Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: f8kdIZqhCQp+Z8xlv6f6ZuotmAtrkVoabpIuizUcAws=
Subject key identifier: 12:6B:DA:DE:28:D5:A8:99:42:EB:32:62:F7:A1:B0:42:6A:73:23:46
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019EC25C27BB72C85675AB5B2B51984ACE6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1827
Signing time: Sat 13 Jun 2026 19:01:19 +0000
Manifest this update: Sat 13 Jun 2026 19:01:19 +0000
Manifest next update: Sun 14 Jun 2026 19:01:19 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: FUpaTCrvF/rlrIKMtk3b8JQfkpvmag2IX1tr8zuQc3s=)
2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:27:bb:72:c8:56:75:ab:5b:2b:51:98:4a:ce:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Jun 13 19:01:19 2026 GMT
Not After : Jun 14 19:01:19 2026 GMT
Subject: CN=126bdade28d5a89942eb3262f7a1b0426a732346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:66:d7:57:20:b3:85:57:66:cb:e8:2d:88:d2:
8f:a9:03:79:21:f2:28:66:45:ab:a9:a4:64:66:48:
47:c1:4e:69:f3:33:74:3e:bc:c8:bb:77:2e:ed:49:
98:86:03:b5:ab:fa:8d:12:ea:02:9e:98:56:20:0e:
98:bd:2b:39:95:b5:ae:a9:7c:ec:e2:06:c8:39:12:
5c:8a:09:bf:ad:8b:a2:02:dc:d9:27:b3:87:29:f3:
d5:1c:0f:6d:95:71:ad:02:d7:ca:90:4e:cb:a1:9c:
e5:5e:93:76:ce:2e:fa:60:7a:21:54:e6:ff:a2:37:
16:20:bc:03:ba:fc:95:73:11:f8:cb:aa:58:5d:43:
2b:a9:d2:12:d7:44:1e:50:42:5c:fb:1c:a8:3f:62:
a6:28:2b:fd:b3:f0:8d:62:47:3f:50:f5:15:82:16:
85:f3:53:4a:73:ea:b8:52:7b:98:83:36:c4:a4:a7:
27:99:e5:ff:1b:fd:2f:63:92:b0:b3:ba:ac:83:17:
d3:70:55:eb:63:ca:96:89:f8:ae:fd:86:37:b1:70:
b9:b0:b9:73:77:13:ba:84:ff:7a:63:18:c2:9d:b4:
44:b2:67:03:87:09:de:c7:f1:6b:99:4f:2a:e5:8d:
1d:5f:6a:8e:a4:17:9f:61:1e:75:7d:bb:ea:63:72:
91:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:6B:DA:DE:28:D5:A8:99:42:EB:32:62:F7:A1:B0:42:6A:73:23:46
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:06:8d:fa:44:32:71:69:3c:e9:a0:87:e0:9c:cf:21:ce:95:
2c:e3:0b:ea:a9:9b:ea:89:56:9f:89:16:4e:1a:b8:c2:65:88:
76:2a:34:39:07:da:e7:67:c7:86:5c:c8:b1:60:ac:44:7a:a6:
29:99:32:40:66:94:5f:14:06:9c:71:6c:f0:ea:4d:84:37:a3:
a8:87:3c:80:ea:ee:f4:f9:ae:26:d1:57:e3:97:61:bb:b9:d2:
ba:40:e4:03:8e:ff:66:be:52:b0:3a:08:76:35:39:99:c0:59:
4e:e5:ef:aa:93:c1:aa:ef:88:fa:56:7a:ce:98:5c:ba:74:83:
eb:5e:6a:09:5b:5c:86:b9:d8:22:df:d1:2f:18:52:11:cd:f3:
9c:a4:48:03:b0:b9:76:ec:96:0c:ca:3b:e4:f3:c2:0e:0f:7f:
7e:ab:6e:da:0c:e0:6f:a2:c3:c1:9d:c2:37:88:70:bb:95:9e:
d6:f6:4e:d7:fe:cf:27:28:f8:df:7d:8d:8b:b2:c5:e9:9e:9a:
3f:94:b5:e1:24:71:05:0e:95:58:35:9f:9a:b0:59:ed:60:aa:
19:fc:5e:b4:35:af:48:4c:b5:24:53:72:ab:ab:7e:8d:ad:41:
d1:86:a3:78:3f:13:0f:f3:ef:15:32:ee:8b:d2:38:90:1f:8b:
73:dd:41:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:11:40 2026 by rpki-client