Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json)
Hash identifier: F7hYlYOoItzG/g3bO8lymSuVyIQx11oolRWbO/giTfc=
Subject key identifier: B4:4A:05:1C:55:EE:A6:B9:01:4C:3B:88:E9:53:64:03:5E:2A:59:59
Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Certificate serial: 019EB9C605F20E7F34FB2D94DCDF042BA3CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
Manifest number: 18E8
Signing time: Fri 12 Jun 2026 03:00:23 +0000
Manifest this update: Fri 12 Jun 2026 03:00:23 +0000
Manifest next update: Sat 13 Jun 2026 03:00:23 +0000
Files and hashes: 1: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: yTn5ZAomzJ66cwJ4xSDgLt7jQH+KwwQUd05JVSlTxqY=)
2: h2Pj0fup6PmGgboIXfm183EEF9c.roa (hash: eferMGwRa6YXz1Q8h3PiGClbC5vOEBn3msIVlW/jo08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 03:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:c6:05:f2:0e:7f:34:fb:2d:94:dc:df:04:2b:a3:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Validity
Not Before: Jun 12 03:00:23 2026 GMT
Not After : Jun 13 03:00:23 2026 GMT
Subject: CN=b44a051c55eea6b9014c3b88e95364035e2a5959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b7:89:42:6b:5d:ce:94:9f:33:43:70:a2:e9:
50:63:e9:88:07:af:23:d1:7b:64:66:66:60:02:01:
25:cd:31:49:c6:b7:65:27:52:af:fb:d7:db:fb:a7:
35:1a:0f:ea:7b:6c:18:16:84:32:ad:25:70:94:51:
eb:3a:52:e1:ff:7d:56:a5:58:71:ec:ea:47:a0:09:
0e:18:79:67:09:66:37:7b:81:97:e1:83:5c:f4:bf:
26:37:88:52:5e:58:bf:23:fa:81:7f:0f:27:19:90:
37:5b:49:8d:3c:7a:57:8f:55:9c:5f:bd:0e:56:28:
4b:d5:d9:28:2c:6f:34:07:06:15:16:18:bb:f5:6b:
1a:e3:2f:d7:d5:d6:5b:67:fc:4f:a2:e0:9c:b2:36:
d5:18:f4:d1:66:61:31:27:bc:83:a9:69:4f:59:2a:
18:1d:3c:de:79:98:f5:b7:1f:57:e3:95:e4:67:84:
d0:39:12:6c:de:0f:b7:eb:d8:4e:79:14:86:79:b9:
19:e5:ec:86:7e:8f:a4:bc:24:65:c1:ab:84:98:44:
ce:54:52:3f:f0:d5:f4:b6:9d:d3:ac:74:35:66:4e:
5e:bf:69:c8:25:3f:15:fe:3d:d8:30:79:2e:9c:f8:
14:a6:62:dd:81:e5:d7:33:ee:b7:91:7f:3d:03:4e:
8a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4A:05:1C:55:EE:A6:B9:01:4C:3B:88:E9:53:64:03:5E:2A:59:59
X509v3 Authority Key Identifier:
keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:f1:e1:ff:2c:76:69:c9:37:81:29:09:51:db:89:38:53:96:
31:5e:15:ed:fb:a3:80:c2:cd:05:2d:b0:05:99:16:54:bc:59:
a1:68:d6:0e:c3:02:03:e7:7d:33:a5:68:b7:89:4e:83:06:4d:
79:90:c5:24:ed:44:30:9c:36:22:35:04:42:c4:d3:1e:26:c4:
40:9a:ac:fa:94:64:58:74:2b:fe:39:53:c6:9e:6b:36:45:d9:
67:98:a0:2f:d3:43:ad:58:96:27:f4:67:d0:90:48:b8:7b:48:
83:6d:12:90:f9:f9:3c:3d:69:32:55:4e:b4:95:14:c8:1b:e3:
af:75:d4:24:10:cf:25:e5:d7:22:2c:d7:c6:bb:40:89:be:52:
00:b6:a2:ef:8c:a5:14:8b:3f:f1:d1:09:36:66:0b:04:bd:64:
b7:be:9f:34:00:3f:10:17:c6:40:1f:3d:cf:81:1b:52:0c:b3:
ae:0f:69:21:51:38:ab:94:ab:cb:a7:9b:ca:81:8b:af:d3:9e:
f3:b8:c1:07:75:5d:e1:6e:ba:0c:11:27:e9:90:0c:70:ba:ee:
01:db:db:c8:8d:b5:25:53:cd:e9:e5:43:4c:7d:e2:e8:c9:9b:
af:d7:90:8d:dc:97:75:2b:0f:ee:44:01:ca:2e:47:7d:16:ac:
24:e2:28:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ65xgXyDn80+y2U3N8EK6POMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYTU1OWQ4YmY2YWMyZDg2OGQwNjY1YWQ1N2QyYzZhYzE0
NzIxOTMwHhcNMjYwNjEyMDMwMDIzWhcNMjYwNjEzMDMwMDIzWjAzMTEwLwYDVQQD
EyhiNDRhMDUxYzU1ZWVhNmI5MDE0YzNiODhlOTUzNjQwMzVlMmE1OTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7eJQmtdzpSfM0NwoulQY+mIB68j
0XtkZmZgAgElzTFJxrdlJ1Kv+9fb+6c1Gg/qe2wYFoQyrSVwlFHrOlLh/31WpVhx
7OpHoAkOGHlnCWY3e4GX4YNc9L8mN4hSXli/I/qBfw8nGZA3W0mNPHpXj1WcX70O
VihL1dkoLG80BwYVFhi79Wsa4y/X1dZbZ/xPouCcsjbVGPTRZmExJ7yDqWlPWSoY
HTzeeZj1tx9X45XkZ4TQORJs3g+369hOeRSGebkZ5eyGfo+kvCRlwauEmETOVFI/
8NX0tp3TrHQ1Zk5ev2nIJT8V/j3YMHkunPgUpmLdgeXXM+63kX89A06KnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLRKBRxV7qa5AUw7iOlTZANeKllZMB8GA1UdIwQY
MBaAFB6lWdi/asLYaNBmWtV9LGrBRyGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEt
NWZmY2M0NmFlN2I1LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEtNWZmY2M0NmFlN2I1
LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdvHh/yx2
ack3gSkJUduJOFOWMV4V7fujgMLNBS2wBZkWVLxZoWjWDsMCA+d9M6Vot4lOgwZN
eZDFJO1EMJw2IjUEQsTTHibEQJqs+pRkWHQr/jlTxp5rNkXZZ5igL9NDrViWJ/Rn
0JBIuHtIg20SkPn5PD1pMlVOtJUUyBvjr3XUJBDPJeXXIizXxrtAib5SALai74yl
FIs/8dEJNmYLBL1kt76fNAA/EBfGQB89z4EbUgyzrg9pIVE4q5Sry6ebyoGLr9Oe
87jBB3Vd4W66DBEn6ZAMcLruAdvbyI21JVPN6eVDTH3i6Mmbr9eQjdyXdSsP7kQB
yi5HfRasJOIorg==
-----END CERTIFICATE-----
Generated at Fri Jun 12 08:29:03 2026 by rpki-client