Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json)
Hash identifier: 1tJDj38zr5H1v4rqrXBT5sxCY3O/7WjWyNrcb7wVjWw=
Subject key identifier: 13:FB:84:D9:45:D5:4C:8D:B2:61:FD:F9:8B:97:29:7C:55:D3:33:1D
Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Certificate serial: 019D3789A7E0BBCDF5F493B84F660315CCAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
Manifest number: 1820
Signing time: Sun 29 Mar 2026 03:01:01 +0000
Manifest this update: Sun 29 Mar 2026 03:01:01 +0000
Manifest next update: Mon 30 Mar 2026 03:01:01 +0000
Files and hashes: 1: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: 9O+cOOkap9rjVUsqU8WwhMsU4NiD1rdTxAGZ9W59FUM=)
2: h2Pj0fup6PmGgboIXfm183EEF9c.roa (hash: eferMGwRa6YXz1Q8h3PiGClbC5vOEBn3msIVlW/jo08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:a7:e0:bb:cd:f5:f4:93:b8:4f:66:03:15:cc:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Validity
Not Before: Mar 29 03:01:01 2026 GMT
Not After : Mar 30 03:01:01 2026 GMT
Subject: CN=13fb84d945d54c8db261fdf98b97297c55d3331d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7c:aa:53:b9:8b:33:2e:a3:5c:22:b0:33:b0:
df:1b:42:50:11:ee:12:06:ac:40:96:cf:c9:90:9b:
e6:0b:b0:cf:53:79:c0:4b:be:ed:6f:f4:2c:07:d1:
8e:af:00:27:20:10:f7:10:5f:92:84:5b:30:f0:d5:
31:9a:bb:16:fa:83:f2:34:f7:8f:da:95:d3:ee:bd:
3a:6f:6a:9a:d4:b0:27:06:f9:57:8a:81:58:f0:f8:
cf:11:bf:a9:59:07:4c:9b:22:f2:a9:f7:58:ee:9c:
51:28:b5:21:07:50:eb:e5:9c:21:57:62:47:87:b8:
e4:18:c4:2a:8c:4e:d8:1d:fe:77:49:3a:5f:72:20:
6c:6d:34:1a:aa:55:4d:b8:6b:42:dc:76:90:0e:17:
88:c5:b2:9c:43:2f:e4:81:f7:3e:c7:18:10:2c:60:
bf:73:10:e2:fc:61:ef:49:87:1b:20:38:31:a5:f3:
95:eb:36:b3:b6:16:5b:ad:02:ee:9e:6b:b0:f2:03:
08:a2:81:a9:88:20:ae:96:c3:ce:df:62:b5:e5:6c:
b0:db:53:dd:85:65:26:36:19:3c:3c:51:1d:02:d5:
dc:c4:88:4f:63:09:d3:01:9b:c9:ab:3b:36:f6:a3:
20:2b:99:28:f8:ea:a6:14:ed:a7:ba:08:72:f8:b5:
4e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FB:84:D9:45:D5:4C:8D:B2:61:FD:F9:8B:97:29:7C:55:D3:33:1D
X509v3 Authority Key Identifier:
keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:3e:0a:b3:0a:1b:45:bf:8d:b4:b5:e4:d7:b0:65:18:69:f1:
f3:85:3d:d9:79:89:aa:58:5c:1f:40:69:0f:6e:35:e4:27:af:
48:80:1a:8a:95:dd:16:cf:24:c0:32:5b:67:e1:93:76:fb:6b:
a1:7e:d5:77:22:5d:f3:22:4a:70:50:32:dd:01:1b:ed:c6:72:
84:9d:c0:27:d9:88:b4:61:ff:67:b9:ff:1d:aa:e4:6f:6d:32:
de:13:42:d5:6c:1b:bf:1b:2a:68:1d:6a:d2:51:35:b9:0f:6c:
68:69:f0:87:97:6c:51:e2:6d:d1:8e:1a:2c:33:79:f7:a5:71:
14:a0:30:04:f1:43:c4:0b:7f:c0:fd:b0:3b:9e:df:cb:c1:df:
46:fc:31:82:87:c7:3b:e2:ad:59:da:eb:54:50:42:f5:f5:ad:
78:88:4f:16:4a:5f:aa:92:62:d4:28:21:77:78:1f:f0:bd:84:
89:47:35:d2:9b:1b:80:59:6a:2e:6b:9a:6b:e9:3f:55:1b:3b:
5f:02:0a:df:60:8e:a6:0f:c7:dc:e8:cf:5e:8e:6f:fa:18:b5:
15:12:3b:7e:cd:00:44:98:32:6b:6e:5b:1a:c3:f9:d0:79:b3:
41:0b:dc:4d:24:cc:2b:ea:74:10:8a:bb:a9:d6:63:07:3d:fe:
93:44:e3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:52:26 2026 by rpki-client