Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json)
Hash identifier: jeNTD3YlZWjRpjg+UpsC3KF2yQC2Z5Cov1Y40oMOGww=
Subject key identifier: A0:CA:40:24:13:A2:6E:FF:C4:1D:8A:E1:10:F5:99:82:78:9C:65:04
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 019EF1C8277DA656B7EA8B04EEF45A6F2C85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
Manifest number: 197C
Signing time: Tue 23 Jun 2026 00:01:26 +0000
Manifest this update: Tue 23 Jun 2026 00:01:26 +0000
Manifest next update: Wed 24 Jun 2026 00:01:26 +0000
Files and hashes: 1: 5bPAfHY71g1tz33WhyemzOl8Afo.roa (hash: TP978Gguy7Dyr8s78cghRC57XCgceUKU/R4E1xx5GXM=)
2: FrDGqtAlSdh4w6GnxdkzTd7bHd8.roa (hash: cZLJ2r1Doel5lpVBvhmnLBua06MQetotpEsjgD1nP28=)
3: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: zfZwtgRYlBbW8Tobh4LZ7flgjeymz0lIg6i3ci6ZhE4=)
4: Jgw1Gx1dPclOABYcbQJfITbOPSs.roa (hash: BIdjPDAk2zyiIML1uGPD7J7cytE8YqCkn/DCRcCwXHg=)
5: WmQL_VXpmFEvvoiR5PkxFDta9mk.roa (hash: 17mQDCBUS/Kj6BwRHUdOrAKzENyd7WfmRdfkyMXwsNg=)
6: k0uiX_PSGOLpmHbIawhjH3EL4VU.roa (hash: bIgcQVO40YbjY2beu9BGZjDPrIJm2Cv7wEtLZBhcVvU=)
7: oWfoIebl0vdlosgiWt_PqvTMCvI.roa (hash: sSMkZCHcY8051GIBXnABdJ427F125fjlpin/p+USqXE=)
8: u4N4FwbZU3R4YrPAif2Bhql7uXo.roa (hash: j1Aeh/ewSlpsUAcZ6gs1u3mvHVZZFBD8JqF3ICrH+Og=)
9: ukePksioR9rZ806d8URQYeRLONE.roa (hash: EXhlSdLPcjyLmaBcE0rpgx1b7yqNH2I+X3p7p/NtRc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 23:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f1:c8:27:7d:a6:56:b7:ea:8b:04:ee:f4:5a:6f:2c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Jun 23 00:01:26 2026 GMT
Not After : Jun 24 00:01:26 2026 GMT
Subject: CN=a0ca402413a26effc41d8ae110f59982789c6504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:db:dc:cb:8f:5e:0e:93:d0:3c:70:e6:07:4b:
11:af:59:74:68:9a:51:ef:81:d6:15:28:4d:6f:57:
aa:e8:a4:0e:4b:b2:6f:02:b2:47:cf:19:4c:00:a4:
ab:23:4d:cb:aa:fe:ef:c0:ef:8c:1c:74:e3:be:f6:
96:02:69:11:a2:85:d0:9c:7e:cf:09:e1:e7:82:4b:
2f:15:84:39:0a:97:f5:bb:de:ae:cc:1a:78:6f:db:
20:0a:a5:44:85:9b:11:c5:40:25:3e:30:90:b7:29:
d0:6e:5a:e3:ff:32:9a:4e:47:e6:97:f1:71:f2:70:
09:f6:76:c7:e1:bb:3c:5c:98:dc:86:4f:0e:4b:d9:
f0:3a:7a:6c:01:1c:09:ba:76:86:d5:31:e4:2f:7e:
c8:c3:5a:38:bc:16:87:00:64:c5:c6:72:ac:55:fc:
05:c9:1d:96:0b:8b:a3:58:37:47:32:83:8b:51:c2:
24:81:53:d5:aa:44:aa:0c:4f:04:9b:4e:63:e8:f0:
a4:2e:66:8c:3b:67:9d:53:14:e1:32:c9:28:07:b0:
dd:12:60:09:b5:2f:ed:5e:a7:b4:90:07:df:8b:a5:
1a:8d:b7:41:27:c1:4b:46:f7:70:87:66:41:a8:1a:
3b:3d:83:ff:6a:2d:3f:20:3a:27:5c:65:93:91:c3:
91:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CA:40:24:13:A2:6E:FF:C4:1D:8A:E1:10:F5:99:82:78:9C:65:04
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:c5:06:44:82:f2:85:67:b0:30:d4:2b:a6:98:d8:89:9e:b8:
61:30:b3:d8:5d:74:35:89:a9:ea:f2:8f:86:2d:78:e9:67:62:
73:bc:21:c6:de:24:4d:c1:c7:82:33:3f:f4:3c:a4:5b:74:e8:
1a:bc:4a:33:8f:ae:ed:5b:34:d4:a3:84:b8:c9:71:f6:34:e7:
95:86:6a:f0:e8:55:6a:b0:0a:c0:6e:b0:d4:14:36:c7:5a:21:
93:ea:62:75:c7:29:72:29:21:d1:e2:90:b6:c5:60:4f:dd:c3:
ef:27:ca:8b:f3:61:0a:f9:2d:d0:8e:cb:63:18:61:62:46:48:
84:ad:5e:36:da:01:40:eb:ad:ad:6f:25:26:f1:83:83:ab:a3:
2b:b6:c0:d9:33:2e:47:3c:45:ea:2a:a4:ea:0c:8a:92:05:cb:
5a:9d:29:c7:96:44:c7:e5:cc:21:ab:c4:4f:5e:dc:e7:ac:ba:
a7:65:44:67:16:61:e9:4d:93:4a:39:ef:51:22:bb:0d:ae:65:
e5:26:82:51:dc:5d:02:c0:7a:9f:7e:36:ae:e2:5d:c7:b7:04:
0e:55:50:11:bf:bf:37:84:fa:46:a8:a6:c5:4e:c4:cd:aa:6b:
31:62:63:56:5c:62:38:a2:7c:cd:e9:96:35:cd:0d:19:ab:8d:
a3:d6:0a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 06:45:51 2026 by rpki-client