Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: s0p4V9PmsR6G1cNfV1vrvZkC9yi8NYtwOO2X3H8Uhzk=
Subject key identifier: C0:17:71:CF:89:F8:1A:7B:1D:87:3D:BE:B7:38:CC:D5:BA:23:55:E7
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019CAD59CC29AE134393CDDF4F04B8F8D981
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1713
Signing time: Mon 02 Mar 2026 07:01:09 +0000
Manifest this update: Mon 02 Mar 2026 07:01:09 +0000
Manifest next update: Tue 03 Mar 2026 07:01:09 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: 2N00UrqyywmxoO6x0bqLCYTvY4BZAlTBOJ4fSdIzgrY=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:cc:29:ae:13:43:93:cd:df:4f:04:b8:f8:d9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Mar 2 07:01:09 2026 GMT
Not After : Mar 3 07:01:09 2026 GMT
Subject: CN=c01771cf89f81a7b1d873dbeb738ccd5ba2355e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:83:b3:f3:19:bf:b7:23:1e:68:1f:ee:e3:42:
f9:05:e0:5f:5f:6b:3e:ee:31:67:e4:e6:9d:e9:c9:
ea:84:6e:3e:6c:88:05:17:91:c4:b0:47:07:bc:4d:
fc:fa:3d:d2:95:b1:0e:fd:a6:c3:8a:d9:2f:0f:7b:
fd:1e:50:d2:8d:3d:2e:7b:b2:63:84:3c:af:0c:bf:
15:e0:4f:36:e8:21:96:da:04:5b:3c:99:27:49:df:
54:d6:12:d1:98:ea:d8:46:5f:1b:d2:ec:71:2d:04:
33:ff:25:85:97:2f:c2:71:32:95:39:04:39:19:e8:
e2:1b:35:52:21:f5:ed:a4:43:be:17:6f:39:da:31:
ce:b9:a5:5f:56:6b:01:da:11:af:ad:9d:40:28:18:
c1:2c:6c:a9:6e:53:93:86:5a:a5:4f:f8:8d:cd:1a:
93:88:bf:d7:ec:73:1c:99:bc:ca:60:d1:28:d2:a0:
36:be:ff:ca:19:6d:aa:e3:61:1f:9b:7e:1a:c7:49:
39:b6:41:98:3a:f0:d8:94:d0:c4:03:b3:e5:1e:fd:
fb:3d:ca:80:7b:23:db:4d:6f:aa:07:e5:70:1b:8f:
5b:db:ad:50:cc:a2:b2:c1:b1:5a:76:be:8f:4a:9c:
7b:ec:cd:a3:a1:2d:f9:66:6f:38:cb:82:29:c6:a2:
ae:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:17:71:CF:89:F8:1A:7B:1D:87:3D:BE:B7:38:CC:D5:BA:23:55:E7
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:e0:cb:d1:2b:8a:4b:17:12:f5:0b:73:89:70:3d:25:4f:d4:
7a:6c:77:ad:ed:78:fd:31:83:69:64:ee:9d:de:0b:6e:ce:5a:
da:15:ce:a2:fc:aa:0a:35:61:7e:0b:72:ee:e4:6c:45:98:51:
52:b5:d1:4d:66:70:fc:e0:f5:a8:5f:cc:31:a2:a0:65:3a:a8:
9e:97:4d:a9:6c:a1:08:8c:be:29:15:ed:72:b1:e3:e9:e7:9d:
b2:1d:41:cb:6c:8c:6e:5a:22:d0:e9:df:77:f5:b7:d2:21:15:
bf:fe:20:79:0b:82:bf:8c:15:b0:43:69:4b:1d:9d:44:8a:20:
40:2b:d9:d3:48:d2:d6:a2:4b:43:d6:a8:86:9d:69:f4:6d:1c:
9d:b4:54:4f:6a:27:09:e2:b1:f8:c8:3f:c2:85:13:94:a6:2d:
dc:ea:1d:5f:15:d2:19:60:57:85:9c:43:83:ff:18:76:aa:35:
93:54:4e:52:52:a0:84:a7:8d:02:79:bf:02:65:fc:1f:8e:5e:
0f:63:4f:d8:2a:99:f4:ab:ed:b8:73:b4:ba:fc:60:ba:16:59:
a7:e4:61:35:83:69:58:89:4c:cf:24:18:0e:df:17:5c:b7:43:
a2:0b:a9:9c:25:ff:e7:2f:94:c1:19:ed:f5:58:6c:b3:14:43:
f1:da:8c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:32:14 2026 by rpki-client