Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: SjwxAjJwAdMISQG2UuczLVP6aD6jGh+dtYfzBx+U3vc=
Subject key identifier: 13:52:CB:86:5E:FD:FF:64:2F:C4:F6:D6:26:A8:EF:34:DF:16:FC:45
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019D9B50BC22123F69B4217EFE52BD2E076B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0DE4
Signing time: Fri 17 Apr 2026 12:00:52 +0000
Manifest this update: Fri 17 Apr 2026 12:00:52 +0000
Manifest next update: Sat 18 Apr 2026 12:00:52 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: AOvex0V715B2ZAjtRBV+WJtktD/GuC818eateGcVwXU=)
2: bdOQfAWdL7wiwVEQoYOuUBY_f9o.roa (hash: nNRgBnyPBnuWyk/W/uELLwEd7uoijhFF49TNbx1XS78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:bc:22:12:3f:69:b4:21:7e:fe:52:bd:2e:07:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Apr 17 12:00:52 2026 GMT
Not After : Apr 18 12:00:52 2026 GMT
Subject: CN=1352cb865efdff642fc4f6d626a8ef34df16fc45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:6c:40:17:33:c5:17:79:d9:6e:40:34:c2:
56:4e:d6:ea:98:62:68:18:a7:2b:91:aa:34:03:11:
34:e7:47:fd:90:6c:f0:74:31:74:26:d2:dd:b7:a2:
6d:d4:8b:6d:38:e8:e0:6f:b8:12:9d:95:55:cf:09:
2a:e3:5d:d1:85:57:36:5f:d6:03:c9:eb:b2:b9:62:
d7:37:65:39:c0:ac:7b:d9:d7:57:16:63:20:22:91:
bc:bb:54:79:a6:46:29:64:f9:1d:08:5d:35:6c:0d:
eb:a9:d1:5d:8a:fd:40:25:a0:61:3a:40:a6:40:18:
af:d1:d5:a4:67:7f:30:07:3e:5e:a1:58:b4:a2:4a:
41:1d:e5:d4:8f:2b:48:08:ef:7f:2c:61:a7:40:ca:
d2:db:a5:0e:96:63:a6:cb:46:d4:6b:39:2d:b8:16:
d2:19:00:2c:76:0e:d4:97:59:0d:77:35:45:12:40:
58:e0:0e:37:3b:39:d1:65:5f:cc:53:81:ca:1c:c1:
55:0a:bc:06:3d:70:d6:67:f1:2a:c1:d6:db:e0:bc:
d3:c6:a9:f0:f2:e0:2f:50:a5:eb:74:92:d4:41:04:
3d:76:aa:f9:b8:65:5a:90:57:4b:10:44:e9:9a:ff:
7e:73:15:fd:c2:80:fa:5f:d8:ec:75:75:53:99:1e:
86:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:52:CB:86:5E:FD:FF:64:2F:C4:F6:D6:26:A8:EF:34:DF:16:FC:45
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:bc:0e:91:d3:02:24:aa:17:59:82:af:a4:b2:8d:71:ea:da:
02:0b:e9:a3:d2:df:fb:c8:09:1c:77:4e:02:d8:95:02:62:7b:
b8:c6:30:39:08:6d:39:dc:29:d5:e5:f6:85:83:d4:d8:60:3d:
43:e2:50:d3:d7:30:63:9f:aa:dd:00:c0:fa:77:b7:98:d8:66:
2c:f9:02:b2:05:63:d6:46:f9:b2:38:e0:3b:2c:56:d0:43:b1:
fa:6b:8c:9e:c1:e9:d8:a1:41:2e:1d:f0:ea:f2:3b:d1:9e:82:
1a:71:92:85:7e:0f:c9:35:c8:42:b3:47:4a:37:56:f5:5d:f1:
3a:78:84:6c:3e:d7:97:08:3c:97:cb:f8:00:d1:89:8d:e3:e1:
04:03:c4:b6:32:1c:12:61:08:34:87:0c:ba:15:55:12:62:d7:
7e:dd:37:e4:67:7e:de:10:70:44:3c:81:df:17:ee:40:ea:99:
16:60:e9:e4:f1:7a:07:47:03:ae:bf:27:f3:18:27:ae:32:26:
68:00:24:e7:81:b3:78:ff:45:b1:9f:56:de:15:42:22:3d:07:
f6:52:32:82:32:e2:36:97:d8:b4:2e:0f:b7:d8:35:26:54:0b:
7a:fb:9a:40:38:1d:a6:59:ad:96:3f:04:a6:93:7d:82:55:c6:
d2:68:c7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:54:47 2026 by rpki-client