Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
File: HkXMabTR7hUbUCdEL7upRMJ035c.mft (raw, json)
Hash identifier: jVd+swlOmJhTlJpPsti5VAf1u4O0QupsYD7KTJ91Lk4=
Subject key identifier: 5D:88:1C:95:EA:F2:A3:F9:BD:50:DD:4B:FC:FD:E6:E2:69:41:A8:9B
Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Certificate serial: 019EBF23D557E991B2CEA82DF734B868D3E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
Manifest number: 18D5
Signing time: Sat 13 Jun 2026 04:00:57 +0000
Manifest this update: Sat 13 Jun 2026 04:00:57 +0000
Manifest next update: Sun 14 Jun 2026 04:00:57 +0000
Files and hashes: 1: HkXMabTR7hUbUCdEL7upRMJ035c.crl (hash: FKrLAVO/VXIgMA4u1SSw+CgrFSmI3vA3yfA9TJ1NJ0I=)
2: aZ1Tmj5Fb0n-wAOpGfFgPSrHdBE.roa (hash: Gos9McZbPOXHaQCrEQsYEbpvs5QjrqdpWFlMgXSAVtE=)
3: cmpuXpIT4rvzqBUAC8x_2HfS7ko.asa (hash: oUrQJpTPJIb/YuIVBdY/6NRHdTxNTlQPuGs1oAK8Nmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:d5:57:e9:91:b2:ce:a8:2d:f7:34:b8:68:d3:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Validity
Not Before: Jun 13 04:00:57 2026 GMT
Not After : Jun 14 04:00:57 2026 GMT
Subject: CN=5d881c95eaf2a3f9bd50dd4bfcfde6e26941a89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:6b:bc:a5:cd:2b:ad:9d:59:35:99:97:a0:
81:9d:20:53:91:ab:35:45:41:15:8d:f2:c0:49:86:
1a:61:84:1a:83:40:35:56:12:11:ee:c8:d8:c0:46:
66:a1:16:73:32:a6:44:66:f5:5f:89:c0:86:5e:bd:
43:3a:76:b9:d5:1b:d1:dc:3c:c8:45:a0:1c:fc:52:
3a:28:5b:5f:3c:56:11:48:33:20:29:e4:39:8d:38:
c2:d3:55:7b:8f:a2:30:bf:8c:70:0e:f5:a6:64:a7:
18:63:23:0b:ac:c2:34:8f:ca:33:c6:59:87:9a:f3:
3a:3c:79:e5:30:02:33:59:e3:b7:82:1b:b4:8e:e6:
db:20:75:f7:06:ca:93:fc:da:9b:be:4b:6d:a9:6e:
ee:8f:0d:4b:7b:ae:bf:d2:36:86:a1:a1:d3:14:b7:
c3:6f:25:49:4b:b3:0e:80:14:78:87:ad:06:87:79:
92:ec:9b:86:24:2c:6b:d4:d1:c0:92:2d:dc:e1:8a:
28:e0:7e:24:64:93:bc:e9:1d:17:1e:9e:9b:4c:4c:
21:a9:f1:7a:89:5d:de:13:bd:91:f7:e6:d0:57:65:
a9:66:27:b8:d7:90:a8:e9:af:c6:cd:03:e0:f3:22:
7d:17:a6:17:80:ae:32:26:9a:47:62:59:09:cf:f5:
49:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:88:1C:95:EA:F2:A3:F9:BD:50:DD:4B:FC:FD:E6:E2:69:41:A8:9B
X509v3 Authority Key Identifier:
keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:b4:b6:7d:fe:a7:88:81:7b:e8:4b:ef:f5:53:49:27:10:db:
95:84:5f:4e:a8:7f:98:b3:05:03:c6:2e:05:9e:46:d4:3b:fa:
5a:9e:60:24:73:f1:79:56:71:a3:4b:df:f5:fa:1e:a4:b1:26:
d0:d5:50:00:51:60:45:86:ed:8d:4e:fa:c0:ac:11:fb:34:32:
50:95:88:af:16:00:fe:6a:51:d2:e3:a8:49:c8:17:15:13:27:
12:1b:5e:83:99:1e:80:c4:e9:2a:68:a9:c9:cf:d6:12:00:65:
fd:ac:4f:fc:a1:c2:ad:82:89:1c:34:87:f9:b4:bd:54:49:42:
f0:62:6e:fd:a3:13:e1:da:ce:6d:60:d2:b8:0c:42:df:d0:fe:
1b:10:fd:9b:af:6e:3e:b3:6d:ef:7e:28:56:d2:bb:b4:f0:12:
b7:4e:04:2b:80:ec:5f:8e:75:84:b7:d3:87:cc:ab:69:92:00:
5e:b0:f8:93:25:2c:0e:ce:67:44:b2:21:85:59:a5:e0:a6:0b:
d8:bc:bf:7f:f2:86:cf:07:60:5d:19:1c:15:c9:8f:d3:fc:e2:
bc:b8:63:46:a1:9d:ec:d5:77:4d:0f:6b:ac:0b:26:b4:6e:c8:
a1:79:56:62:df:93:61:e1:3b:d8:f5:22:a6:8c:90:0b:31:38:
1f:ed:bd:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:18:22 2026 by rpki-client