Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
File: HLjjf1E93Cn_15HDjJZjI2nKVFE.mft (raw, json)
Hash identifier: SskYzEn7RK5i43o0fwFgdOD6VVDitA7ZKUNvdjj68Rk=
Subject key identifier: 37:6F:CB:06:2B:FA:A2:1F:F6:1D:D4:D7:78:C8:94:8A:E1:9F:A0:28
Authority key identifier: 1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
Certificate issuer: /CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Certificate serial: 019EFCB9BCC092C4B6529141CDB9BD50809C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
Manifest number: 1528
Signing time: Thu 25 Jun 2026 03:01:31 +0000
Manifest this update: Thu 25 Jun 2026 03:01:31 +0000
Manifest next update: Fri 26 Jun 2026 03:01:31 +0000
Files and hashes: 1: 5bhy7eDbTF3iSMoLKUHBCIILj4E.roa (hash: 9YusEuoHgRDwFpuJ1B9xJzYQFifXAqM0fNdh2jgcmr0=)
2: D-r3D7TjflJW1amM5h7I8MR0oUk.asa (hash: z5fDIV8YawnmcSoSc/AVZ5e/iduZ1ZCGdbI+J/9nY3A=)
3: HLjjf1E93Cn_15HDjJZjI2nKVFE.crl (hash: xnfaQE1nDJ0CX0pBjJXc/itNYvShgnsyAgK1eIBFcCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:b9:bc:c0:92:c4:b6:52:91:41:cd:b9:bd:50:80:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Validity
Not Before: Jun 25 03:01:31 2026 GMT
Not After : Jun 26 03:01:31 2026 GMT
Subject: CN=376fcb062bfaa21ff61dd4d778c8948ae19fa028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:06:80:ef:6d:4b:02:7a:ac:e2:9a:56:55:c2:
48:a6:7d:df:1a:09:0f:e1:61:06:64:42:df:d1:d7:
50:66:87:8a:c7:73:68:b0:09:cb:a2:fb:cd:ca:7d:
b5:bd:b6:c4:9d:30:ae:94:99:c5:c7:f2:05:ca:03:
7a:18:f8:f0:05:32:8d:3e:2e:53:c9:b6:1e:15:f7:
25:43:e9:f1:02:3c:97:d1:05:77:ec:03:a9:09:c2:
34:6b:70:28:06:4b:f0:d4:4f:81:77:54:17:98:ab:
57:68:0a:9d:f5:1b:30:a1:09:22:2e:a8:34:f7:97:
f5:60:82:ce:11:1c:c2:f9:88:b8:7a:33:a0:d1:7a:
4e:d7:09:49:c5:91:ec:e6:88:a3:6a:5e:fe:9e:5d:
7a:70:7e:21:6b:ea:99:0f:b4:19:cf:fc:c3:62:8c:
1f:ca:19:03:ba:61:46:9b:95:09:0c:50:62:1b:8b:
05:9c:c4:31:49:33:ed:9e:3a:b7:d3:3d:30:a4:63:
3b:d1:d4:cd:bd:d1:a8:07:24:64:15:e7:39:b3:f0:
b0:6f:44:04:75:b7:b1:1e:ef:85:d1:50:dc:98:11:
cc:c7:e2:ec:a8:03:98:69:05:9a:4e:d9:24:eb:96:
a7:09:c9:07:64:74:a2:ba:4e:28:e6:a7:fd:22:22:
1a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6F:CB:06:2B:FA:A2:1F:F6:1D:D4:D7:78:C8:94:8A:E1:9F:A0:28
X509v3 Authority Key Identifier:
keyid:1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:93:4a:df:a5:e0:85:66:6e:17:4d:98:83:e8:df:28:e4:60:
b9:4b:c3:5d:18:86:a5:fa:89:9f:a6:73:02:d7:ae:50:58:d6:
9f:9c:01:04:d7:4e:c5:7f:4e:c4:5d:d2:4c:a6:25:7c:ed:8c:
9b:98:7e:1c:78:00:de:8b:c3:dc:82:3e:c3:7f:e4:8a:4c:58:
04:c0:63:56:72:52:a0:72:69:52:a7:7e:95:b5:48:e0:25:3a:
7e:a3:38:63:c7:d0:89:26:48:67:03:37:d4:12:e2:06:d8:eb:
f1:6e:83:bd:39:40:cb:ea:93:a8:19:16:5c:26:5b:09:9a:75:
5c:cb:74:4e:47:21:ba:c1:7d:43:21:20:51:6e:71:c2:db:a0:
3b:27:e6:74:29:ee:ea:ec:5f:3f:dd:49:7a:1c:c0:83:ea:f5:
ab:ef:e0:ff:98:77:d9:c7:2a:85:3f:eb:3a:d3:74:fb:0e:30:
3c:d0:7a:70:4f:87:54:dc:b4:05:78:57:f5:b9:9a:7b:9e:0f:
33:17:eb:9b:80:f2:a6:32:34:43:6d:67:59:5b:0e:2c:e5:60:
47:d8:39:c7:9b:eb:29:be:84:4b:2d:6c:ad:cd:4b:11:fc:54:
48:af:8d:91:b8:2a:be:d3:47:6b:ed:d5:4a:96:0f:1a:4e:1a:
04:c2:d0:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:28:09 2026 by rpki-client