Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
File: hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft (raw, json)
Hash identifier: 6tiBvH0OqBTiHEfwEd/0xHhEqq9ZsU0y48gycKdeXU0=
Subject key identifier: AF:93:7D:31:51:CF:01:B9:B7:D0:E3:16:D5:D1:38:70:03:AE:E8:21
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 019CB249252F7FA00954EDBC880A758E39E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
Manifest number: 184B
Signing time: Tue 03 Mar 2026 06:01:03 +0000
Manifest this update: Tue 03 Mar 2026 06:01:03 +0000
Manifest next update: Wed 04 Mar 2026 06:01:03 +0000
Files and hashes: 1: Xt9gim6uGZAO-XoH9YVT_sjrnmc.roa (hash: EDOq5gPDJvJThydl2Ogu3GFdpWlVfncejE+dMuzQn70=)
2: c06039lKyV_J6xBbo-T4U-OvKpY.roa (hash: iZi7artEej/ZvwjEPmdFR6zAlAdw9xNqyuBRvLMxbow=)
3: hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl (hash: m7kAk5zMGurGJOUnNyKhcUaxXwrJ80+qgBopC5EQBuk=)
4: oEY0i9r3K2XzpeIqb_uHhC_ZJf8.roa (hash: eStOq03pWfBN0BFsIv2si494zM3pBol5A5EHh+T2UJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b2:49:25:2f:7f:a0:09:54:ed:bc:88:0a:75:8e:39:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Mar 3 06:01:03 2026 GMT
Not After : Mar 4 06:01:03 2026 GMT
Subject: CN=af937d3151cf01b9b7d0e316d5d1387003aee821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4d:fd:5b:d4:0b:66:b3:84:75:35:6f:b2:f3:
7e:c6:0d:b6:2e:9f:34:f3:34:29:e2:0e:3d:b6:46:
d3:98:7c:d8:f2:6f:ba:f4:70:28:e5:94:98:94:27:
a1:13:af:0e:69:f3:7b:72:4d:74:0a:c7:50:98:b5:
59:cb:49:b8:9a:ac:c8:c1:6a:4d:f2:70:b2:a1:a1:
75:81:75:df:46:fb:22:10:d2:f7:41:2d:9a:4e:c6:
4e:62:21:bd:e1:22:0d:d7:09:54:b3:9c:36:81:6c:
8c:a2:95:cc:59:fb:59:0e:3e:77:bc:6b:ad:bc:37:
5a:69:76:2c:81:d9:de:c7:1a:86:3d:78:1e:3c:28:
dd:a6:34:e8:e4:47:f9:b8:5a:f8:b1:1f:cd:97:b3:
1c:24:85:14:02:a9:e3:21:ac:aa:06:7f:62:a3:cf:
79:2d:bc:78:35:93:e5:77:3e:a1:d4:27:42:12:fe:
04:4d:23:75:fe:f4:ce:e4:a0:56:b9:9d:1e:d9:1b:
78:1b:5b:f2:ed:81:f2:ba:75:14:93:3a:0c:7f:77:
18:56:cb:02:1e:b5:f1:40:be:52:13:e5:80:f4:7c:
41:1a:3a:8d:85:42:ab:92:7a:60:0c:b3:59:36:63:
db:5a:97:67:f5:16:1f:4a:1e:0d:68:67:b1:b0:5e:
85:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:93:7D:31:51:CF:01:B9:B7:D0:E3:16:D5:D1:38:70:03:AE:E8:21
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:2a:c9:ac:4a:ae:2b:a0:71:1f:52:ce:9f:73:19:87:72:65:
73:ad:9b:84:e1:65:3c:90:4b:5f:e7:ee:ba:b7:22:f3:d6:d5:
95:61:d1:7a:1d:f2:77:e3:7e:1a:fa:3e:ad:08:76:bc:59:73:
30:24:85:77:73:aa:d1:fd:af:b4:be:94:e7:4b:4d:2b:f4:e4:
9b:c3:ed:62:89:c0:1a:9a:87:6a:9a:c4:0a:ea:d7:f8:85:8b:
b7:0e:79:60:df:5b:aa:66:0b:ab:64:40:16:a8:15:fb:2c:62:
f0:9e:a9:bb:a6:09:e1:a0:5c:d3:9d:1c:e2:d3:51:cb:8c:59:
6e:44:26:cb:7d:47:dd:bc:99:c3:e0:01:49:ef:a6:57:dc:cb:
a2:3e:da:b2:e9:7c:1c:99:cc:6e:41:35:9b:0f:74:78:ea:a1:
08:d4:e6:d2:33:07:91:9d:6a:f8:d0:22:02:82:76:23:b9:73:
b0:55:94:76:6c:28:6b:5f:dc:b4:dd:48:b6:97:32:1b:78:a5:
f5:f3:fb:c6:45:de:b0:69:06:13:c7:2b:38:c5:81:44:08:bb:
88:e9:2c:a5:98:1e:d5:c3:f7:db:c6:64:7e:3b:0f:88:15:6e:
ca:50:6a:64:34:09:9c:94:61:8d:f7:9d:17:ff:3d:1f:91:e4:
04:86:39:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 14:27:45 2026 by rpki-client