Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: LC7NFhvZnoipDI/iHUw7FtREvKC6DJeF6uXvChjD1Mc=
Subject key identifier: 11:D4:21:73:2F:7A:B6:1F:AE:B5:BE:0F:F8:0E:6D:CB:B3:47:CF:97
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019ED507215775E4C48D4EB0037A4DCB3F60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 04E7
Signing time: Wed 17 Jun 2026 10:01:14 +0000
Manifest this update: Wed 17 Jun 2026 10:01:14 +0000
Manifest next update: Thu 18 Jun 2026 10:01:14 +0000
Files and hashes: 1: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: 5ZcJuDhDvNhhUMKBIIi2VKe/Z/mSwehfbUnUhwVNeIk=)
2: emamOYQH7VSgnUMUP8mvfhqm5dQ.roa (hash: MSxhtnoAd2af3qlANifc6U+2SnTTVeaXrUw3+bcJ3Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d5:07:21:57:75:e4:c4:8d:4e:b0:03:7a:4d:cb:3f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Jun 17 10:01:14 2026 GMT
Not After : Jun 18 10:01:14 2026 GMT
Subject: CN=11d421732f7ab61faeb5be0ff80e6dcbb347cf97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c7:e6:eb:1c:ca:ad:1b:2e:42:d8:d6:f8:ea:
96:91:5b:d0:f4:39:70:50:2f:ea:42:36:83:67:60:
04:ec:3f:41:c3:88:e4:03:9f:88:74:fe:0e:4a:b8:
be:51:54:1a:ed:2a:18:37:af:32:9d:37:ca:c4:b4:
ff:5a:ac:5f:db:87:bc:bd:af:99:a9:02:79:fa:7f:
7e:a8:49:1e:1b:32:5d:49:46:81:73:02:a6:33:f0:
70:cb:84:c5:f7:9c:b1:b5:08:91:db:2a:92:90:43:
39:26:14:bf:00:c5:ef:d5:eb:df:e2:d4:01:2a:d9:
3f:f5:c0:db:86:21:9e:f2:05:42:6f:bf:d7:12:84:
c8:4e:5e:9b:61:e2:c5:59:db:5c:f5:dd:90:d3:66:
67:8c:44:72:4f:38:80:fc:1c:c1:c7:7c:1d:f8:5d:
25:30:84:3e:d9:33:e4:54:3e:ed:43:af:ef:a5:51:
45:53:d9:7a:84:0c:b5:33:c0:b1:df:49:ab:86:30:
23:5c:66:6c:76:0e:2e:07:41:32:c7:84:e1:04:12:
73:29:cb:f8:17:e2:cc:59:bc:a3:4e:c6:9b:da:be:
9e:fa:a7:43:f9:04:5a:7e:04:9a:50:72:70:47:44:
00:61:d6:92:30:8d:a1:1b:14:e2:47:c5:80:de:79:
84:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D4:21:73:2F:7A:B6:1F:AE:B5:BE:0F:F8:0E:6D:CB:B3:47:CF:97
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:5b:89:a7:71:fa:30:65:f3:1f:af:f6:5e:08:fb:34:31:76:
40:f7:14:03:24:fa:ab:52:8e:a0:e3:9c:58:12:e7:95:ac:e7:
26:13:75:18:62:e7:58:64:27:c4:15:ff:f0:ec:d8:bb:6b:e1:
eb:4e:00:5d:b5:4a:4e:3d:62:3d:f3:6d:55:1d:03:23:2d:ee:
db:30:23:79:54:38:e4:44:9a:e5:49:62:4a:b9:14:9c:88:14:
7a:5f:f0:92:43:fc:7a:ac:88:a4:85:fb:d7:4d:e6:5c:5c:c4:
f3:05:31:79:da:b5:e4:d1:7d:aa:50:fc:ab:5d:66:3b:fc:79:
12:2f:d0:5b:f0:5b:40:d7:6c:4e:7b:e1:43:86:95:0e:94:4c:
9a:8f:7c:fa:7c:68:e2:cc:88:b3:6b:46:b7:67:57:4b:ab:05:
9d:d5:32:cc:1a:d7:0e:14:da:12:ce:07:51:a3:e9:c8:48:60:
3f:12:19:53:86:62:15:f7:96:ca:92:b4:d2:98:d5:db:4e:46:
2f:21:8e:b2:94:51:3a:38:41:66:59:60:20:bc:6a:6d:ef:70:
db:83:a5:82:e8:3d:83:a4:d1:97:b0:b6:ec:d7:51:fd:e1:46:
65:40:f8:65:53:23:9c:4a:31:c3:29:5c:4b:d9:f6:32:2e:5f:
26:83:49:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:01:08 2026 by rpki-client