Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: icAvw29c091AQtx1+shCHWTzurM1NYYqVV57FMnykiI=
Subject key identifier: 37:A8:12:62:10:F3:A3:34:16:31:7F:3A:5C:FA:0C:81:DC:39:62:65
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019CAB347C5DA2F6E4C9032DE01D00E90BDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0C07
Signing time: Sun 01 Mar 2026 21:01:09 +0000
Manifest this update: Sun 01 Mar 2026 21:01:09 +0000
Manifest next update: Mon 02 Mar 2026 21:01:09 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: 9nmU6OxB5Tp/t+AtqKDhWgUMAwpxrSJOhuQrUBOT60Y=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:7c:5d:a2:f6:e4:c9:03:2d:e0:1d:00:e9:0b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Mar 1 21:01:09 2026 GMT
Not After : Mar 2 21:01:09 2026 GMT
Subject: CN=37a8126210f3a33416317f3a5cfa0c81dc396265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a0:4c:ca:90:dc:1e:ec:93:97:07:22:b4:28:
f0:fc:a7:9f:19:82:25:e8:b0:82:ef:38:c2:25:4c:
cf:ec:03:9d:db:3e:53:2c:9b:c7:c1:9c:18:68:0e:
05:bc:bb:0a:99:9b:04:9b:f1:8e:08:7e:7e:5b:00:
25:5e:23:f4:36:8d:21:ea:12:2d:7f:ee:96:25:ca:
fb:1a:66:83:b5:e5:62:f5:5b:7d:20:14:23:96:d7:
ae:6f:69:b4:83:9c:a6:b4:4f:06:b3:b2:48:cf:4c:
2a:b4:9d:ba:4f:fb:6d:fe:3f:6a:1b:83:42:9c:65:
6c:9b:c6:f5:c9:5f:9f:d8:b4:e3:98:cf:a2:8b:eb:
cf:0f:35:91:28:70:8d:98:e2:ec:4e:bd:f0:83:99:
47:8c:08:90:f9:6a:85:68:32:6f:97:3b:d2:52:5a:
23:ee:22:cc:08:88:8d:e3:db:3d:9f:e3:ed:f4:d9:
17:74:0a:c7:b5:29:60:2d:19:a3:52:06:83:fe:80:
6e:f6:e7:04:c6:2d:38:35:b6:53:4f:14:57:c0:15:
fe:3e:56:04:83:19:03:d0:fe:af:0f:8c:7f:64:3f:
b3:2f:f6:f7:b1:da:43:b8:c5:b4:ca:1e:2a:b6:4b:
51:d4:ea:a5:4d:81:4a:ad:59:55:2e:d2:7d:19:71:
a4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A8:12:62:10:F3:A3:34:16:31:7F:3A:5C:FA:0C:81:DC:39:62:65
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:19:dc:10:06:b3:76:6e:94:9a:97:af:a0:32:18:3f:c9:fb:
e3:50:1e:62:ad:c9:20:67:39:40:48:9d:3e:2d:d3:70:9b:32:
bd:67:2b:99:ae:1b:27:ca:48:17:1f:11:0f:72:0e:76:90:44:
30:02:33:ae:43:7c:ac:2f:cb:0b:7f:c4:6d:1a:be:41:fa:41:
a3:5c:54:90:27:f8:3e:10:95:d9:bb:64:c5:99:6a:3c:71:27:
4e:34:1f:8d:de:a7:9b:1a:7c:ac:79:da:c6:55:fc:db:91:b7:
ad:7f:67:7c:6b:69:da:3d:7d:84:2f:36:80:04:78:d4:42:8c:
ac:f1:a9:ce:14:80:82:55:4a:9f:e9:8b:86:fb:6f:9d:aa:bd:
f1:2d:f2:24:70:96:cc:b2:b4:7a:a0:49:8b:68:36:50:12:bd:
1c:bb:ac:20:97:cf:dc:ee:6f:86:56:2b:70:aa:9d:06:58:13:
fd:af:8f:f6:93:77:ec:72:dd:be:b2:76:05:2e:97:50:87:f9:
ed:fd:43:52:5b:fc:c1:da:f1:1e:ed:5d:23:1b:fd:92:bc:a7:
78:5a:a5:23:91:da:bf:71:55:9c:52:e6:80:08:5c:30:a2:81:
b9:4f:60:7f:e6:28:07:15:87:55:98:00:ee:3b:44:bb:d8:f2:
ed:f7:f4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:19:32 2026 by rpki-client