Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
File: hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft (raw, json)
Hash identifier: I44alv4XETamvIBNlvfUp4jFWM/QaeHPDwt48xgN/IQ=
Subject key identifier: CD:2F:11:5D:E8:CD:7C:C9:E9:6A:84:E2:4E:7D:CF:AC:9F:0B:AF:05
Authority key identifier: 85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
Certificate issuer: /CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Certificate serial: 019F197A6A06FA63B7D46F952D29A3C18AA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
Manifest number: 198B
Signing time: Tue 30 Jun 2026 17:01:20 +0000
Manifest this update: Tue 30 Jun 2026 17:01:20 +0000
Manifest next update: Wed 01 Jul 2026 17:01:20 +0000
Files and hashes: 1: hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl (hash: ZN2LcU9k7wvEwtbK0QvoTzuy3DwOCjiaFILoernthwc=)
2: vFI_szTdwGut2KUofHDh3zwoi1k.roa (hash: MxrZSZTPx1kjzcHF3plautdDk7QOfOy+oz7wimPfgjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:7a:6a:06:fa:63:b7:d4:6f:95:2d:29:a3:c1:8a:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Validity
Not Before: Jun 30 17:01:20 2026 GMT
Not After : Jul 1 17:01:20 2026 GMT
Subject: CN=cd2f115de8cd7cc9e96a84e24e7dcfac9f0baf05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:29:65:b3:36:8e:cc:2e:d5:3b:8b:1f:6d:c2:
b1:e9:ee:a9:15:82:e5:d8:04:b4:e8:2c:60:30:00:
a5:a5:ab:e1:c6:cd:b8:d2:61:1e:1e:14:81:9b:c3:
87:e3:41:52:ce:3e:47:a5:54:20:b1:ba:dc:a2:cd:
dd:ea:52:6e:6a:f6:5c:72:41:c6:11:0d:10:61:bd:
c8:dc:7e:5e:67:80:89:e0:6e:1c:0f:f5:3e:48:52:
c3:9e:70:92:57:e6:ac:ff:30:15:49:04:cf:dc:3e:
6a:7c:ca:28:e4:32:7d:3b:7e:13:85:d4:22:03:e2:
d3:92:22:1d:e4:94:91:89:a2:7c:ea:63:e2:2c:fc:
57:a4:09:28:1c:3e:17:d6:48:b2:ae:b0:a3:84:9e:
e9:99:ca:90:4c:81:4f:41:03:b5:0a:f3:14:c0:22:
ae:8b:89:13:0e:6a:61:4f:91:fb:ca:3d:b5:68:5d:
e3:db:2d:ac:73:a8:6f:ad:20:3a:20:4c:32:30:fd:
d0:e7:20:38:d6:6b:da:da:c1:25:01:1f:8a:1c:d9:
1b:eb:54:16:ab:28:e1:44:d0:c5:34:2c:e9:27:f7:
11:d0:ee:d2:84:96:51:48:bd:1e:d7:d7:76:92:e2:
77:94:00:d8:c2:68:85:7a:b9:81:14:16:46:eb:20:
65:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2F:11:5D:E8:CD:7C:C9:E9:6A:84:E2:4E:7D:CF:AC:9F:0B:AF:05
X509v3 Authority Key Identifier:
keyid:85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:01:06:72:f0:76:86:9c:8c:c8:73:a6:bc:4a:ae:c9:a9:42:
32:fb:38:62:94:1d:34:f5:b5:18:c5:57:15:61:04:76:6b:29:
cc:3e:eb:e3:b9:ea:1e:b3:9e:a0:41:aa:9b:a1:18:37:2d:8a:
84:2d:19:f7:1f:4d:84:99:14:3e:aa:e9:25:f0:c5:e3:91:e8:
8f:62:76:6b:49:04:39:4b:c5:25:4c:03:1b:63:5a:fd:88:24:
ce:7c:c9:52:09:a8:e7:5b:83:f6:e2:85:e5:2a:e9:b6:bf:28:
e1:a5:c1:d9:b8:65:59:42:94:a3:62:eb:6f:30:52:63:84:f7:
f6:67:b1:8f:73:b8:43:fe:ce:f6:62:48:ed:9b:cb:38:f3:3b:
a5:0a:a6:fa:f7:e0:82:1b:3a:73:ca:8d:9f:a2:eb:f5:35:3d:
af:b9:72:26:1a:0d:49:c9:fe:db:bd:d0:b4:ee:06:a2:54:6e:
8c:5a:1b:d7:19:de:f1:ec:e8:c9:83:7b:2b:d5:ba:9a:88:ac:
de:1e:0b:b3:60:d1:b2:82:90:47:31:cd:b1:58:3b:14:f0:bf:
e2:a5:02:77:8e:16:08:b7:f4:82:85:72:34:8c:cd:67:6b:5c:
b3:60:31:09:e3:a2:d6:fe:ea:fb:21:42:06:cd:d1:83:af:b8:
a9:2f:df:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:33:39 2026 by rpki-client