Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
File: HEwmJz2igh_OJgdaoKbiMB7ISSc.mft (raw, json)
Hash identifier: 58tD8Dw9SEYk+6b4qR1taLPkST310W03B/pOIf2FUpg=
Subject key identifier: 5F:03:BC:D3:A8:62:D2:EA:A7:59:AA:29:25:BF:A7:E2:1D:AD:CF:98
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 019EC0DBB4365FE3F769791BC9DDA76C399A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
Manifest number: 18EB
Signing time: Sat 13 Jun 2026 12:01:24 +0000
Manifest this update: Sat 13 Jun 2026 12:01:24 +0000
Manifest next update: Sun 14 Jun 2026 12:01:24 +0000
Files and hashes: 1: Ao01yBlxvJ843s8rmXALqicuFL4.roa (hash: mObGzmDyz7K0J3EGcnRV4ZYxrkCBxp3ntfUTw3IpS/Y=)
2: HEwmJz2igh_OJgdaoKbiMB7ISSc.crl (hash: WgfXO0qZgZV7tsinWGND9QZC3J5qTvIcTtKy0P/Kesg=)
3: nMd-Xw4DDeNMARsDmT0tnDJOIKY.roa (hash: IL7Kn+tf2yZBt5W5A2bV1BTlZ8XATxRpIlXULrCuaRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:b4:36:5f:e3:f7:69:79:1b:c9:dd:a7:6c:39:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Jun 13 12:01:24 2026 GMT
Not After : Jun 14 12:01:24 2026 GMT
Subject: CN=5f03bcd3a862d2eaa759aa2925bfa7e21dadcf98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f8:3d:0e:90:7b:43:0b:20:2d:4e:3c:34:da:
ed:6c:1c:e4:20:1b:59:e2:52:aa:fa:ee:52:0d:a8:
a8:b1:9e:5c:f3:9c:e4:20:ab:2a:78:f9:ba:0a:3a:
c9:4e:7f:21:55:d2:49:53:77:63:23:63:5a:cf:8d:
01:8a:31:f8:06:80:7d:f6:5e:00:39:a3:75:e3:f5:
07:d2:50:73:4b:ce:e7:71:e4:c5:90:a6:0d:6b:25:
e6:95:c6:ac:1a:c3:8f:7a:3f:a0:da:af:7d:cc:23:
10:d8:79:38:ae:da:99:ee:1d:12:dc:5e:53:3b:00:
2c:15:1d:73:d7:de:21:7f:30:3f:4e:68:21:54:cb:
13:4f:40:2f:a1:47:0e:67:a0:28:13:ed:5c:a8:d1:
12:db:5a:76:c5:e5:f4:d6:90:e8:d4:56:cc:01:ed:
62:08:6a:f6:c1:1b:ab:5c:63:af:d6:59:d6:5e:15:
34:3f:68:58:9e:0e:3f:be:3a:53:42:af:4a:80:38:
52:cd:56:b6:c0:f7:5a:13:6b:69:ae:a2:46:1c:c2:
28:31:be:52:f2:cf:81:f2:44:a5:a4:96:ee:67:72:
7d:01:f6:b0:91:bf:e2:34:8e:65:98:4a:d6:6e:c3:
4e:8c:5b:ab:b0:93:d0:db:8c:8b:46:71:52:27:d8:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:03:BC:D3:A8:62:D2:EA:A7:59:AA:29:25:BF:A7:E2:1D:AD:CF:98
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:15:86:06:36:41:2f:25:85:c0:24:7d:8e:ce:07:6e:4a:07:
5b:8b:e6:28:22:68:b2:5f:4d:58:fb:9f:f0:ec:09:4d:b0:16:
f6:63:a3:35:bf:62:81:c1:c2:42:78:af:d6:fe:2b:29:0e:12:
de:47:d2:c0:f3:d9:8d:53:97:05:f5:ae:b1:2e:75:3d:9b:e1:
41:79:1d:5a:b5:30:5e:d1:ec:60:ce:34:02:54:92:2d:11:13:
8b:65:af:97:ec:fd:dd:46:17:d0:5e:0f:74:1e:4c:6b:ad:14:
8e:24:dd:5d:ba:2d:c6:75:ec:d2:ed:08:df:c8:51:d0:d9:4e:
9d:82:c8:d3:22:38:95:48:3a:d2:30:ba:f6:90:a6:d3:64:8f:
32:b7:17:3c:90:64:4b:04:dd:8b:b3:e0:49:7b:de:68:42:72:
81:51:87:c2:60:2a:3b:4e:c0:ff:e7:53:64:b3:20:95:9a:ea:
29:c2:63:62:3e:0b:87:d8:f9:f0:c2:0a:62:89:b1:cb:a1:34:
1d:54:6f:95:39:56:7a:61:d7:42:aa:90:21:b4:67:c0:c6:b6:
59:e5:3b:be:2b:51:b6:06:77:5b:2a:78:d6:d1:b0:f2:c9:d7:
19:ad:23:2f:df:78:90:65:ed:6e:57:ea:8d:9a:28:4c:12:47:
b3:10:9a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:20:05 2026 by rpki-client