Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: I37mg+r7tkebMJaXTD//UIGZGc1vASIyf67PY54Z4Gk=
Subject key identifier: FE:1F:66:AF:10:33:30:11:2B:8E:DC:58:D2:0A:52:5E:EA:27:69:9C
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019EC413912E30438141CBC8297FAA992A2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0D1D
Signing time: Sun 14 Jun 2026 03:01:17 +0000
Manifest this update: Sun 14 Jun 2026 03:01:17 +0000
Manifest next update: Mon 15 Jun 2026 03:01:17 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: 5A3gPc6/lvLch7wVIi4IGX9B8+KaS0LjB1ySzmfbneQ=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 03:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:13:91:2e:30:43:81:41:cb:c8:29:7f:aa:99:2a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Jun 14 03:01:17 2026 GMT
Not After : Jun 15 03:01:17 2026 GMT
Subject: CN=fe1f66af103330112b8edc58d20a525eea27699c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:76:fa:d1:70:fa:4d:5a:a6:a0:e1:e1:b4:b9:
bc:52:b1:21:dd:47:2e:10:a7:f9:a3:4d:f0:a3:e8:
7a:f9:0b:cc:b6:d3:f8:98:79:3b:10:22:96:89:42:
97:ba:b4:72:38:56:06:e0:91:09:1c:63:e4:e7:fc:
a1:3c:45:40:b3:2e:ad:56:09:36:05:0d:10:8e:c7:
b2:db:fc:35:31:fc:8e:9d:33:b9:2b:b1:f5:3b:16:
76:de:3b:cc:89:72:b8:6c:3a:14:5f:d6:16:c9:93:
b2:17:91:74:69:2a:d1:8c:13:99:12:42:d0:06:e5:
b7:d6:e6:0d:b6:b8:e4:ef:1c:38:f2:c4:97:8f:d3:
9b:5f:5c:3f:69:1d:01:0b:de:cb:b1:10:e7:d1:9a:
52:e9:8d:5f:61:56:b6:98:d9:06:fa:67:11:95:95:
d9:13:40:98:9b:1b:8d:12:0a:0e:e3:88:c7:41:d6:
b4:a8:15:42:e8:00:c8:10:47:24:69:e8:86:5d:b6:
7a:ad:e2:d1:b7:ef:66:9a:08:eb:13:2f:7b:40:ff:
a7:64:6b:98:a6:aa:84:3f:8d:0f:3b:7e:27:a0:5a:
d6:f9:e6:63:bb:72:ed:09:ea:40:43:55:c0:b2:cd:
09:be:3f:4f:b7:ee:bc:35:2f:d0:4d:50:4d:14:0f:
31:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1F:66:AF:10:33:30:11:2B:8E:DC:58:D2:0A:52:5E:EA:27:69:9C
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:8b:fa:f7:f7:7e:8c:8d:19:04:6d:2c:75:79:18:17:78:fb:
5f:2b:15:cc:c2:76:5f:61:ba:f6:62:8c:85:6e:6f:4d:0c:b8:
77:c7:36:05:77:7e:8a:ae:8a:a2:ab:bf:c7:93:25:5f:5d:00:
b9:5e:f5:1d:5a:8f:84:06:28:90:d0:dc:12:b7:8b:ef:db:6c:
5f:86:d2:16:75:85:03:86:de:cc:0e:28:62:c6:a2:10:86:b4:
20:09:6e:0e:84:7f:63:da:25:a3:64:39:c5:ff:a7:c8:49:6c:
78:a1:fd:0a:30:95:f6:c5:dc:b7:64:17:2f:c4:46:6b:11:ce:
20:42:02:72:b3:d0:d9:0e:20:bf:de:bb:2e:80:09:e6:bf:23:
19:df:d8:4c:64:97:1d:89:21:25:85:0c:f5:4e:fc:d0:ec:8e:
cb:bd:44:e0:b6:3a:e7:d7:31:7c:75:58:3b:e6:24:c2:36:a8:
f5:ad:c2:59:29:b9:f9:66:70:3f:f6:55:a3:1a:ea:ce:21:5e:
26:a3:fa:9c:fc:b8:34:57:9f:53:4a:91:41:15:37:70:63:9e:
f7:12:d1:27:5a:25:64:d7:aa:86:12:3c:cb:a3:18:ae:c9:cb:
59:a2:b0:21:df:c9:cb:91:71:df:87:f8:1b:6c:9e:89:e9:4b:
5c:06:a3:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 09:56:26 2026 by rpki-client