Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: FDOJLFr8Bs/carxNjuevwFzALUS9MeW8SJ3kfq9Kn6w=
Subject key identifier: AA:1C:D7:AA:21:0C:40:9A:AB:31:E2:57:F0:C9:3E:18:A4:FF:C8:F3
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 019E7FA0798CC6773D9193DB1DFEABACF997
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0C2F
Signing time: Sun 31 May 2026 20:01:23 +0000
Manifest this update: Sun 31 May 2026 20:01:23 +0000
Manifest next update: Mon 01 Jun 2026 20:01:23 +0000
Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: DdyJ4aRsq4anZbzOqlOZjtLrIpyIPEcI48ZxlXC0m7s=)
2: nDpg3cf0raF6jX95bMjbAoRFS7U.roa (hash: GVYh5XEIeIuimg63JfOsccl7tRFww+AiTmkbi2YiTYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 20:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7f:a0:79:8c:c6:77:3d:91:93:db:1d:fe:ab:ac:f9:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: May 31 20:01:23 2026 GMT
Not After : Jun 1 20:01:23 2026 GMT
Subject: CN=aa1cd7aa210c409aab31e257f0c93e18a4ffc8f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:79:e6:12:0b:1f:1f:e6:03:e9:8f:d7:81:c4:
b4:12:fd:9e:48:eb:da:0a:83:b6:a9:00:c7:f3:4c:
1a:69:58:0e:af:91:e9:28:79:b1:c1:27:1e:be:b3:
d3:22:e7:0e:77:81:90:1a:75:55:a0:13:bb:06:bd:
5a:07:40:91:cb:88:66:9c:85:d7:ae:f9:e4:f9:5d:
4c:93:58:74:f8:4b:b0:1d:af:02:64:43:62:26:5e:
5e:6a:79:45:2e:d2:25:61:5c:27:c9:53:18:89:95:
c7:e8:67:28:e3:1a:47:f3:70:5b:55:e3:db:eb:4e:
45:30:4c:ef:3e:64:c5:56:90:84:3d:22:0f:35:fa:
1d:ea:ee:d9:0c:3e:74:bd:fa:f1:a7:97:9a:be:86:
cd:89:28:79:85:13:a2:78:ac:f3:73:b7:b4:24:dd:
75:63:d7:a3:3c:f2:d9:95:ec:86:25:8f:6f:dc:6e:
ca:57:2c:d5:e5:8c:84:4d:b9:2e:de:b1:47:77:70:
7f:61:2b:63:d1:05:9d:5f:ea:8d:aa:2e:ca:b1:16:
63:61:f8:98:c2:5a:e9:e9:a3:5a:c6:81:b3:10:22:
ca:dd:dd:c8:c5:73:bd:7c:81:73:c3:33:15:fb:e9:
2a:73:12:37:70:08:3a:8c:cb:82:ae:b2:82:09:76:
0b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1C:D7:AA:21:0C:40:9A:AB:31:E2:57:F0:C9:3E:18:A4:FF:C8:F3
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:5d:cc:2b:9e:05:fe:1c:8d:83:8f:24:4d:e8:61:09:50:f9:
4a:a0:ff:10:bc:99:4e:51:9f:3a:43:1e:cc:d2:4c:f8:6a:0a:
1f:ca:58:42:34:cc:65:18:07:e1:89:11:e9:23:94:50:c7:7c:
9b:92:5a:93:63:e2:30:8d:c4:79:45:3f:32:46:28:3f:61:bc:
a2:4c:87:ea:d5:51:2c:00:05:77:2c:bc:12:cd:6c:93:ca:38:
f6:d0:2a:17:93:f3:0d:34:7e:96:0a:ea:23:0c:8d:c1:90:e6:
1a:6f:1b:62:b4:56:6f:7f:df:87:19:b5:e6:8b:89:30:e8:ee:
46:81:a7:b8:7e:00:84:dd:58:2b:21:44:6b:68:92:d3:8d:61:
8e:f9:22:f0:79:f6:1e:9d:16:51:b3:bd:04:3b:93:d7:d0:c0:
72:b7:2b:5e:8e:f3:f7:58:1a:38:ac:af:11:3f:97:3f:93:39:
77:fc:b7:2e:41:25:d8:3a:20:55:af:24:dc:b2:13:e6:5b:f3:
7f:1c:bf:29:6b:84:0c:3a:12:58:ba:dd:c5:2f:73:44:8e:f2:
20:33:50:ec:1c:3d:b9:1b:7f:28:74:62:2f:d5:27:d8:ae:d5:
58:61:b7:be:e4:16:ff:94:0f:26:aa:45:1d:48:86:b5:23:d4:
31:08:5c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 1 00:27:07 2026 by rpki-client