Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
File: HqvXZaBQUv7FmmonPV70v8ekA1o.mft (raw, json)
Hash identifier: 3W3PIp4DErs0655GKZCgX5cZ0zlTng74djBeFKWKV5c=
Subject key identifier: 21:D2:5A:BD:7D:69:84:4C:F5:CD:D7:6A:5F:2A:1A:5D:17:61:65:86
Authority key identifier: 1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
Certificate issuer: /CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Certificate serial: 019D37F71CC3D685D83C8E39630C4122C6DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 05:00:34 +0000
Manifest this update: Sun 29 Mar 2026 05:00:34 +0000
Manifest next update: Mon 30 Mar 2026 05:00:34 +0000
Files and hashes: 1: HqvXZaBQUv7FmmonPV70v8ekA1o.crl (hash: eBAiZukNZT+vxLvxZ5H3X12r7/fdglDb/iWkKgPdg3U=)
2: w0osmDfeySxstGXd2QPz-B9mx_w.roa (hash: 44dvBeQTpGg4qqAvOjd/EibsEADF1B8V+4jebvfoamM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:1c:c3:d6:85:d8:3c:8e:39:63:0c:41:22:c6:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Validity
Not Before: Mar 29 05:00:34 2026 GMT
Not After : Mar 30 05:00:34 2026 GMT
Subject: CN=21d25abd7d69844cf5cdd76a5f2a1a5d17616586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ff:8c:8d:91:d2:a2:99:a8:fa:ec:4f:ec:77:
4f:e5:95:a0:ed:bd:51:11:4d:be:7c:d5:48:9f:0c:
c7:d3:ee:8b:75:1c:fd:05:02:d4:8c:09:11:68:e0:
4b:8a:16:ea:4b:95:82:fd:32:22:c9:d2:84:7f:3c:
df:d2:49:33:65:db:78:1d:e8:a5:d9:c6:44:34:8b:
75:bc:c1:a5:50:a8:83:38:87:53:cc:fe:55:df:3c:
3f:7b:ef:5b:d7:88:c9:44:87:08:ae:9a:fe:05:f4:
29:42:2a:3a:25:16:b6:19:4f:91:af:a7:17:ad:9b:
85:f4:15:11:06:48:d4:6a:8a:6c:be:ee:a0:27:a3:
2d:0a:c3:46:a4:0f:72:f1:30:3f:eb:5f:91:fd:d1:
cd:74:ee:7e:f6:c5:68:57:9a:bc:0a:33:7b:4c:92:
54:c0:54:c4:0d:d8:3c:f2:f1:fe:a3:fc:84:82:6d:
a9:e2:47:7b:1d:e3:30:fb:27:b8:cc:02:93:bd:81:
83:bd:95:56:46:5a:0d:59:16:12:c4:26:f5:58:1b:
39:16:11:e5:7c:9d:a8:d0:b0:84:0a:9f:4d:97:0a:
a0:bd:bf:e0:08:22:7b:e7:bc:9f:74:4f:b7:24:f8:
af:17:80:c6:d3:aa:4d:36:3a:b4:ef:26:fd:7c:4b:
a1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D2:5A:BD:7D:69:84:4C:F5:CD:D7:6A:5F:2A:1A:5D:17:61:65:86
X509v3 Authority Key Identifier:
keyid:1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:cb:8a:db:c7:ef:43:c3:34:99:c5:bd:7f:09:36:1f:a6:27:
d2:eb:f9:37:de:4c:cd:fe:7c:c0:b6:b4:6b:22:16:ee:40:d2:
84:30:74:0e:7f:87:68:31:23:e5:6b:0a:d8:85:92:ce:1b:38:
3d:4b:70:01:69:3d:3e:9c:1f:f2:f5:15:c1:2d:08:41:de:60:
97:e2:d4:b5:32:b5:e4:a2:5a:7e:f4:e3:f9:e5:ba:4a:4c:8f:
c3:f5:09:09:dc:c6:f5:4e:53:b2:91:5a:a2:5d:62:6a:8b:fb:
13:73:4d:a2:fc:6b:1b:06:04:b2:c8:fb:6a:eb:76:c5:e3:3a:
31:1e:3c:a3:6b:ec:4f:19:30:74:e3:f4:6e:0f:a1:31:7e:6b:
c3:f8:de:fe:df:48:22:88:b6:f2:ab:b4:61:1b:4c:1e:d5:d1:
3e:58:18:2c:51:8e:6b:c9:40:20:b6:30:50:88:64:97:9a:a4:
13:7e:85:fc:d4:70:b3:9f:4b:14:4f:84:da:72:81:29:b6:8c:
33:4f:4e:d3:b3:bf:33:8a:c4:d6:99:4e:b5:3e:c4:6a:7d:92:
de:3b:03:e5:be:8d:8a:de:f8:96:05:b9:b4:a0:6b:ec:b7:7a:
82:1f:f5:d1:c4:bf:11:e3:e6:90:a2:8d:41:1e:ca:f1:e8:92:
48:8f:78:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:18 2026 by rpki-client