b:7f:e9:3a:aa:0e:73:1c:f9:
91:96:f0:04:5d:81:36:1c:90:b1:dd:49:64:19:1d:
fc:94:65:5f:cf:e4:17:48:e1:17:43:6e:e7:9d:e5:
e4:80:0a:7e:46:28:da:77:8d:35:87:c6:1d:3d:69:
66:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FB:DD:EE:80:28:04:99:39:40:94:8A:E6:A5:1A:CD:B1:76:EF:E5
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:93:e5:4b:a4:ce:cd:d7:cb:fa:ee:7b:a3:d1:51:48:20:eb:
4e:a3:65:4d:19:06:b2:63:99:f3:a5:d9:99:d6:f2:e9:e6:b2:
e9:33:67:ba:a9:8e:4d:5c:86:cc:c0:f6:bc:28:91:5d:27:77:
3a:de:52:d8:47:6a:a8:34:6e:9a:69:3a:4c:33:b4:e8:c7:69:
cc:fa:d2:bb:7f:ea:41:96:04:a1:af:e1:fe:86:06:ea:dc:5b:
60:46:20:87:10:f8:07:ea:f2:c9:84:c9:b3:cc:51:18:ee:3b:
82:81:9c:63:1f:1e:00:e0:6d:31:73:35:dc:9d:d7:48:a0:73:
af:eb:79:53:91:1c:2e:c5:4e:5a:d4:6e:79:45:24:ed:d8:74:
fe:72:f1:7a:83:99:90:7b:f7:b2:7f:d5:88:0e:69:9e:f9:e5:
fc:8a:d4:cd:68:cd:cb:72:63:8f:1f:88:3c:80:0e:e3:ad:4c:
b3:10:c5:1c:2d:a8:a3:43:38:43:88:d0:c5:c0:e0:d6:22:87:
a1:d7:32:91:ec:0c:ce:6f:a6:2e:2a:6f:45:e1:92:eb:be:46:
ba:ac:d1:77:00:e9:dd:18:7f:57:08:d3:69:fc:98:2a:38:82:
95:1e:a2:69:30:85:c2:97:66:0d:f2:ac:e3:d8:d6:13:91:91:
72:7a:7a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 02:57:50 2026 by rpki-client