Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
File: HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft (raw, json)
Hash identifier: WI82BT7WUVLusEZShCWLhT9nS+COz8Vl6QAGhiaztpc=
Subject key identifier: 5C:F2:A1:6C:47:61:16:36:4F:A5:3F:44:77:5F:91:99:CC:08:0C:9E
Authority key identifier: 1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
Certificate issuer: /CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Certificate serial: 019D382E438EC0EDCA86E3719A170628C7E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 06:00:49 +0000
Manifest this update: Sun 29 Mar 2026 06:00:49 +0000
Manifest next update: Mon 30 Mar 2026 06:00:49 +0000
Files and hashes: 1: HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl (hash: mW16/Gs/My1jYbbe74Oqt63HTCx9zQD4N5PAj44QPUM=)
2: oIEkw3PCXr1UYdRnKr9q4Q6XWcs.roa (hash: v1OkVWqraYOFjsEZ3LFnKjFEiGungWJLb2B2UAHBg6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:43:8e:c0:ed:ca:86:e3:71:9a:17:06:28:c7:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea0c823c360b5f8614892d35b103c64774fd65d
Validity
Not Before: Mar 29 06:00:49 2026 GMT
Not After : Mar 30 06:00:49 2026 GMT
Subject: CN=5cf2a16c476116364fa53f44775f9199cc080c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:96:78:83:fd:94:a3:15:10:3c:e3:0c:f7:f8:
ec:6c:37:d4:10:33:e6:ab:05:fc:ef:e9:e5:9c:a9:
90:a8:8d:1b:73:34:e5:64:d2:9b:ba:46:89:17:03:
e7:59:d7:bb:cd:b4:46:f9:26:7c:a5:9a:e2:c8:d0:
9b:fa:66:83:15:66:f0:0c:97:71:2f:25:8f:57:23:
0e:34:07:71:f7:ef:b6:e1:8f:3d:e2:56:3c:64:5c:
a4:ed:27:d5:df:92:2b:cd:a2:7d:d4:64:49:81:55:
90:df:e6:db:1d:19:c7:6c:2c:14:46:c4:2c:56:f4:
5e:8c:9b:5b:a3:5c:c4:13:73:7a:cb:1f:89:da:a6:
1d:36:5e:b3:38:6e:ee:e9:b4:e9:dc:32:cc:75:09:
08:9d:ee:2c:8b:1b:d5:27:f5:c5:dd:b5:98:dd:3e:
6c:b3:d4:dd:fe:54:a5:66:47:85:f7:44:2f:2f:9b:
57:df:2b:93:0d:51:74:b7:7e:ba:c1:81:07:a3:9c:
c7:05:e8:9e:15:35:96:a8:92:a6:e9:6d:01:17:ec:
af:d2:f3:52:28:7f:54:5d:2a:ae:d3:a4:85:ca:70:
c1:e0:16:81:8f:d1:68:82:d2:2e:ce:ee:9e:cc:ea:
78:ca:bb:55:f3:1a:9b:ce:bb:1d:34:e6:6a:d5:be:
50:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F2:A1:6C:47:61:16:36:4F:A5:3F:44:77:5F:91:99:CC:08:0C:9E
X509v3 Authority Key Identifier:
keyid:1E:A0:C8:23:C3:60:B5:F8:61:48:92:D3:5B:10:3C:64:77:4F:D6:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqDII8NgtfhhSJLTWxA8ZHdP1l0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/492615-8162-4b37-bcbb-5c0d057ef2a6/1/HqDII8NgtfhhSJLTWxA8ZHdP1l0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:c2:0d:3f:d7:71:9b:24:1f:e5:31:a1:ea:d9:eb:d4:6b:25:
6f:c0:9d:9f:1f:26:13:84:d6:e6:c6:72:03:55:ce:66:b9:55:
b3:f1:7c:a5:3e:83:94:0c:c8:e2:cb:4b:02:ae:b9:b4:37:73:
be:46:f3:23:b4:2f:6c:80:bd:95:35:38:ec:02:1e:e5:2d:cf:
55:fd:b9:3b:b9:57:24:42:db:cc:c7:e1:1f:a9:83:d1:fe:5a:
b1:33:81:2e:db:fb:38:9e:2c:28:ea:61:5e:1d:1e:95:61:88:
9c:28:ac:cd:f5:c7:77:be:62:32:a6:6e:9f:79:92:5f:3f:0b:
47:5e:65:cc:5e:85:a8:38:d0:a9:54:08:41:34:94:3b:c0:54:
ec:72:aa:59:37:f3:48:22:d7:88:63:ab:ca:7d:4d:23:d4:36:
97:89:01:2c:53:8a:aa:88:40:33:78:2e:7f:48:83:cc:d0:36:
72:e4:60:b9:73:20:47:67:5c:17:c9:f9:38:36:a1:84:f1:4e:
bb:6b:db:96:b5:c9:7d:10:a0:ae:cd:c0:00:2f:01:d7:a7:17:
14:2b:73:d1:c7:b6:3e:c5:7e:cb:51:a7:aa:de:26:6f:ce:a2:
06:b3:d3:94:99:d4:9b:c6:32:4d:2f:0f:c5:c8:1b:b6:3b:a8:
b6:ed:06:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:20 2026 by rpki-client