Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: naCEy8dFBj/Jm9C7bjsioIyWSLuKH2BaVUXZ4cOged4=
Subject key identifier: B2:FA:32:5E:D4:4D:E7:F8:C6:27:EE:24:C8:AE:6E:26:88:76:F0:78
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019EBF5A73EAD510294233C6124313238703
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 05:00:36 +0000
Manifest this update: Sat 13 Jun 2026 05:00:36 +0000
Manifest next update: Sun 14 Jun 2026 05:00:36 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: rD8mrnAl4hobALhdiZXesEMcoOqfalWWzupFUwXXg4o=)
2: _SW-efIyZk8frPlLE8yBxAElkiU.roa (hash: iv2POwrNLwDCvtWPf5ONex0CqcvwAdFHiaQ1/D120FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:73:ea:d5:10:29:42:33:c6:12:43:13:23:87:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Jun 13 05:00:36 2026 GMT
Not After : Jun 14 05:00:36 2026 GMT
Subject: CN=b2fa325ed44de7f8c627ee24c8ae6e268876f078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:07:8c:ee:8b:9a:87:8b:74:d9:02:02:36:ab:
51:81:7d:8b:03:7b:ec:37:a0:91:84:91:43:2f:60:
07:5e:13:41:b7:2f:a0:6c:bd:2d:fa:05:bc:3e:b3:
f8:3e:0a:0b:fd:1b:f9:b5:3e:d0:e4:13:db:a7:2f:
5c:fb:5e:69:a1:f9:1d:8c:3f:c0:d8:b7:89:7a:20:
c0:4a:a4:db:63:06:b8:1b:85:27:55:c6:ed:30:64:
04:3b:6b:ef:9c:e0:ec:ae:db:5b:bc:f0:a1:1a:b1:
eb:8f:6e:83:6e:db:22:0f:68:30:68:85:da:9c:1c:
17:e6:cd:c4:49:84:e7:b9:7e:2c:53:ca:c7:41:cb:
39:6d:6a:81:2b:5c:9f:19:06:21:2c:71:40:ce:42:
55:5d:33:ce:92:dc:b2:3f:60:d2:8a:d6:c5:82:6a:
ab:51:66:3a:a1:e5:f2:57:5f:8c:1f:74:5d:08:62:
d0:5a:1c:d6:53:da:f2:25:b1:91:9a:80:98:50:38:
b6:03:63:44:9a:49:74:d4:83:66:aa:b1:b2:08:36:
11:1c:d5:8f:29:d4:b4:e1:db:21:bc:cb:a8:06:11:
ff:32:8f:c5:71:00:73:d8:fb:d0:1b:b5:50:4f:b2:
ef:32:bd:f5:b0:cf:5e:16:62:ca:d6:e0:56:71:31:
c3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FA:32:5E:D4:4D:E7:F8:C6:27:EE:24:C8:AE:6E:26:88:76:F0:78
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:91:63:aa:50:9d:a4:79:b2:d7:72:94:b7:85:1e:da:06:91:
1e:c4:64:f6:53:c2:9e:18:01:89:a4:55:a8:92:8c:e5:52:93:
f9:29:30:8e:d8:9c:68:3c:02:3b:91:7a:2b:04:93:da:38:6e:
d2:5b:cd:92:93:c7:95:5e:f1:fb:22:7b:e8:a5:73:8f:85:dc:
b1:ed:f9:4b:ec:31:52:e0:2c:d0:01:75:20:e8:5f:05:d6:f0:
d5:99:bd:c8:f9:94:66:0f:63:e2:f8:e2:e2:2a:9f:e1:5d:35:
e4:cd:09:c0:81:e8:d2:0d:84:05:11:30:b8:a5:a2:8b:31:09:
a4:7e:f5:6d:39:fa:2a:07:7a:bf:9c:8f:c6:a3:58:87:50:02:
ff:47:22:67:49:52:5a:fb:e8:de:80:6a:d6:96:80:4e:95:be:
c5:76:d2:18:89:97:87:29:c4:37:87:a2:de:75:86:7f:b3:52:
23:bb:9e:a7:14:62:91:28:6f:ea:1b:29:63:cb:07:a0:ab:13:
1e:59:4e:a2:f5:7f:7c:ab:9e:35:a4:1c:7d:00:f4:bb:0b:94:
89:48:b4:d7:02:37:76:03:3c:cb:de:32:b7:f7:e3:b8:5f:58:
b5:00:36:0a:f9:d5:16:ad:99:14:f7:0a:9c:f1:5d:c0:38:46:
28:e9:9f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:22:38 2026 by rpki-client