Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: iSBRiyrlzqVePQo00O3vS/X0rnrKUno3iF/CoYdGMSM=
Subject key identifier: 07:92:29:9F:64:B4:1D:6F:58:89:12:57:38:CE:E3:B1:9F:30:AB:E9
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 019CAE355536F4F02932DDBD45D68604959A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0B3E
Signing time: Mon 02 Mar 2026 11:00:56 +0000
Manifest this update: Mon 02 Mar 2026 11:00:56 +0000
Manifest next update: Tue 03 Mar 2026 11:00:56 +0000
Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: DYBz/+6FRXFlkIYoI4gaOmLW/0p2oUh26H2dp6LQ/6E=)
2: nDpg3cf0raF6jX95bMjbAoRFS7U.roa (hash: GVYh5XEIeIuimg63JfOsccl7tRFww+AiTmkbi2YiTYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:55:36:f4:f0:29:32:dd:bd:45:d6:86:04:95:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Mar 2 11:00:56 2026 GMT
Not After : Mar 3 11:00:56 2026 GMT
Subject: CN=0792299f64b41d6f5889125738cee3b19f30abe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:b2:53:bf:dd:09:73:13:5b:bf:2f:76:99:
66:d0:0a:27:80:42:e3:4a:e5:56:f2:99:4b:24:d7:
b3:b2:a4:a4:bf:ff:fc:24:e0:d6:fe:79:6a:71:d8:
87:40:15:39:96:25:d3:4b:59:c1:5b:fc:d3:f6:5a:
59:50:24:99:dd:94:3c:32:ec:59:69:ca:0e:40:bc:
0e:41:dd:84:f9:80:b0:5c:e3:50:16:19:35:ed:39:
32:77:7f:c4:59:59:f5:a3:38:11:a4:8d:18:e1:2e:
1a:f2:18:87:4a:bf:05:33:5f:a3:e4:77:13:06:e3:
f9:d8:e3:a5:c4:c2:b3:c6:44:d0:1d:d8:3c:b7:34:
7a:3c:01:28:38:e4:e0:15:b1:88:f5:a6:b7:17:b6:
b1:d0:6b:16:2d:d3:84:ea:f7:93:b3:59:ec:64:5f:
ca:f8:74:b8:08:0d:b6:05:b2:80:12:d9:20:b8:d6:
da:f5:35:62:23:e1:4d:29:de:2c:1c:2e:27:e8:42:
cb:e9:49:51:6b:2c:46:85:1b:a1:8b:b9:52:1a:56:
b6:bf:d6:19:76:41:a3:79:fc:a7:72:24:22:49:d6:
23:c1:9a:d6:b1:6a:2e:23:87:f5:c2:11:20:65:1b:
29:d8:02:5e:49:97:7a:91:2d:0e:e2:02:f4:7c:cf:
a3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:92:29:9F:64:B4:1D:6F:58:89:12:57:38:CE:E3:B1:9F:30:AB:E9
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:e7:f6:c8:3d:16:0d:36:c9:19:64:d9:26:44:e4:0f:23:fb:
1b:82:5c:5a:0f:09:f6:5b:fa:91:d5:7e:6c:a1:1b:40:14:e6:
26:55:32:9a:f8:f4:1e:0a:75:b2:7c:1b:9b:cc:91:71:ce:e1:
49:d9:a8:68:a3:64:79:80:5c:3f:73:c4:97:a3:e0:2b:31:6d:
75:40:cd:5b:15:ff:8a:ef:dd:c7:dd:40:74:93:8d:c7:37:6e:
4e:08:11:9d:00:e1:0b:23:42:af:ab:02:d6:4a:7b:d1:d7:8a:
4a:0b:6c:38:a7:40:6c:f7:1f:64:d0:67:25:d4:a5:cd:ea:d2:
e1:31:cd:fa:ec:bf:08:b5:0b:7a:1d:ca:b1:8a:07:f1:95:90:
bd:71:7c:4b:74:93:0e:33:a9:df:aa:71:27:54:5d:8c:b2:0a:
25:d9:49:04:e1:38:42:7e:af:79:05:48:66:1a:ac:43:af:3f:
26:ea:11:4d:cc:05:17:59:13:f9:01:08:06:a1:0a:5d:05:35:
fe:36:66:c3:4c:e5:92:03:04:a2:58:32:37:2f:eb:f2:a5:ad:
ad:50:1e:80:61:1c:8a:c4:25:de:5f:21:fc:16:1d:e4:33:1e:
66:42:9f:0c:ae:16:63:f0:00:c1:30:7b:c7:70:c9:6e:4d:61:
d7:74:0b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:25:32 2026 by rpki-client