Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: LXz55iiX8x/+pdLHwninKsSLf6INXnGpVgeVKmnYd1E=
Subject key identifier: 5F:BA:92:0A:71:6D:5F:E1:EE:13:28:81:39:BD:94:12:36:AB:C6:60
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 019ED4999CD6265667F7E79E745D478E5478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0C5B
Signing time: Wed 17 Jun 2026 08:01:37 +0000
Manifest this update: Wed 17 Jun 2026 08:01:37 +0000
Manifest next update: Thu 18 Jun 2026 08:01:37 +0000
Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: sEPFeuYGRRSQbjD2sSPJiQetvBs1cliaoR05KnrKo9A=)
2: nDpg3cf0raF6jX95bMjbAoRFS7U.roa (hash: GVYh5XEIeIuimg63JfOsccl7tRFww+AiTmkbi2YiTYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:9c:d6:26:56:67:f7:e7:9e:74:5d:47:8e:54:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Jun 17 08:01:37 2026 GMT
Not After : Jun 18 08:01:37 2026 GMT
Subject: CN=5fba920a716d5fe1ee13288139bd941236abc660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d8:6c:94:2e:95:a5:d0:ba:df:cb:40:2c:fc:
90:f2:95:b7:00:6e:88:5c:d2:6a:ab:f5:82:0f:5b:
f3:9b:98:e5:f2:82:c3:f9:d5:9a:e9:d7:be:4c:b7:
3f:e1:9f:66:30:ae:4a:a8:a8:e9:8f:61:98:76:4d:
3c:98:18:c3:f0:59:45:17:b4:c1:ac:63:53:c6:0b:
2c:f9:41:3b:60:c4:35:30:e8:f1:0d:e6:80:1b:04:
b6:50:7b:6b:95:b9:0c:e7:00:c2:6e:0d:2e:5a:ec:
b6:40:d0:8c:47:81:b6:81:db:02:d0:33:d9:03:25:
15:95:15:c5:4d:11:09:9e:dc:31:36:81:05:aa:66:
bb:b1:63:dd:83:6b:8b:fc:cd:05:e0:ac:1b:2a:1b:
9f:73:35:e5:14:5f:46:5f:0a:5d:60:f0:1d:bf:50:
55:ee:cf:05:53:f8:9a:21:7a:57:d8:f0:53:ae:34:
9b:0c:e0:c3:c8:fc:20:ad:a1:ac:39:01:6e:47:6b:
c4:d4:f3:25:03:c6:4d:47:fc:be:dc:5c:da:a5:29:
07:a9:58:6b:8d:50:6a:03:79:15:8c:c9:86:e3:9c:
4f:2e:44:d5:47:3a:ac:56:fd:0a:e7:81:44:84:2a:
b7:ff:b5:d1:d5:d1:19:fa:11:9d:0e:26:4a:bf:ca:
40:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BA:92:0A:71:6D:5F:E1:EE:13:28:81:39:BD:94:12:36:AB:C6:60
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:71:3b:26:20:a8:f5:77:4f:54:ce:8d:c3:73:b3:44:0b:4b:
72:88:d9:c7:6d:23:9e:d3:b1:e8:02:02:aa:45:bf:3c:30:43:
22:47:a0:82:56:e7:16:e5:b2:c5:b3:c1:d7:e2:93:d8:e7:9b:
4c:88:2a:c1:7e:75:ff:6a:e0:21:dc:a2:ed:b4:e5:53:2c:1a:
07:ca:f7:23:5f:cf:d0:a9:c4:ba:1c:63:a9:25:be:0f:43:27:
2b:a9:8f:46:fc:61:f9:9b:fb:f6:59:c2:0e:de:e4:bf:fc:ba:
ef:d3:53:12:51:92:c8:ee:e4:9b:13:78:96:c1:99:3d:39:7a:
2f:1e:a6:69:57:36:b7:90:af:c9:43:f3:07:71:f3:36:3d:81:
fd:0a:c1:25:39:3f:dd:1d:67:ef:e8:aa:64:5a:cc:e7:e5:ea:
f9:34:e7:7a:18:f5:4d:07:51:c7:db:4f:38:cb:1a:da:3c:d2:
74:c6:39:1e:2b:cd:43:81:f1:12:2a:d7:33:d5:62:3e:4e:89:
e1:97:0e:fb:48:47:e1:c6:22:13:a4:43:4d:b2:f3:b6:7c:ae:
14:e4:db:45:3a:15:f1:d1:44:8d:6e:ac:cc:01:14:0f:04:c0:
c9:20:4d:cd:2e:83:3f:57:ab:9f:ad:03:af:ae:52:51:a2:ca:
14:8c:20:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7UmZzWJlZn9+eedF1HjlR4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZTU2MDFmZTEyMjJmODliYjNhYWFmMjY0ZjBmNmVhNzM5
MWMxMzgwHhcNMjYwNjE3MDgwMTM3WhcNMjYwNjE4MDgwMTM3WjAzMTEwLwYDVQQD
Eyg1ZmJhOTIwYTcxNmQ1ZmUxZWUxMzI4ODEzOWJkOTQxMjM2YWJjNjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNhslC6VpdC638tALPyQ8pW3AG6I
XNJqq/WCD1vzm5jl8oLD+dWa6de+TLc/4Z9mMK5KqKjpj2GYdk08mBjD8FlFF7TB
rGNTxgss+UE7YMQ1MOjxDeaAGwS2UHtrlbkM5wDCbg0uWuy2QNCMR4G2gdsC0DPZ
AyUVlRXFTREJntwxNoEFqma7sWPdg2uL/M0F4KwbKhufczXlFF9GXwpdYPAdv1BV
7s8FU/iaIXpX2PBTrjSbDODDyPwgraGsOQFuR2vE1PMlA8ZNR/y+3FzapSkHqVhr
jVBqA3kVjMmG45xPLkTVRzqsVv0K54FEhCq3/7XR1dEZ+hGdDiZKv8pApQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+6kgpxbV/h7hMogTm9lBI2q8ZgMB8GA1UdIwQY
MBaAFB3lYB/hIi+Juzqq8mTw9upzkcE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9lN2I1OTEtMGY1ZS00MTQxLWJlOTYt
ZGRkNTNkNzkyOGE4LzEvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9lN2I1OTEtMGY1ZS00MTQxLWJlOTYtZGRkNTNkNzkyOGE4
LzEvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADHE7JiCo
9XdPVM6Nw3OzRAtLcojZx20jntOx6AICqkW/PDBDIkegglbnFuWyxbPB1+KT2Oeb
TIgqwX51/2rgIdyi7bTlUywaB8r3I1/P0KnEuhxjqSW+D0MnK6mPRvxh+Zv79lnC
Dt7kv/y679NTElGSyO7kmxN4lsGZPTl6Lx6maVc2t5CvyUPzB3HzNj2B/QrBJTk/
3R1n7+iqZFrM5+Xq+TTnehj1TQdRx9tPOMsa2jzSdMY5HivNQ4HxEirXM9ViPk6J
4ZcO+0hH4cYiE6RDTbLztnyuFOTbRToV8dFEjW6szAEUDwTAySBNzS6DP1ern60D
r65SUaLKFIwgrw==
-----END CERTIFICATE-----
Generated at Wed Jun 17 12:26:24 2026 by rpki-client