Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 6w7ue/SO4UfHZxxTV3adIqQHhy1ZCY90Ug9RI1da6z8=
Subject key identifier: E0:34:24:50:56:32:3F:AB:F5:E5:E9:6E:D8:81:0A:7C:0C:54:A4:CE
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019D9AE30D96BE3C5441402BA5FD7E72D515
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 178E
Signing time: Fri 17 Apr 2026 10:01:04 +0000
Manifest this update: Fri 17 Apr 2026 10:01:04 +0000
Manifest next update: Sat 18 Apr 2026 10:01:04 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: pM5wvXZuNTmJbS7S4FgRjYbPDYAqyHJDZheITXIsnPU=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:0d:96:be:3c:54:41:40:2b:a5:fd:7e:72:d5:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Apr 17 10:01:04 2026 GMT
Not After : Apr 18 10:01:04 2026 GMT
Subject: CN=e034245056323fabf5e5e96ed8810a7c0c54a4ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:81:d6:5e:c2:9b:0c:3a:6c:95:fa:60:e2:90:
ec:5f:6d:b6:33:c2:60:d1:5e:9e:cd:86:38:ab:f9:
13:d1:73:4c:60:a8:af:b8:de:ed:ba:66:b9:5e:4c:
45:94:d0:89:35:74:4e:a1:36:94:e0:85:9f:60:c5:
2e:f0:78:49:96:a2:f0:53:ee:5a:61:d5:6d:00:2d:
b9:60:35:19:09:7e:0a:26:e1:a7:52:b3:a2:ca:5d:
4c:51:06:fa:eb:56:f1:b8:c4:7d:e0:66:19:ae:4a:
f8:e8:9e:31:08:a0:93:0e:03:2c:80:a8:7a:99:6a:
de:4f:63:81:9a:88:e6:d9:f1:ba:2a:98:5d:f0:56:
70:77:79:7d:f2:a2:2b:39:57:18:7e:b1:f8:d6:91:
be:31:cb:12:cf:ae:fe:b4:75:de:c8:09:5a:9b:51:
5a:26:4f:dc:37:33:73:21:f4:a9:2f:54:5d:6f:c7:
7f:19:65:b3:09:de:ef:41:95:43:d8:a0:2b:5e:0a:
9d:48:71:50:65:a1:96:76:90:65:ec:bb:43:c4:f9:
4b:6f:34:af:c1:d9:dd:b1:20:1f:a1:a0:ba:3e:34:
a0:31:5b:54:28:08:a6:09:40:1e:b3:66:2c:7c:46:
e8:be:0b:f5:62:13:0c:c2:15:73:98:b8:5e:e5:96:
cf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:34:24:50:56:32:3F:AB:F5:E5:E9:6E:D8:81:0A:7C:0C:54:A4:CE
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:1d:03:bf:9d:4b:0d:69:74:3c:30:b1:8b:59:ee:e3:91:9c:
18:60:ca:ee:2d:2d:df:4f:76:15:9a:ce:15:69:70:ee:82:f2:
14:ae:7b:55:d8:37:11:4a:3d:73:64:1e:23:78:f9:c5:d0:c7:
14:af:af:5a:69:13:94:85:fd:ad:1d:c5:32:6d:36:ba:d4:e2:
53:7b:f3:65:eb:a6:bc:3f:49:60:8c:92:8e:73:39:1e:9f:27:
06:1d:d9:cd:7b:d8:fc:5f:2d:2d:ae:a1:e2:60:b4:ef:e0:ee:
89:70:1b:c9:b5:84:8b:c2:17:b9:e5:e7:9f:c5:2d:f9:21:01:
59:c8:4c:35:42:11:4b:a7:f8:2a:49:33:71:dc:bf:09:d7:d8:
91:d4:e1:c2:37:33:9d:7a:01:1d:2e:f8:87:95:95:dc:76:0c:
f6:86:2e:ca:85:62:ee:91:17:37:6f:32:02:00:04:79:62:c1:
7c:00:17:ab:98:a6:f4:24:44:51:be:88:9e:47:ad:78:5a:60:
f6:a8:4d:b8:75:e1:df:8b:a0:02:3c:ee:8a:7a:0f:3a:4c:93:
ac:2c:1a:95:61:c6:3e:d3:e1:b9:99:5a:83:fd:da:64:87:06:
6b:b6:24:f0:9f:6e:f5:51:bc:23:40:09:68:9b:f7:52:d7:2f:
69:1e:98:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4w2WvjxUQUArpf1+ctUVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWI0ZTAwYzBkOTJjYjUwMWJiYjIyM2FjZjAzOWUyNzA5
MWRiNGUwHhcNMjYwNDE3MTAwMTA0WhcNMjYwNDE4MTAwMTA0WjAzMTEwLwYDVQQD
EyhlMDM0MjQ1MDU2MzIzZmFiZjVlNWU5NmVkODgxMGE3YzBjNTRhNGNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YHWXsKbDDpslfpg4pDsX222M8Jg
0V6ezYY4q/kT0XNMYKivuN7tuma5XkxFlNCJNXROoTaU4IWfYMUu8HhJlqLwU+5a
YdVtAC25YDUZCX4KJuGnUrOiyl1MUQb661bxuMR94GYZrkr46J4xCKCTDgMsgKh6
mWreT2OBmojm2fG6Kphd8FZwd3l98qIrOVcYfrH41pG+McsSz67+tHXeyAlam1Fa
Jk/cNzNzIfSpL1Rdb8d/GWWzCd7vQZVD2KArXgqdSHFQZaGWdpBl7LtDxPlLbzSv
wdndsSAfoaC6PjSgMVtUKAimCUAes2YsfEbovgv1YhMMwhVzmLhe5ZbPBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOA0JFBWMj+r9eXpbtiBCnwMVKTOMB8GA1UdIwQY
MBaAFB6rTgDA2Sy1AbuyI6zwOeJwkdtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMt
MTliYTg0ZDg0YWYwLzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMtMTliYTg0ZDg0YWYw
LzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYR0Dv51L
DWl0PDCxi1nu45GcGGDK7i0t3092FZrOFWlw7oLyFK57Vdg3EUo9c2QeI3j5xdDH
FK+vWmkTlIX9rR3FMm02utTiU3vzZeumvD9JYIySjnM5Hp8nBh3ZzXvY/F8tLa6h
4mC07+DuiXAbybWEi8IXueXnn8Ut+SEBWchMNUIRS6f4Kkkzcdy/CdfYkdThwjcz
nXoBHS74h5WV3HYM9oYuyoVi7pEXN28yAgAEeWLBfAAXq5im9CREUb6InketeFpg
9qhNuHXh34ugAjzuinoPOkyTrCwalWHGPtPhuZlag/3aZIcGa7Yk8J9u9VG8I0AJ
aJv3UtcvaR6YSQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:40:45 2026 by rpki-client