Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
File: HEwmJz2igh_OJgdaoKbiMB7ISSc.mft (raw, json)
Hash identifier: Bwcbzi+QT9ut/HuE2HTEVtlPZECENxUye86CmcFrdcg=
Subject key identifier: D5:3A:F7:DC:2A:1A:39:60:03:91:64:B0:69:C8:EF:55:44:4A:9A:55
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 019EB92244BE471CA7822DA4F4BFC11AECAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
Manifest number: 18E7
Signing time: Fri 12 Jun 2026 00:01:31 +0000
Manifest this update: Fri 12 Jun 2026 00:01:31 +0000
Manifest next update: Sat 13 Jun 2026 00:01:31 +0000
Files and hashes: 1: Ao01yBlxvJ843s8rmXALqicuFL4.roa (hash: mObGzmDyz7K0J3EGcnRV4ZYxrkCBxp3ntfUTw3IpS/Y=)
2: HEwmJz2igh_OJgdaoKbiMB7ISSc.crl (hash: rtu0vKw6GdKfSzYQLzkVgh/0zvZe7O9tIofIg+Q+/u8=)
3: nMd-Xw4DDeNMARsDmT0tnDJOIKY.roa (hash: IL7Kn+tf2yZBt5W5A2bV1BTlZ8XATxRpIlXULrCuaRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:22:44:be:47:1c:a7:82:2d:a4:f4:bf:c1:1a:ec:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Jun 12 00:01:31 2026 GMT
Not After : Jun 13 00:01:31 2026 GMT
Subject: CN=d53af7dc2a1a3960039164b069c8ef55444a9a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:4c:df:a9:19:c1:c3:43:6e:04:42:35:09:
6e:e6:aa:d6:44:0b:1b:0e:40:3c:cf:49:3e:99:6d:
8c:93:23:18:bb:12:5e:5e:80:8c:3d:ce:55:62:13:
ee:a5:dc:08:ee:de:da:d6:1c:ba:a1:20:1c:d7:2b:
85:3e:3e:83:18:3c:4f:fd:36:d5:3a:0c:d9:8d:1f:
33:fa:b8:50:8f:ba:7b:98:4a:04:03:72:1b:c6:41:
bd:0c:69:ca:18:f9:ef:2e:90:4f:c8:71:6f:57:b3:
15:0c:98:3e:84:b6:08:8f:11:73:ca:70:76:e8:bf:
bb:5a:3c:45:b6:7d:da:29:c1:d9:1f:38:b5:af:94:
97:71:56:e5:5d:e2:af:b3:b5:4f:7f:89:d7:e8:bb:
b0:f0:f1:c4:d8:01:1d:b9:9b:28:20:d8:0b:d7:5e:
1c:25:7f:5f:65:0e:af:ea:0b:07:b6:b2:7a:ae:ce:
77:08:52:f3:41:6a:69:00:33:ae:ed:22:cf:c9:da:
79:02:78:99:64:b4:33:1a:e6:06:f2:dd:3a:66:14:
91:6e:2b:f7:4c:5c:05:e4:73:80:b4:72:c9:e6:82:
fd:04:90:43:cf:52:5e:63:94:5a:a7:b0:db:eb:f2:
a9:c4:e7:97:36:c8:36:f3:00:21:35:45:77:bc:32:
23:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3A:F7:DC:2A:1A:39:60:03:91:64:B0:69:C8:EF:55:44:4A:9A:55
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:84:c0:03:81:f9:33:a5:bc:a0:c0:20:79:e7:e2:2f:74:73:
03:cd:7e:af:68:1a:d3:cf:99:32:e3:87:01:22:95:0f:ad:8a:
c5:da:54:6f:88:42:46:69:11:2a:0a:80:cb:85:6f:3a:79:b3:
39:99:93:11:e4:00:1c:08:b9:7c:e3:04:42:91:65:c6:24:f3:
36:1a:cd:b2:f8:5e:05:32:e6:73:1f:7a:1b:6f:4f:23:ff:cd:
8b:18:71:0a:a8:4e:df:08:f7:fd:88:5f:9c:89:b2:b8:51:0f:
64:95:0c:86:08:bc:8a:b6:fe:95:88:e2:f2:81:aa:02:7a:03:
e6:3d:96:64:49:26:66:08:14:6d:d5:68:37:dd:4a:96:6c:72:
80:44:a6:c6:73:42:50:fe:97:d7:9d:dd:be:3f:be:40:cd:ba:
4d:22:9f:fe:f4:d4:1a:bb:bb:f0:8f:49:e3:9a:0f:ac:9e:20:
cd:ee:c0:b6:d2:0c:6f:cc:23:14:bd:cc:38:ee:38:bf:b1:50:
cb:e6:67:1b:c4:62:45:65:7c:ca:80:d3:6f:4d:41:a4:55:57:
46:06:0f:b9:0e:23:4f:d2:df:e2:3f:5c:7b:2e:b8:ae:d3:f0:
4d:18:38:e4:40:74:df:58:26:ce:d9:19:ad:97:c7:f3:1a:60:
6a:ce:84:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:38:38 2026 by rpki-client