Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: z2KSZ2WSkiB5/XfFMiSqgOtDTD4QAeqGVkCky6UiHnQ=
Subject key identifier: E4:BB:52:59:E1:26:6F:A4:23:08:26:CA:77:3D:9D:FE:C9:B0:50:B3
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 019D3752491597D02583059006CB1605060D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0B85
Signing time: Sun 29 Mar 2026 02:00:32 +0000
Manifest this update: Sun 29 Mar 2026 02:00:32 +0000
Manifest next update: Mon 30 Mar 2026 02:00:32 +0000
Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: m2JW5ryJRIJp8lXD4WYGiZxGH4N4nL94sxg9B4b3Lwc=)
2: nDpg3cf0raF6jX95bMjbAoRFS7U.roa (hash: GVYh5XEIeIuimg63JfOsccl7tRFww+AiTmkbi2YiTYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:49:15:97:d0:25:83:05:90:06:cb:16:05:06:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Mar 29 02:00:32 2026 GMT
Not After : Mar 30 02:00:32 2026 GMT
Subject: CN=e4bb5259e1266fa4230826ca773d9dfec9b050b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0e:a7:b9:03:03:47:a4:43:48:d3:93:f8:f9:
d3:9c:72:05:10:19:ad:42:a9:79:47:1a:1b:42:61:
85:49:52:92:31:77:89:93:ea:60:a8:96:3f:0a:d8:
0f:67:29:60:34:fe:f8:2b:7d:77:56:2b:8e:f7:62:
c5:e1:d3:26:21:db:f4:ed:b4:4c:35:17:92:3a:09:
a4:ef:dc:91:1b:a5:b4:2e:67:c5:b3:ad:a3:87:5d:
82:8a:f6:a9:5e:9b:ea:cc:ba:4a:76:68:31:c7:d5:
8d:35:4b:3a:92:28:33:8e:2c:8c:d6:b3:b3:2b:4f:
de:d6:8b:4c:01:18:7e:fb:4d:92:86:94:d4:93:37:
74:3a:4e:c6:3d:1b:19:e8:06:1c:5d:1c:13:86:5e:
a3:f9:2c:fa:40:c8:da:45:df:cd:6a:f8:40:22:66:
39:15:79:8f:94:7b:15:57:8d:e6:04:ff:99:80:33:
c0:f3:97:67:98:b5:70:1e:a9:a2:59:4f:52:fb:e4:
ef:73:ea:71:a0:3a:b3:33:c8:a5:24:6f:e9:81:0f:
b3:62:36:f1:36:05:7f:ce:cb:ac:bc:f9:76:ec:9e:
d7:4d:51:08:3b:e2:bd:2b:60:74:df:fd:77:a4:a8:
7e:9e:0c:c0:6a:75:14:f7:74:d2:90:ac:f0:11:ea:
c0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BB:52:59:E1:26:6F:A4:23:08:26:CA:77:3D:9D:FE:C9:B0:50:B3
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5b:32:0d:58:56:66:7d:58:04:70:d3:3e:da:ca:9f:00:ec:
68:b3:c0:3c:c4:71:83:3b:6e:73:7d:5e:32:3a:c4:cc:67:be:
cb:73:5e:a9:41:5c:b3:ea:4f:e2:3f:ab:9c:95:74:3c:46:55:
a7:1c:6a:06:63:01:a2:44:5f:c1:2c:6a:69:6e:a3:98:9b:5b:
12:47:d9:4e:ef:4a:44:fa:78:a6:c7:bf:69:56:4a:5d:fa:ef:
76:ba:04:33:9e:f8:a7:04:db:d1:71:b0:2c:79:ea:89:d5:0f:
88:62:3a:ad:32:e6:5c:e9:ac:a0:67:44:96:52:01:1a:bb:2d:
75:28:4b:ac:40:5e:ea:a8:06:16:92:3a:14:c4:c2:7d:10:0b:
7b:f4:66:53:8e:00:14:88:03:81:ff:43:d1:04:57:2a:d6:6f:
e8:4b:c9:b4:1a:82:6a:06:95:36:97:88:79:3a:11:a0:44:b0:
ea:cd:c7:e7:4a:6e:40:de:66:ec:5f:55:84:30:2d:96:d0:7b:
cb:9b:13:7d:6d:c8:36:3d:84:44:10:f8:13:c1:64:b6:82:16:
27:5e:73:ec:66:86:ae:26:f6:a2:a5:38:b6:11:84:48:52:7d:
ef:9c:2b:59:0c:0d:f3:3f:6d:59:8b:41:9b:f7:87:44:aa:e3:
62:3c:f1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:53 2026 by rpki-client