Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: O/RFYo1FMILZMRrdEYY7Jy+8K9+OnoPmGJC8rhAZyXE=
Subject key identifier: 6F:B4:2A:E1:C8:6E:1A:29:E3:37:05:F5:79:6B:9A:48:94:CA:D6:CB
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019EB98F59C45C79118D94B88F24A3984F20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1958
Signing time: Fri 12 Jun 2026 02:00:39 +0000
Manifest this update: Fri 12 Jun 2026 02:00:39 +0000
Manifest next update: Sat 13 Jun 2026 02:00:39 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: +be/fDEhl0zWXei5QhL9P2y9eEpHGCsnm4veDHJvFWk=)
2: _SW-efIyZk8frPlLE8yBxAElkiU.roa (hash: iv2POwrNLwDCvtWPf5ONex0CqcvwAdFHiaQ1/D120FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:59:c4:5c:79:11:8d:94:b8:8f:24:a3:98:4f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Jun 12 02:00:39 2026 GMT
Not After : Jun 13 02:00:39 2026 GMT
Subject: CN=6fb42ae1c86e1a29e33705f5796b9a4894cad6cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:89:7a:26:fc:43:ed:c6:8d:b8:82:47:9f:17:
46:59:b4:c3:a3:70:8a:9a:3f:8c:b8:7e:7c:f2:27:
a8:61:ff:ae:1d:81:7d:2a:6a:34:ea:1c:c1:ab:9f:
a4:fc:df:a0:35:89:39:1e:49:2f:32:fd:03:a4:de:
1f:5c:57:41:34:0d:fb:dc:aa:69:8d:55:54:59:2a:
a9:86:0e:68:35:50:12:df:3d:a4:af:c8:54:c0:4f:
92:de:27:55:0a:35:07:d6:78:c5:f5:cf:1b:ce:d9:
08:26:19:2b:7f:f0:86:84:55:6e:ed:fa:f4:6f:15:
ed:9a:d5:ee:fd:c0:af:50:cf:ff:4f:18:f2:dd:6d:
e0:d3:13:31:2e:9b:6e:eb:35:4b:7e:d7:f0:65:98:
e9:75:7c:f2:7d:13:6e:33:04:b1:bf:f5:86:2a:bf:
4b:79:1a:3b:63:3b:3e:27:c7:28:2b:b6:25:ef:db:
d7:9b:61:97:d3:fb:22:70:b8:ae:8a:d5:75:0e:a5:
23:dd:27:54:02:b6:c6:9a:33:58:b7:c7:48:70:3b:
b7:61:3c:8c:76:a1:85:80:6d:d7:92:b5:54:c9:d7:
5b:04:67:cd:71:2b:63:55:49:93:d5:ad:74:fa:7b:
42:95:a4:00:4d:98:b1:0e:fd:c3:91:a5:96:37:91:
38:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B4:2A:E1:C8:6E:1A:29:E3:37:05:F5:79:6B:9A:48:94:CA:D6:CB
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:31:88:6f:db:f4:bb:57:9f:16:58:cd:75:b3:51:57:0b:b2:
e3:e5:6a:41:3d:4c:ea:94:a9:c3:a5:dd:1f:aa:a5:a4:41:05:
ed:02:e3:41:6f:73:02:12:82:f9:2f:6e:11:15:80:49:86:90:
fe:b2:87:76:b0:05:fb:9b:3a:f1:4c:a0:25:ac:4f:0c:0b:6b:
c1:79:29:33:f8:50:56:b2:72:ce:02:ae:a0:3a:83:8e:49:9b:
9f:a2:74:20:98:50:fc:22:91:18:7a:0f:6c:9f:db:0f:55:3d:
f1:1f:a8:c0:71:e0:e6:93:a3:0d:0f:64:2d:60:60:c5:e2:ab:
28:99:bd:5d:04:80:4e:40:f2:b2:38:d4:8d:75:96:80:82:22:
0e:4f:ff:5b:cb:86:b6:d6:ac:21:f2:5b:da:3c:ab:02:4a:f8:
30:05:84:b9:29:ff:bc:73:00:51:a8:a1:6f:90:40:ed:e8:eb:
d2:91:5b:0f:26:b0:e7:13:3b:04:af:e3:b1:e4:25:a4:39:ad:
48:18:86:9d:20:05:a0:7b:c7:61:ca:33:0f:d6:0a:a4:b0:ee:
c2:94:42:62:dd:ab:1c:22:8f:fa:59:52:00:d4:f2:00:92:27:
1d:a2:e2:b8:41:10:80:fb:ca:04:09:06:49:ca:93:63:6e:e2:
88:82:af:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:02:04 2026 by rpki-client