Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
File: hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft (raw, json)
Hash identifier: HFSypZ24jyb8pp0z0LbfCO2yP8/vhUJcUm2CSTtRtVI=
Subject key identifier: CB:AE:15:0D:7E:90:00:D5:0F:46:7B:9D:C3:43:6A:14:94:A7:3C:9B
Authority key identifier: 85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
Certificate issuer: /CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Certificate serial: 019E2FCD4EE1ADC9B8475AFFB5BF77FF7DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 08:00:44 +0000
Manifest this update: Sat 16 May 2026 08:00:44 +0000
Manifest next update: Sun 17 May 2026 08:00:44 +0000
Files and hashes: 1: hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl (hash: DzoJO4S/wctI9uOht9Zcmr2Cz7foF9UD53cpik+dA8A=)
2: vFI_szTdwGut2KUofHDh3zwoi1k.roa (hash: MxrZSZTPx1kjzcHF3plautdDk7QOfOy+oz7wimPfgjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:4e:e1:ad:c9:b8:47:5a:ff:b5:bf:77:ff:7d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Validity
Not Before: May 16 08:00:44 2026 GMT
Not After : May 17 08:00:44 2026 GMT
Subject: CN=cbae150d7e9000d50f467b9dc3436a1494a73c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:6a:26:06:e4:7d:72:70:3e:ca:b5:a7:d0:
fe:ce:60:a3:4a:04:48:cd:d5:49:fc:ac:39:2a:41:
1a:f2:be:31:a9:54:e1:ec:db:d3:c0:6e:16:4a:2b:
f6:e2:37:26:a9:92:f6:e2:69:78:5b:ca:66:e3:c8:
3f:83:f7:6d:44:97:b5:cf:cc:1f:94:a9:cb:8a:c3:
58:ee:ac:2d:81:a0:81:fa:9e:8d:1c:3f:d8:0c:d6:
ed:a7:b6:5d:d6:1f:b7:84:26:00:8f:70:92:32:c2:
36:e0:f9:85:d4:c5:d7:aa:97:0c:26:c8:e0:af:7e:
f8:e8:94:b1:f1:9b:21:22:15:a8:07:80:d3:81:85:
cc:2f:89:4f:68:ca:ad:a8:a3:f3:c4:ea:ea:f8:a5:
81:23:a8:46:79:c0:37:4c:d4:ad:80:d5:35:92:d9:
d6:d0:fb:9e:a4:a5:73:53:7d:47:06:99:1d:da:6d:
51:f2:66:28:65:10:88:5b:42:6d:18:d7:18:05:5d:
74:db:d3:12:36:45:24:28:70:a7:7f:f0:49:8f:e4:
0e:e4:e0:30:7f:16:dc:dd:bb:fe:3a:e1:83:e1:b6:
5a:30:39:49:61:a1:71:81:c3:d3:e8:ac:23:2f:a3:
b2:18:1b:33:16:73:b2:36:8a:48:b8:31:56:cb:87:
a0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AE:15:0D:7E:90:00:D5:0F:46:7B:9D:C3:43:6A:14:94:A7:3C:9B
X509v3 Authority Key Identifier:
keyid:85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:89:45:21:9d:b5:68:43:3f:da:c7:31:14:4c:0c:77:db:5f:
d6:44:e1:1c:2d:f4:f2:6d:7f:e7:86:f6:9f:53:23:33:f6:64:
d6:9f:0a:c9:5d:89:84:a5:f7:f2:1a:94:57:9d:7e:bb:4b:35:
69:e7:1b:86:c9:dd:a5:fa:ce:6c:2f:86:46:d4:b8:7b:a9:e0:
34:e5:e4:a9:3f:f7:28:7b:26:61:5c:c1:98:1e:8c:37:f6:ef:
c1:3c:a7:e3:39:c9:02:b7:d9:4c:3e:e9:c3:fc:e0:c5:56:6a:
51:f7:50:53:b1:4a:94:47:3a:7c:f8:9f:b2:13:61:d1:a7:1f:
33:2b:f5:b3:4c:9a:32:b4:83:7f:5e:2a:c1:7b:a2:ce:bb:2b:
03:30:3d:8a:8a:76:45:17:8e:8e:18:08:92:31:75:51:4a:32:
5a:72:7f:29:05:f1:c7:c3:bd:20:03:e8:bd:5c:a5:be:3a:ae:
0a:fb:6b:fc:a0:19:f7:6e:69:a0:86:af:22:69:70:3f:79:5c:
aa:d9:67:43:25:2d:fc:54:27:a7:25:45:b1:b5:3b:3d:dd:bb:
64:ff:4e:6e:30:c0:ab:35:42:18:46:43:f9:94:43:73:ad:55:
81:2f:72:d3:61:f1:e4:89:94:6c:41:a0:46:ad:18:de:fb:d2:
76:83:51:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:43:15 2026 by rpki-client