Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: YAhkWoQrq7q6WY1WGU4IbGAAvJRBONFvldujhjWibvY=
Subject key identifier: 7C:3F:5B:1D:32:56:84:45:68:2D:22:C3:FC:E8:16:F3:6B:DF:EA:07
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019E5259DA33393215A60DC36C73BDC4B126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 17ED
Signing time: Sat 23 May 2026 01:01:20 +0000
Manifest this update: Sat 23 May 2026 01:01:20 +0000
Manifest next update: Sun 24 May 2026 01:01:20 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: Wiz0q+jiHHk24FeoNGAmC65mY6KYIvRdXW/aVT274/Y=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:52:59:da:33:39:32:15:a6:0d:c3:6c:73:bd:c4:b1:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: May 23 01:01:20 2026 GMT
Not After : May 24 01:01:20 2026 GMT
Subject: CN=7c3f5b1d32568445682d22c3fce816f36bdfea07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bd:36:05:9f:c1:3a:b5:d8:cf:99:df:13:83:
50:3d:9c:f8:b0:c9:f6:16:c5:54:90:f3:62:a9:04:
29:bb:8f:1f:cd:13:5c:74:ba:57:12:90:3e:93:e8:
27:62:f2:1b:85:7a:d6:54:d7:5b:f0:cd:29:59:72:
27:22:99:68:53:e1:9b:19:66:6b:24:51:4b:2e:03:
1e:02:b0:e5:79:df:63:4a:a7:0f:e2:d2:37:95:11:
b5:a2:90:28:54:56:3d:91:b4:ff:10:10:19:d6:86:
e9:fe:4e:db:39:c8:c6:bc:45:aa:29:cc:f0:75:0a:
ff:44:f4:16:05:67:e1:89:c9:83:6c:17:e3:d5:14:
5e:74:60:21:9e:40:f8:33:40:1b:19:71:3e:e1:c7:
0c:53:15:57:26:e6:e1:4c:a5:39:06:3c:80:b8:f7:
7c:fa:a4:b0:b6:2a:c5:9f:6a:96:0c:52:ed:53:73:
a1:9d:8a:08:8d:4f:b7:83:8c:42:9b:20:99:b7:95:
0e:43:1d:5e:20:69:e9:c1:b1:b1:71:c1:f6:93:39:
54:12:4b:5f:c0:64:13:cd:7e:3d:a4:a1:28:28:2f:
97:a3:91:e9:9e:9c:89:2f:56:0b:7a:dc:ab:27:55:
18:21:99:8b:59:99:a3:53:6e:65:5e:b9:c8:ec:ec:
b5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3F:5B:1D:32:56:84:45:68:2D:22:C3:FC:E8:16:F3:6B:DF:EA:07
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ca:11:4c:64:22:37:92:c6:66:a8:ed:0d:b3:2f:90:55:9c:
d3:6d:ee:70:93:6a:fa:90:ee:9e:f0:49:92:6a:a2:a8:c5:0b:
27:81:14:79:dd:e9:4f:63:e9:ff:fb:b5:c9:66:fe:36:72:a6:
36:3d:22:9c:07:dd:35:1c:64:06:3d:52:07:17:e6:1a:19:8f:
f2:85:7a:49:d7:c4:3a:d0:83:50:ab:f9:ef:2d:72:a4:d3:b4:
a9:77:81:da:26:14:59:2d:26:41:65:eb:31:f6:9c:fd:f5:14:
af:0f:fa:75:8b:43:24:6a:4d:1d:c4:b3:9f:3b:aa:d2:47:9d:
84:d3:5c:47:31:31:d9:ad:58:57:89:d0:83:56:00:32:0f:bd:
6d:40:b1:2f:57:67:d0:cc:09:3e:2e:2e:17:46:03:ff:be:64:
8a:bd:7b:01:68:e7:59:66:e7:bb:e5:7a:d0:39:a5:36:e6:96:
3f:2f:12:4f:c8:e2:cd:79:79:fe:6a:0b:2a:36:b9:6c:67:d1:
64:6d:61:e1:ba:9c:f7:86:24:15:90:57:22:f7:e7:50:d2:27:
d7:29:6d:d7:0e:5c:f6:50:1d:d5:cf:e7:ec:ce:d2:73:c3:29:
4f:84:07:5d:ff:b3:40:9e:c4:39:b4:61:24:0d:49:10:2e:d3:
93:a4:5d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 03:48:01 2026 by rpki-client