Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: YVzzdyIrvaH5iLt+W9K3YBBgaHpBBEsFRohhnN6Ub5E=
Subject key identifier: 06:76:95:F5:19:79:0A:05:7A:5B:CB:C0:9F:E5:2A:73:56:90:2B:26
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019CADC7B0DBB63245DBB19A654B85B26CC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0D69
Signing time: Mon 02 Mar 2026 09:01:11 +0000
Manifest this update: Mon 02 Mar 2026 09:01:11 +0000
Manifest next update: Tue 03 Mar 2026 09:01:11 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: vhBbB9xaycVrdzmO+zJWJPEEO4qSRHKfKzHEU6rhOCk=)
2: bdOQfAWdL7wiwVEQoYOuUBY_f9o.roa (hash: nNRgBnyPBnuWyk/W/uELLwEd7uoijhFF49TNbx1XS78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:b0:db:b6:32:45:db:b1:9a:65:4b:85:b2:6c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Mar 2 09:01:11 2026 GMT
Not After : Mar 3 09:01:11 2026 GMT
Subject: CN=067695f519790a057a5bcbc09fe52a7356902b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:47:fc:cb:bd:9e:4f:d8:3a:8c:67:61:c4:70:
04:54:f5:1f:0c:d9:d3:f3:46:12:03:23:ec:72:83:
03:67:1d:06:5a:6e:02:05:03:15:e3:6a:46:46:26:
95:67:31:88:32:c8:dd:ed:5b:ab:ae:1d:e7:78:3b:
3c:d2:54:93:a1:86:a5:ed:3f:66:80:e9:d5:af:ae:
f4:34:fb:bc:80:7b:00:2b:1f:f1:67:03:aa:55:15:
2c:77:7a:4a:6a:9d:66:46:36:d4:2f:bf:3f:95:33:
a4:a0:09:72:0e:57:a7:4d:b9:11:e3:36:61:42:57:
5d:3f:83:21:b9:fa:eb:df:79:65:fc:54:fe:fe:e9:
80:de:70:ea:85:b1:23:16:cf:86:d7:7b:83:30:d3:
8c:69:8e:04:e0:12:d1:41:8a:b6:3e:68:6c:72:9b:
bb:60:fc:47:2e:2b:73:72:d3:1e:3e:fa:81:a6:70:
0d:38:d9:43:75:1d:9e:76:ed:93:3f:05:6f:74:91:
46:e9:e2:c8:53:e9:ad:b4:70:99:ff:82:a9:b8:0a:
42:be:e3:af:5c:21:93:64:66:39:a1:a2:d1:bf:b8:
b2:ba:9d:7e:cb:93:80:f6:99:1a:68:d0:4a:2e:1d:
49:52:0f:ab:2a:ea:1b:78:59:ec:7f:bc:1d:e2:8a:
c7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:76:95:F5:19:79:0A:05:7A:5B:CB:C0:9F:E5:2A:73:56:90:2B:26
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b0:42:8c:70:3b:fd:3f:31:68:85:7f:b0:bd:dc:9f:24:7c:
ea:f4:0e:74:4e:86:07:c1:f9:5f:b1:10:dd:cc:43:4e:ba:43:
00:78:ca:4e:44:dc:0f:b0:e7:14:89:e3:ab:d3:22:28:06:dd:
68:c4:f8:a4:04:aa:2b:cd:da:2a:d4:11:9a:81:7e:bc:b7:4c:
f6:2e:a9:7f:b9:4e:75:51:d2:3f:ba:ec:8d:9d:d7:92:b0:02:
5d:93:99:69:8c:3d:5e:d4:b7:40:e2:d1:dd:65:f9:a7:91:9c:
a9:36:bf:d8:82:74:aa:1a:75:d3:9a:3e:29:18:58:5b:f7:18:
b5:df:f2:ff:90:92:85:ed:89:54:82:15:2f:94:3c:3f:a3:81:
e5:80:43:0b:a2:a5:80:86:70:8b:09:ce:e5:b2:8d:e7:25:e5:
be:b6:1f:11:d6:e5:0e:cf:24:53:9b:16:f5:73:61:c3:7d:c7:
10:f9:e3:b4:bf:6d:b6:cd:42:c5:31:9f:46:22:4e:9a:15:a9:
9b:c9:65:e4:64:95:c5:a8:6f:cc:2b:89:99:66:7c:87:22:a6:
8c:1a:d4:39:9f:c3:7e:62:81:07:1f:d2:37:1a:94:90:48:ac:
e4:9b:b5:88:a5:e5:c4:aa:e0:bc:eb:9e:1e:0e:99:0d:27:7e:
10:c9:f1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:25:10 2026 by rpki-client