Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: gEN2JF0+BoalVKQXNE22tMjWIXWQWegZqsKApCV3F90=
Subject key identifier: 80:BE:52:CF:15:F8:51:BC:25:D4:AB:24:A1:53:85:1C:E3:4D:D6:96
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 019D99D02AD0D1627CF5E89372FC0BB1D426
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0BB8
Signing time: Fri 17 Apr 2026 05:00:49 +0000
Manifest this update: Fri 17 Apr 2026 05:00:49 +0000
Manifest next update: Sat 18 Apr 2026 05:00:49 +0000
Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: m5hLahUOY6jZYFTVDH5SjKz6MAPkLLh7uXKfFJyjVm8=)
2: nDpg3cf0raF6jX95bMjbAoRFS7U.roa (hash: GVYh5XEIeIuimg63JfOsccl7tRFww+AiTmkbi2YiTYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:2a:d0:d1:62:7c:f5:e8:93:72:fc:0b:b1:d4:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Apr 17 05:00:49 2026 GMT
Not After : Apr 18 05:00:49 2026 GMT
Subject: CN=80be52cf15f851bc25d4ab24a153851ce34dd696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:53:6e:57:47:a4:ad:b2:46:ff:99:6a:da:f8:
69:43:68:09:2d:ec:98:33:b3:3d:7d:92:83:52:97:
35:04:d8:a5:25:2a:2d:61:4e:21:35:99:91:7a:a9:
11:b9:3a:23:95:13:67:fc:f4:6f:96:d5:e4:77:c9:
18:f1:b6:37:ba:32:05:c3:bb:0b:ed:59:6a:bf:f6:
58:45:64:92:ae:3a:78:6c:14:9c:d0:72:93:6b:82:
75:32:a6:8e:84:b2:97:db:fc:51:36:38:7b:1f:23:
c6:de:fa:cd:22:7d:92:3b:90:03:42:d4:f9:d0:0c:
cf:46:a3:ad:3a:d0:a3:f9:23:38:3c:80:b2:72:72:
70:22:bf:d2:69:6a:3c:eb:2c:e8:2a:5a:92:cf:1a:
d0:72:10:e9:e8:24:6a:d4:ba:9f:64:bc:fb:ad:a5:
cc:46:ed:82:f3:d9:f2:ea:fc:8b:51:db:da:ee:ea:
30:10:d3:ae:6f:47:43:15:67:dc:88:d6:c9:7d:dc:
e0:04:6e:b6:c1:b6:5d:5a:9d:c1:6d:a5:66:9d:01:
2a:c8:bf:37:4d:7a:a4:96:9f:d1:66:9f:c3:0a:8c:
6e:56:fc:f5:39:1c:39:bb:20:86:15:dd:8d:52:0d:
be:8f:57:e3:3e:bb:42:f4:ea:1e:68:ad:84:00:14:
76:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BE:52:CF:15:F8:51:BC:25:D4:AB:24:A1:53:85:1C:E3:4D:D6:96
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:53:fe:f4:3f:29:e3:72:4e:0c:8f:f1:18:33:d7:22:3a:12:
f5:52:30:0a:03:09:0a:bb:96:12:a9:32:5f:80:26:68:16:64:
36:b4:3e:6e:b8:8f:80:91:ed:14:8d:54:ea:2d:b0:b4:42:76:
7e:a9:95:17:ce:44:b8:93:24:82:f6:dd:25:d7:7b:ee:c6:43:
66:ec:0e:5a:e6:35:2a:56:6d:66:65:b6:a8:8e:a8:4b:fe:74:
ab:23:90:75:f2:46:d9:d9:22:96:0d:27:cb:cb:44:91:0d:8a:
b6:6d:0d:b6:38:61:3a:4a:21:f7:89:10:b7:4b:18:77:e6:f4:
61:76:bf:9b:f0:70:17:e9:94:6a:52:5f:ae:dc:72:ac:6c:7c:
47:f0:5e:c1:34:30:cd:6c:dc:99:97:bb:3c:9a:b7:97:1b:81:
41:95:f9:e9:9c:c2:da:21:65:d7:1a:f0:64:a7:e3:b7:37:aa:
36:23:3b:d8:0d:39:a3:d0:22:70:55:fd:7f:03:b5:e4:11:4b:
43:1b:9b:6c:81:1e:0a:a2:b0:82:8f:f5:28:f4:0d:a0:be:d6:
a3:f0:e0:4c:9e:89:c2:bf:6d:84:c6:ab:51:16:41:bb:82:f8:
6b:e2:05:16:7e:bd:d2:50:f0:ee:95:62:cf:09:31:88:83:d2:
18:f9:2f:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0CrQ0WJ89eiTcvwLsdQmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZTU2MDFmZTEyMjJmODliYjNhYWFmMjY0ZjBmNmVhNzM5
MWMxMzgwHhcNMjYwNDE3MDUwMDQ5WhcNMjYwNDE4MDUwMDQ5WjAzMTEwLwYDVQQD
Eyg4MGJlNTJjZjE1Zjg1MWJjMjVkNGFiMjRhMTUzODUxY2UzNGRkNjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllNuV0ekrbJG/5lq2vhpQ2gJLeyY
M7M9fZKDUpc1BNilJSotYU4hNZmReqkRuTojlRNn/PRvltXkd8kY8bY3ujIFw7sL
7Vlqv/ZYRWSSrjp4bBSc0HKTa4J1MqaOhLKX2/xRNjh7HyPG3vrNIn2SO5ADQtT5
0AzPRqOtOtCj+SM4PICycnJwIr/SaWo86yzoKlqSzxrQchDp6CRq1LqfZLz7raXM
Ru2C89ny6vyLUdva7uowENOub0dDFWfciNbJfdzgBG62wbZdWp3BbaVmnQEqyL83
TXqklp/RZp/DCoxuVvz1ORw5uyCGFd2NUg2+j1fjPrtC9OoeaK2EABR2IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIC+Us8V+FG8JdSrJKFThRzjTdaWMB8GA1UdIwQY
MBaAFB3lYB/hIi+Juzqq8mTw9upzkcE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9lN2I1OTEtMGY1ZS00MTQxLWJlOTYt
ZGRkNTNkNzkyOGE4LzEvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9lN2I1OTEtMGY1ZS00MTQxLWJlOTYtZGRkNTNkNzkyOGE4
LzEvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnlP+9D8p
43JODI/xGDPXIjoS9VIwCgMJCruWEqkyX4AmaBZkNrQ+briPgJHtFI1U6i2wtEJ2
fqmVF85EuJMkgvbdJdd77sZDZuwOWuY1KlZtZmW2qI6oS/50qyOQdfJG2dkilg0n
y8tEkQ2Ktm0NtjhhOkoh94kQt0sYd+b0YXa/m/BwF+mUalJfrtxyrGx8R/BewTQw
zWzcmZe7PJq3lxuBQZX56ZzC2iFl1xrwZKfjtzeqNiM72A05o9AicFX9fwO15BFL
QxubbIEeCqKwgo/1KPQNoL7Wo/DgTJ6Jwr9thMarURZBu4L4a+IFFn690lDw7pVi
zwkxiIPSGPkviQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:06:34 2026 by rpki-client