Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
File: HnsuJD-KqVRZeTK83NmvZWDc5RY.mft (raw, json)
Hash identifier: oT4r0usv2QRme74PO0DyRX1h2l57AcRHmdGHkmQ49Mo=
Subject key identifier: 34:2A:4C:21:59:61:61:70:38:28:8A:84:38:AC:2F:47:F3:8B:3B:2D
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 019EBA345627C881E4C997994F7D0D835E7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
Manifest number: 0E1B
Signing time: Fri 12 Jun 2026 05:00:52 +0000
Manifest this update: Fri 12 Jun 2026 05:00:52 +0000
Manifest next update: Sat 13 Jun 2026 05:00:52 +0000
Files and hashes: 1: 1-z-hX5qlCf8aH8nr2X0zpJdE1hg.roa (hash: 9rLZMVrt7BCmTVumDwvgzgKKJKdaVIZCBXEilPyFZ4c=)
2: HnsuJD-KqVRZeTK83NmvZWDc5RY.crl (hash: grUmt9+ICdxu4A51MgEn8Mx3Kzk5DvGwRTmLtjYf9OE=)
3: XI8CVY8sYwhzkz3YLD7pkxjD3Zk.roa (hash: 25+wg4lixvrKpaIcYJueXb9oNmVKiR9L4SbDtXfdAjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:34:56:27:c8:81:e4:c9:97:99:4f:7d:0d:83:5e:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Jun 12 05:00:52 2026 GMT
Not After : Jun 13 05:00:52 2026 GMT
Subject: CN=342a4c215961617038288a8438ac2f47f38b3b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:dd:cb:65:db:6c:bd:ea:62:da:86:20:bd:77:
6f:a6:5c:46:98:92:82:ca:fe:df:f1:77:18:cf:22:
cd:de:98:89:ca:e9:14:76:ee:b7:f3:96:72:07:4d:
cc:66:64:54:7a:7a:14:e1:3c:e9:d9:2e:bc:09:e2:
c1:ed:15:ee:a2:8c:0c:f0:71:90:f3:c8:80:3a:3d:
e7:07:c0:2a:f9:a0:c7:ed:52:a0:f6:89:54:47:f2:
9b:79:e4:ca:37:eb:42:86:bc:4b:05:b5:ea:c2:1c:
cf:5a:77:11:89:45:c8:f3:5e:a4:b4:ab:8f:56:0e:
5a:4e:e8:7e:7d:43:e1:a3:eb:66:e4:8f:30:33:29:
c2:e5:3b:29:84:ac:58:52:6c:d6:d5:60:52:f2:ff:
91:d0:d4:c6:fb:87:f2:88:c6:16:1e:aa:d7:d7:c9:
c2:d4:e7:dc:7d:4b:0a:f4:7d:d2:22:48:da:1d:90:
d5:c9:17:1a:e7:15:8b:29:1d:55:a5:c6:2a:1f:77:
4b:05:95:2a:1d:a7:bd:b3:64:6f:55:ed:1a:ab:c7:
c9:d3:9e:ce:a8:52:77:6e:d7:49:9f:5c:c7:c7:64:
8f:ac:71:03:f3:22:da:dc:a8:4a:66:30:55:85:e7:
ed:61:3e:02:44:71:df:1d:30:b0:47:87:ef:8b:39:
23:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2A:4C:21:59:61:61:70:38:28:8A:84:38:AC:2F:47:F3:8B:3B:2D
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:82:56:51:6b:12:b8:4a:eb:81:f3:b9:3d:d0:d9:6e:c3:60:
8f:93:bb:8c:10:4a:16:ab:6a:c1:7f:68:65:40:7f:89:d3:44:
dc:69:53:fe:7b:b2:03:7c:3f:03:bd:af:76:31:1e:d6:76:04:
63:5b:a1:30:0c:ed:fd:c6:72:14:59:a4:15:52:a1:27:01:ff:
b4:9c:b9:cc:a9:3a:86:8b:f3:3b:13:42:35:90:b2:10:d6:7d:
08:bc:1a:3a:1e:47:10:00:a1:b9:38:1e:a1:83:58:18:28:bc:
c6:65:e6:23:d1:b9:7a:7e:ff:cc:83:e4:bf:4c:83:ee:e2:73:
27:fa:90:d7:52:56:94:ad:74:ed:cc:dd:e2:b5:7a:81:5e:5c:
75:15:99:25:d5:7e:c3:f2:36:69:5b:0a:c9:d3:c5:2d:1b:1f:
5b:31:99:10:99:af:d3:3e:e2:40:f8:87:73:b5:57:31:9e:e1:
df:1a:d4:1f:66:b7:71:bf:d4:f8:5c:83:e2:0d:43:1d:9e:10:
ef:6e:29:b7:c3:fe:7e:7c:60:18:ef:32:4a:e0:91:89:d5:77:
75:ba:a0:e5:5f:ec:15:b7:e8:a2:94:25:27:4f:30:06:2d:80:
df:6f:7d:47:3f:27:41:f8:ef:bf:33:cf:77:d6:78:20:f5:9c:
1e:c1:2b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:09:58 2026 by rpki-client