Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: DQ7GT58/uduLD5MTzuDxAvB8Zd4+ZLLFoFijNGWa3Pw=
Subject key identifier: 24:A2:58:79:A2:60:37:1F:C5:F0:ED:06:07:FD:88:3B:A2:5C:49:6C
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019EC2C93DF9927218B0EBF98EDA63DFB448
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0E7D
Signing time: Sat 13 Jun 2026 21:00:28 +0000
Manifest this update: Sat 13 Jun 2026 21:00:28 +0000
Manifest next update: Sun 14 Jun 2026 21:00:28 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: VzmEDsRdu8Ghh6hWQNrJVQ9GZReF8G96UFbl7QTWYPs=)
2: bdOQfAWdL7wiwVEQoYOuUBY_f9o.roa (hash: nNRgBnyPBnuWyk/W/uELLwEd7uoijhFF49TNbx1XS78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:3d:f9:92:72:18:b0:eb:f9:8e:da:63:df:b4:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Jun 13 21:00:28 2026 GMT
Not After : Jun 14 21:00:28 2026 GMT
Subject: CN=24a25879a260371fc5f0ed0607fd883ba25c496c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:67:d2:2e:fb:20:a1:d4:cb:bf:e5:46:48:0b:
28:88:63:8d:de:13:4e:da:19:0c:fd:aa:2f:39:67:
52:87:03:d8:65:ca:d2:2d:3d:e5:3b:ef:ae:97:81:
c2:8f:b9:6c:a0:9f:f7:e5:a2:6d:35:53:ec:57:f8:
3d:54:7e:0f:d5:a5:4c:75:cc:67:45:2a:8f:0d:18:
22:81:0e:6c:1c:6d:b3:e0:2f:1b:a8:6b:31:e4:df:
b8:55:73:75:bb:0b:83:24:6c:d3:ff:91:6e:f2:5d:
e4:45:74:71:32:0c:1d:a9:7c:98:f8:f7:01:6f:a0:
f6:bf:42:98:7a:77:0e:f4:0a:65:97:16:90:62:6c:
90:b8:ba:f3:4d:c8:49:35:9f:84:98:ab:29:d5:aa:
9f:1a:fd:36:9e:24:f8:f9:e5:f9:47:12:6c:f3:dd:
55:81:4d:4c:fb:c7:b0:69:02:d6:9c:42:09:e0:54:
1d:86:9a:e8:5d:de:73:fd:8e:6b:92:77:fb:56:49:
c3:6e:16:6f:2e:cd:ae:37:7f:27:74:52:59:cf:76:
a3:e0:9e:45:38:ac:7f:6d:93:23:01:00:51:b2:be:
bf:11:4d:54:95:37:ce:d2:8f:4d:24:94:93:6f:5a:
cd:0b:e8:f6:67:27:51:aa:03:f7:a0:10:e2:ef:bd:
24:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A2:58:79:A2:60:37:1F:C5:F0:ED:06:07:FD:88:3B:A2:5C:49:6C
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:51:55:89:ed:f2:1b:cf:67:66:11:56:a6:2c:82:b6:88:e4:
3c:6d:ba:d0:90:fe:e4:05:1b:a9:b8:e1:f3:e5:ec:bb:b1:f7:
51:df:43:3b:75:1c:7b:bf:04:8f:11:bf:4c:de:fd:f0:30:a7:
cd:d5:9e:3d:88:a5:19:f0:e0:c9:c6:cc:e9:40:f0:76:6a:94:
57:d4:9b:88:c1:5f:94:11:5b:70:91:e3:54:10:e5:ba:d0:a9:
1e:59:d2:89:d1:b3:42:be:62:67:92:2d:ab:80:32:3e:30:b3:
55:4f:08:89:ad:28:8a:69:ae:87:c8:a1:43:ab:f2:fa:ea:6b:
e9:bd:d9:64:06:84:b2:bf:07:89:1e:67:e5:36:4a:2f:5d:c3:
a3:9e:77:3d:df:37:08:33:02:84:9f:bd:09:7b:aa:e7:9b:24:
ae:53:74:2f:41:a9:ed:a4:c6:22:65:33:86:8f:1f:ab:b5:f0:
12:c1:07:7e:82:c9:b2:88:1f:11:0b:3b:d7:1b:2a:30:34:9e:
03:b1:63:45:72:ae:05:14:1b:d2:91:fb:68:0c:df:67:bd:70:
70:77:5e:88:e1:84:f7:94:2f:f1:eb:57:e3:8e:93:ba:be:bc:
ed:50:96:e1:91:22:c5:c2:7c:a0:4d:bb:05:27:6d:83:77:41:
64:2d:74:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:10:12 2026 by rpki-client