Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: aeEC38+ETqj1xsWn4rErK8mcIbnRFpYW9lc/+nIwrQ4=
Subject key identifier: 09:03:78:83:AA:80:8F:50:3D:0C:D3:81:34:D8:F1:0E:AE:76:26:A3
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019D9AAC3B6631A6F632A21F028965EE760A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0C83
Signing time: Fri 17 Apr 2026 09:01:11 +0000
Manifest this update: Fri 17 Apr 2026 09:01:11 +0000
Manifest next update: Sat 18 Apr 2026 09:01:11 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: aVIgsRwsPWOYDS5w+2I8Bj0SIwtSKwwxg7727wgf6cw=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:3b:66:31:a6:f6:32:a2:1f:02:89:65:ee:76:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Apr 17 09:01:11 2026 GMT
Not After : Apr 18 09:01:11 2026 GMT
Subject: CN=09037883aa808f503d0cd38134d8f10eae7626a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:15:50:b1:88:37:96:d3:dc:3b:af:6e:df:8e:
3f:22:ef:8e:b7:8d:07:98:35:7a:c0:d1:15:e7:e4:
36:b8:a9:eb:fa:b6:eb:0a:ff:5a:b8:b6:ae:4b:6a:
74:ba:1c:be:7a:66:b1:ba:11:f1:d7:47:44:b6:d7:
b1:35:18:40:32:64:a6:9b:a4:f6:a6:38:b0:9a:10:
df:52:d6:b0:c2:67:85:ac:a2:dd:6d:44:b8:b2:bf:
fb:25:39:00:e3:e6:18:34:26:bf:90:bd:4c:43:1a:
a6:ea:9b:93:f5:d8:50:98:95:0c:6a:2b:f2:fc:f4:
fb:73:61:35:a1:83:3b:68:19:01:fb:d4:6e:6a:dd:
7a:9c:13:a5:66:eb:8a:6e:17:87:72:93:44:c7:ae:
52:fa:cb:35:eb:0a:b9:10:0f:9a:ef:15:30:0f:7b:
0e:f1:36:7b:88:58:e3:f9:ba:f8:84:c4:4b:c4:b4:
51:b0:5c:a3:cf:85:10:75:e2:91:ef:91:2d:b7:94:
02:09:6b:fb:a5:ab:38:70:76:99:d6:80:b2:3e:ef:
99:b2:c8:37:d0:d5:97:0e:5c:b7:25:e7:31:8c:aa:
ca:fb:d1:57:01:d3:3e:96:d8:aa:46:74:f3:7c:c8:
25:34:c6:95:37:7a:21:d8:79:31:d5:33:5c:0b:22:
25:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:03:78:83:AA:80:8F:50:3D:0C:D3:81:34:D8:F1:0E:AE:76:26:A3
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:32:39:84:16:52:15:26:6b:91:51:38:d6:df:17:bb:dc:14:
65:4d:bc:e4:67:5e:31:90:3b:76:44:3c:98:3e:2b:d1:02:35:
d4:27:62:2c:0f:c0:18:5d:64:30:be:53:ea:7b:ab:69:4a:43:
89:4e:39:eb:0c:86:37:85:a9:de:47:3a:8c:4f:5d:16:c6:bb:
7c:25:3a:ac:54:de:29:01:fd:6b:60:b5:78:f4:72:b8:73:f0:
b8:d4:82:37:fa:11:0e:4e:66:5f:ee:3f:b5:a6:7e:4e:50:31:
d3:47:99:89:e1:52:d1:84:07:f4:53:15:f0:68:79:7a:8e:4e:
b6:2b:0c:62:6d:3d:4f:e4:c2:b1:5a:f8:ed:27:ba:5e:62:73:
cc:74:db:da:d0:ba:a2:ed:54:19:fd:d0:44:1a:f9:08:7b:eb:
87:96:db:cd:00:43:64:07:42:cf:ff:6e:d9:bd:c7:6e:2c:2d:
d1:e9:11:d1:db:23:18:52:78:77:34:c6:d0:e4:74:9b:46:15:
00:85:5d:2c:fc:93:c2:2a:4c:77:f7:a7:7f:ae:2f:f5:2f:fe:
d3:5d:c0:40:53:07:c5:c0:a8:c8:35:e8:7d:b2:59:85:79:72:
10:d1:04:67:66:94:3a:6e:3b:64:13:aa:80:7b:f5:e1:4a:e6:
39:6d:8f:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arDtmMab2MqIfAoll7nYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0
MmRhMGMwHhcNMjYwNDE3MDkwMTExWhcNMjYwNDE4MDkwMTExWjAzMTEwLwYDVQQD
EygwOTAzNzg4M2FhODA4ZjUwM2QwY2QzODEzNGQ4ZjEwZWFlNzYyNmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxVQsYg3ltPcO69u344/Iu+Ot40H
mDV6wNEV5+Q2uKnr+rbrCv9auLauS2p0uhy+emaxuhHx10dEttexNRhAMmSmm6T2
pjiwmhDfUtawwmeFrKLdbUS4sr/7JTkA4+YYNCa/kL1MQxqm6puT9dhQmJUMaivy
/PT7c2E1oYM7aBkB+9Ruat16nBOlZuuKbheHcpNEx65S+ss16wq5EA+a7xUwD3sO
8TZ7iFjj+br4hMRLxLRRsFyjz4UQdeKR75Ett5QCCWv7pas4cHaZ1oCyPu+Zssg3
0NWXDly3JecxjKrK+9FXAdM+ltiqRnTzfMglNMaVN3oh2Hkx1TNcCyIluQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAkDeIOqgI9QPQzTgTTY8Q6udiajMB8GA1UdIwQY
MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt
MDdiMDllNDY1MTE5LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5
LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMDI5hBZS
FSZrkVE41t8Xu9wUZU285GdeMZA7dkQ8mD4r0QI11CdiLA/AGF1kML5T6nuraUpD
iU456wyGN4Wp3kc6jE9dFsa7fCU6rFTeKQH9a2C1ePRyuHPwuNSCN/oRDk5mX+4/
taZ+TlAx00eZieFS0YQH9FMV8Gh5eo5OtisMYm09T+TCsVr47Se6XmJzzHTb2tC6
ou1UGf3QRBr5CHvrh5bbzQBDZAdCz/9u2b3Hbiwt0ekR0dsjGFJ4dzTG0OR0m0YV
AIVdLPyTwipMd/enf64v9S/+013AQFMHxcCoyDXofbJZhXlyENEEZ2aUOm47ZBOq
gHv14UrmOW2Ptg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:06:14 2026 by rpki-client