Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
File: hlEiwOVi5AeXaCPZThnip5T4y2I.mft (raw, json)
Hash identifier: ar5JtITB4G02NAw/hy0cfhdTdcYxmntFw1KOIXR1lEI=
Subject key identifier: F1:EC:82:36:D8:E3:70:0E:63:DF:9B:85:81:3D:C8:14:4B:BC:71:B9
Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62
Certificate serial: 019EB921D77094AF2ED82AE81EDFD7B7DBD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
Manifest number: 18E6
Signing time: Fri 12 Jun 2026 00:01:03 +0000
Manifest this update: Fri 12 Jun 2026 00:01:03 +0000
Manifest next update: Sat 13 Jun 2026 00:01:03 +0000
Files and hashes: 1: YvcDMestY9X7wmYPi3GUVazWTT8.roa (hash: XANK4dLT4WRniF1gFGKD3AM4xZkWl+FQBiK8+nHkS3E=)
2: hlEiwOVi5AeXaCPZThnip5T4y2I.crl (hash: /N1lUdjDB+biC5U3QK2Y40zjdCBsulFDuRySST6B/0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:d7:70:94:af:2e:d8:2a:e8:1e:df:d7:b7:db:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62
Validity
Not Before: Jun 12 00:01:03 2026 GMT
Not After : Jun 13 00:01:03 2026 GMT
Subject: CN=f1ec8236d8e3700e63df9b85813dc8144bbc71b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:a7:c2:96:2b:90:48:e1:42:71:77:64:db:
c4:3c:b1:81:4e:5d:1d:f6:8b:44:9b:b7:c5:31:70:
a2:58:44:88:c6:29:91:2e:ce:8a:43:08:3d:7c:f0:
3f:31:2f:87:55:a7:ab:cd:cf:c1:cc:55:83:79:cc:
bf:52:80:a3:ac:34:6a:8b:dd:58:7d:17:a8:98:84:
57:42:9d:e4:8a:19:eb:f2:c5:d1:8c:50:f1:2e:63:
98:87:be:fc:35:53:4f:5d:27:12:e9:a1:2c:bc:40:
59:29:09:1b:41:8e:b9:7b:bd:af:85:90:6d:44:80:
78:c8:c0:16:b5:d5:a5:3a:67:ff:ee:c2:00:0e:47:
17:79:f6:f0:2f:ee:51:21:b6:d8:21:e2:23:0a:79:
35:cd:73:cd:3c:4c:32:d2:d1:f8:22:b1:5d:21:b3:
a9:b0:da:96:c3:e7:89:e6:a4:d4:d2:3d:6b:e7:45:
4d:f3:da:35:87:23:55:2b:b4:43:09:3d:5b:1b:8c:
c1:b6:83:1c:2e:25:c4:3f:f7:b4:60:33:57:29:39:
33:29:3b:d1:c0:86:62:31:7f:e0:cd:e3:e8:d0:f4:
6f:a0:24:14:ea:85:b3:03:41:a5:a2:5f:92:45:c3:
48:38:79:86:52:40:30:2c:ca:ac:e4:4c:d9:16:3c:
b4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:EC:82:36:D8:E3:70:0E:63:DF:9B:85:81:3D:C8:14:4B:BC:71:B9
X509v3 Authority Key Identifier:
keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:0f:72:f8:17:a0:1a:bc:c3:8a:64:73:3d:b2:fe:24:2e:aa:
dd:bb:22:e5:89:77:1d:2c:18:b3:08:a3:92:b8:33:b9:4b:1b:
5f:7f:28:2f:ce:b2:3c:cc:17:08:24:29:63:4c:08:90:a2:50:
b2:9d:e5:21:39:63:ce:41:2c:22:f8:ec:db:54:39:de:5b:dd:
7f:51:b6:51:99:5e:5e:92:74:d3:2a:a6:b0:19:72:35:da:00:
1f:ea:b4:cd:02:4e:1e:43:85:6a:1a:8b:41:80:a2:32:b0:ff:
bb:da:25:b0:6f:8b:de:9a:bf:a6:5c:98:82:19:9d:75:39:e5:
5a:0c:d6:0a:ba:33:c9:19:25:3f:46:a2:cf:a0:cd:30:11:81:
f7:e1:b9:93:2e:9f:18:1f:42:11:a1:7e:4e:c2:c7:47:f1:e6:
fd:4e:66:6d:a0:b7:81:12:49:26:cb:0a:09:bd:93:6d:b1:43:
d8:2d:bb:19:5d:11:d2:95:ed:cc:eb:b1:4a:c8:c5:96:a4:cb:
61:d8:ac:ed:6c:92:10:2b:ce:33:9b:62:be:d1:25:0a:81:e6:
a7:0c:d9:0e:a3:68:c3:b2:04:6b:16:a9:73:72:ed:d3:b1:e9:
7b:df:59:b3:66:76:ec:9b:00:9a:32:4b:3c:d8:4b:af:79:66:
0d:96:8f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:13:59 2026 by rpki-client