Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: O1D3UbqInVi4MCy/dBHDj6ZcYgvKx08qOVZYQP9F4MU=
Subject key identifier: E8:95:F7:36:BF:27:50:C5:82:37:76:68:63:E5:3F:78:33:9C:72:D9
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019D3866045A6C47779D6F3DE303B2C1B955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 175B
Signing time: Sun 29 Mar 2026 07:01:43 +0000
Manifest this update: Sun 29 Mar 2026 07:01:43 +0000
Manifest next update: Mon 30 Mar 2026 07:01:43 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: Yt9B9U4CwxKtCTCzNtODHddqyZYbMVux0h1GyY8+q0w=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:04:5a:6c:47:77:9d:6f:3d:e3:03:b2:c1:b9:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Mar 29 07:01:43 2026 GMT
Not After : Mar 30 07:01:43 2026 GMT
Subject: CN=e895f736bf2750c58237766863e53f78339c72d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:83:67:8f:a6:4e:b0:8e:de:d8:c1:b8:5b:62:
35:4e:d3:ef:4c:5d:b3:41:35:de:f0:c2:89:73:e4:
60:09:7b:55:b1:3b:b3:22:f7:f7:53:52:51:02:62:
fb:b0:42:f8:d3:cb:57:61:e4:44:f1:54:40:9a:f4:
03:1b:ae:30:aa:10:73:72:e8:29:12:44:99:16:61:
10:25:e4:ad:2a:8f:f0:32:c7:a5:71:63:5b:e9:f9:
67:6f:d4:e0:f6:f7:71:47:af:b0:a3:fa:92:eb:48:
6c:12:56:5f:24:be:89:7b:e4:f9:14:30:52:f1:37:
9e:19:3f:62:20:22:6b:92:ea:d1:e7:42:d2:3a:32:
ef:29:06:bf:e8:a8:9e:28:42:f2:df:d9:fa:a1:1b:
0d:31:e2:3e:00:6e:4d:c1:2b:1d:1e:f0:17:1e:d0:
e2:aa:ac:fc:cd:50:9c:be:cf:97:11:df:f2:97:a6:
94:e6:ba:32:e0:a5:74:cd:4d:78:24:57:7d:01:13:
1d:0e:45:e2:bd:ad:68:f6:d6:6f:ca:6d:6a:dd:4b:
55:bb:7d:ca:54:db:36:4d:e5:55:80:c1:ce:61:eb:
48:13:c2:b7:1c:e8:f7:59:4b:60:92:a7:67:51:bb:
bb:55:4c:ba:9d:a7:16:e7:40:a0:02:2c:cb:d1:6a:
24:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:95:F7:36:BF:27:50:C5:82:37:76:68:63:E5:3F:78:33:9C:72:D9
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:63:b6:7c:c1:02:a9:a7:c0:5e:40:cf:97:57:21:ae:0a:df:
6d:49:e6:d2:6c:15:f3:1f:26:81:0a:c5:52:bb:a9:3a:75:9f:
4d:16:a0:30:d3:70:4c:3f:a7:fa:6f:ec:6b:2b:99:ab:b5:23:
b8:60:2d:0e:51:87:0f:5b:e2:6a:ad:92:94:80:6a:94:92:22:
a3:6d:b9:f9:e2:b5:fa:c1:b8:f5:82:87:9d:bf:81:c5:aa:9e:
0b:60:8e:62:1d:14:be:28:7c:27:7d:29:87:84:69:09:3c:fa:
2d:d7:79:85:bc:28:62:7e:3e:68:c2:c2:9e:2c:72:01:93:5b:
74:98:26:2e:7e:35:e6:d6:b2:72:cd:06:64:e2:14:c2:c0:0d:
87:22:88:9e:2b:3f:64:f2:45:32:f6:e0:ca:c6:91:d2:d6:90:
ab:ba:a4:b3:9e:b0:e3:21:6e:de:d1:be:fd:5d:bd:b8:aa:12:
a1:e4:33:fe:0d:47:6f:ae:e2:73:ad:f2:6f:63:f8:1e:ca:d6:
9c:60:9c:5a:5a:bb:30:1d:d5:34:02:f5:f0:1a:3a:c8:38:b3:
65:e0:e6:e2:b3:33:71:d2:69:40:9c:cf:f3:ad:53:15:60:0a:
38:0d:6d:94:af:a9:25:a0:39:46:ee:4e:3e:1a:63:91:2a:88:
a5:88:90:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:27 2026 by rpki-client