Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
File: hleGx1_BZYSwJx_ye5cdcjQWYY0.mft (raw, json)
Hash identifier: dQcUXFS2hPdos9aHzyx4q1g6TMki9NWxM7j2Ou+9jJY=
Subject key identifier: 72:78:E4:D2:30:02:77:9D:3B:05:12:53:72:7D:F7:C1:1A:25:AB:4B
Authority key identifier: 86:57:86:C7:5F:C1:65:84:B0:27:1F:F2:7B:97:1D:72:34:16:61:8D
Certificate issuer: /CN=865786c75fc16584b0271ff27b971d723416618d
Certificate serial: 019CAAFD8F5B883B02DD97F4AA0339D5F445
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
Manifest number: 10D2
Signing time: Sun 01 Mar 2026 20:01:09 +0000
Manifest this update: Sun 01 Mar 2026 20:01:09 +0000
Manifest next update: Mon 02 Mar 2026 20:01:09 +0000
Files and hashes: 1: X-nIksYLcM6UY700IvmpbbqFcRs.roa (hash: xh7dIh7S6zgSfiDoGX2DCG8s+xKjf0BQuO30Sz8XUQI=)
2: hleGx1_BZYSwJx_ye5cdcjQWYY0.crl (hash: 8+EABAuVrGoPqV/CiwIkfMLEh7EdvCv0jt4UKrde3TE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:8f:5b:88:3b:02:dd:97:f4:aa:03:39:d5:f4:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865786c75fc16584b0271ff27b971d723416618d
Validity
Not Before: Mar 1 20:01:09 2026 GMT
Not After : Mar 2 20:01:09 2026 GMT
Subject: CN=7278e4d23002779d3b051253727df7c11a25ab4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:47:58:56:d1:a0:ba:f4:a0:7c:03:43:28:
79:cb:eb:fa:eb:93:06:45:96:14:ea:ad:bc:5d:eb:
09:59:6b:83:71:cb:23:d2:ee:30:b9:ac:a2:15:9e:
ab:72:0b:ee:c4:fa:93:86:76:21:07:19:84:bb:d7:
6e:0a:3c:bb:b6:3c:69:c2:4b:3e:ac:31:87:bd:e2:
9f:9f:52:0b:c0:0f:1f:4a:9e:a8:a1:48:0a:1b:1a:
35:4b:1b:8e:17:0d:e5:66:9e:4b:71:bd:89:ad:69:
99:81:46:e1:db:35:dd:c6:08:e3:98:ab:b9:58:14:
0a:93:09:80:70:74:16:b4:bc:6f:47:32:24:10:e0:
f0:0a:76:a0:47:aa:7a:23:73:75:1f:9e:c6:9c:99:
0d:2a:a0:fe:f1:0d:12:9a:f0:bb:b0:96:22:f5:56:
21:e6:73:80:46:f3:83:2e:37:15:72:ef:87:f0:06:
51:78:84:0d:91:8c:6f:c1:3d:4a:20:45:9e:ad:21:
87:5e:2d:a4:69:96:e5:ac:36:15:6f:b1:00:06:99:
69:5b:02:ef:c0:28:9a:6c:bc:7d:44:8c:df:03:33:
3d:28:78:12:ec:19:87:17:84:b8:f7:23:a8:ab:ac:
11:7c:2e:db:d2:33:77:8a:f3:0d:15:2a:c8:8b:f1:
af:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:78:E4:D2:30:02:77:9D:3B:05:12:53:72:7D:F7:C1:1A:25:AB:4B
X509v3 Authority Key Identifier:
keyid:86:57:86:C7:5F:C1:65:84:B0:27:1F:F2:7B:97:1D:72:34:16:61:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:3f:10:41:b9:d8:0c:09:7f:5b:da:db:20:1e:55:3b:ef:1f:
ca:18:c5:6b:3a:d2:c4:4c:47:83:a3:1b:28:fe:7f:43:e5:50:
69:00:8e:12:22:1a:c8:25:38:f0:53:5b:21:a2:17:e4:69:f4:
dd:40:49:b2:bc:00:0d:c5:a7:e5:df:41:cf:74:5c:a9:e5:06:
d0:97:b1:8e:c7:8d:c5:13:05:6f:69:8a:9d:be:d1:ac:9c:7b:
3e:cc:05:22:19:2c:98:58:ba:90:82:95:6a:21:9d:af:74:57:
3e:ec:67:97:3c:3f:5b:1b:22:b7:9e:49:4e:3f:b0:36:12:e3:
e0:fb:81:69:1a:27:1a:96:af:a0:36:aa:5d:60:e5:cd:23:0e:
94:57:ed:4b:ad:76:2c:95:04:1e:20:f8:60:63:b1:ea:a8:2c:
3c:a0:44:df:35:9a:80:75:1b:7b:c8:3f:12:f4:e0:58:12:c0:
f5:cb:2e:f5:c1:eb:46:84:12:e8:22:db:13:19:f4:54:ce:0a:
24:45:51:ec:37:c9:47:85:74:9b:17:f8:3d:2c:b2:d7:fc:df:
eb:db:3f:ba:70:47:92:ce:ae:2c:7f:8d:6a:e6:61:6a:67:2a:
53:8e:48:bc:7e:41:67:68:f9:79:7c:26:0c:68:14:ac:5c:04:
61:47:fd:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:50:52 2026 by rpki-client