Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
File: HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft (raw, json)
Hash identifier: ON4ZIg+OH8GY8cYG0FbGBol527ms5iTEr4SbQAoA9Bg=
Subject key identifier: 49:E9:47:FA:62:E6:3D:2C:26:29:0D:B4:5A:56:64:E9:11:D1:A5:D4
Authority key identifier: 1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
Certificate issuer: /CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Certificate serial: 019F13412D0318316C07D990B911BB907AF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
Manifest number: 1987
Signing time: Mon 29 Jun 2026 12:01:06 +0000
Manifest this update: Mon 29 Jun 2026 12:01:06 +0000
Manifest next update: Tue 30 Jun 2026 12:01:06 +0000
Files and hashes: 1: HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl (hash: vENmvboFEHDO4Ak/rNclknWbRjcDaceD1vkHGXaM83U=)
2: oIEkw3PCXr1UYdRnKr9q4Q6XWcs.roa (hash: v1OkVWqraYOFjsEZ3LFnKjFEiGungWJLb2B2UAHBg6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:41:2d:03:18:31:6c:07:d9:90:b9:11:bb:90:7a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Validity
Not Before: Jun 29 12:01:06 2026 GMT
Not After : Jun 30 12:01:06 2026 GMT
Subject: CN=49e947fa62e63d2c26290db45a5664e911d1a5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:3a:d6:3d:a1:26:cd:33:49:b7:76:0c:61:
9f:a4:6e:4d:3f:45:df:f7:63:ef:28:8d:54:9b:fc:
48:63:c3:e5:8a:d9:fc:3f:bc:33:0c:48:43:01:d2:
e7:15:f5:22:83:5e:69:d5:a7:0e:78:f9:6f:b2:26:
02:b0:4b:5f:a5:72:a2:20:b5:42:fa:8e:f2:0d:9d:
91:de:e9:15:91:63:06:76:d4:10:22:aa:9c:48:ad:
05:3a:3c:78:3b:e9:c9:8f:c9:ac:b4:ac:f6:08:c4:
59:7f:58:37:41:35:ae:09:ab:dc:03:cb:9c:3c:7d:
7a:4f:75:ae:83:68:a3:2f:c1:a0:de:9e:8c:33:48:
87:25:28:40:65:89:b0:b8:a9:b8:e8:a5:66:c4:80:
d7:79:43:84:66:6f:fc:b2:ee:d5:5f:9b:50:5f:d8:
86:b4:a9:83:12:fe:ad:bf:ca:87:5e:c2:10:d3:ff:
5f:4c:f9:21:5b:6f:85:eb:8c:ae:94:26:1f:47:f7:
e4:33:79:1d:09:d5:95:85:39:b2:c3:d5:9a:3a:49:
68:19:7f:bb:4d:a5:7d:a1:ca:6b:c8:ee:4c:2b:3c:
2d:ec:d1:ad:37:45:bd:8b:7b:f8:c8:5b:63:df:3e:
15:55:aa:e7:a5:39:c2:bd:59:7c:ba:16:40:99:df:
61:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E9:47:FA:62:E6:3D:2C:26:29:0D:B4:5A:56:64:E9:11:D1:A5:D4
X509v3 Authority Key Identifier:
keyid:1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:4a:2d:99:70:6f:4d:94:86:71:66:67:92:33:9b:a8:f0:42:
f5:89:9c:80:03:82:c6:c0:7e:00:e3:da:50:a8:bf:bb:96:e8:
29:58:7d:c3:c9:8f:33:9c:90:5d:61:85:7b:53:ba:8c:a9:bb:
33:26:45:3c:00:7a:74:fe:af:7f:b5:2a:13:b6:12:89:c8:74:
66:fd:d6:95:ea:3a:f8:44:f1:bc:69:1a:0a:b1:e0:51:bf:71:
17:fa:43:2f:50:4a:30:cf:06:fc:a8:00:c1:67:86:5a:f5:3d:
ff:55:1d:55:dc:28:e8:26:1e:6a:22:0c:de:04:74:a8:ff:d2:
1d:da:c6:1d:f3:a2:79:a8:f0:9f:96:3a:09:ce:8a:b4:8e:e7:
0a:d3:6e:74:29:f2:cf:ee:bd:d4:77:ec:b0:b3:51:04:68:34:
13:65:23:46:36:54:75:9c:e8:a0:8c:1f:81:fa:2d:e8:8b:7b:
f7:29:c9:06:ec:0d:c6:d2:cf:81:3d:0e:e6:06:9c:b2:98:5d:
a5:be:ed:5a:18:e9:f8:1c:3e:ab:bb:fd:38:8d:6e:a7:c2:a5:
37:f3:d0:4d:61:dc:c7:13:d0:51:36:3b:1a:02:ae:49:da:e9:
e5:68:ab:6e:af:3b:41:87:b4:e7:c6:30:4a:d0:16:b5:b5:75:
f2:7d:82:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 20:24:25 2026 by rpki-client