Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
File: hleGx1_BZYSwJx_ye5cdcjQWYY0.mft (raw, json)
Hash identifier: qr5fgBoyG5tBPZXULCS65weC0GOAYG39QbIiwiEWO8U=
Subject key identifier: 0F:6C:61:9C:3B:2E:24:10:FA:73:E5:AB:97:3B:4C:19:34:B3:2D:31
Authority key identifier: 86:57:86:C7:5F:C1:65:84:B0:27:1F:F2:7B:97:1D:72:34:16:61:8D
Certificate issuer: /CN=865786c75fc16584b0271ff27b971d723416618d
Certificate serial: 019D9A75085A644550AF8F8F4225F6E52934
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
Manifest number: 114E
Signing time: Fri 17 Apr 2026 08:00:54 +0000
Manifest this update: Fri 17 Apr 2026 08:00:54 +0000
Manifest next update: Sat 18 Apr 2026 08:00:54 +0000
Files and hashes: 1: X-nIksYLcM6UY700IvmpbbqFcRs.roa (hash: xh7dIh7S6zgSfiDoGX2DCG8s+xKjf0BQuO30Sz8XUQI=)
2: hleGx1_BZYSwJx_ye5cdcjQWYY0.crl (hash: +dqQZIcC+QOgKQ71TVIp8byu05I2t89oH8KC0P+hEdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:08:5a:64:45:50:af:8f:8f:42:25:f6:e5:29:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865786c75fc16584b0271ff27b971d723416618d
Validity
Not Before: Apr 17 08:00:54 2026 GMT
Not After : Apr 18 08:00:54 2026 GMT
Subject: CN=0f6c619c3b2e2410fa73e5ab973b4c1934b32d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:05:ab:56:7c:04:3f:07:38:bf:12:76:b3:c8:
4d:99:9d:f6:f8:0e:a1:cc:7b:ac:7d:99:de:87:c5:
f2:45:7a:5a:5b:dc:61:82:e6:e7:0e:ef:05:b2:71:
49:5c:e1:d3:80:f9:84:91:dc:da:03:87:a9:80:ac:
a3:9c:27:20:d4:c9:6f:06:0c:d9:d5:4e:55:c8:7b:
31:0a:1a:d6:ac:9b:49:ab:26:80:c5:fb:cc:0f:1c:
ed:c4:87:c3:4b:a8:9c:12:86:9b:13:ae:a6:1b:c4:
e1:67:79:76:4f:aa:dd:51:27:19:9d:79:e3:64:dd:
91:be:b9:4e:10:53:97:93:0e:ef:c6:e8:22:15:12:
7b:5a:e0:73:75:ed:af:ec:2f:d7:a5:37:9c:27:c1:
ec:63:73:bf:92:f7:34:52:d6:41:77:73:f6:12:85:
c8:6b:48:f7:67:0b:7d:a2:60:89:d2:e3:79:97:0e:
6b:75:8f:97:d1:7f:fd:37:97:ab:ed:64:ee:4f:ef:
6d:5d:1c:f5:90:4d:58:7c:42:9a:e8:c0:a0:a9:d8:
ce:1a:58:aa:82:de:4d:46:52:05:e0:43:90:ed:b0:
af:65:52:45:03:21:bd:46:24:92:71:4b:d3:e0:d5:
c7:cd:48:9a:e5:84:33:ee:61:7b:11:b8:56:5d:de:
f7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6C:61:9C:3B:2E:24:10:FA:73:E5:AB:97:3B:4C:19:34:B3:2D:31
X509v3 Authority Key Identifier:
keyid:86:57:86:C7:5F:C1:65:84:B0:27:1F:F2:7B:97:1D:72:34:16:61:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:67:d3:18:3d:fa:16:6b:50:d9:d8:2e:98:5b:8f:16:cb:59:
b2:b2:66:73:a2:62:9e:06:88:13:59:7b:32:44:a7:4d:93:eb:
cd:db:d0:54:93:f6:71:fb:f5:e7:6a:5e:8f:d2:14:23:31:7f:
4c:8a:0a:80:46:8c:b1:37:ec:6e:29:8b:da:f0:62:26:a9:9c:
30:1c:e5:9b:cb:1a:4d:aa:38:7e:49:d3:4a:e9:b6:a7:68:f7:
cd:bc:33:0c:f9:bd:48:69:6a:e3:40:0f:6d:2b:bc:71:23:52:
cf:59:88:84:8c:35:1b:c5:3a:07:d3:1e:56:9e:e3:b6:70:1a:
b0:37:e9:1a:9d:cb:51:cf:41:7c:35:5c:d6:2b:45:6b:43:bf:
58:ab:81:ea:7d:37:9a:33:a0:c5:48:d0:d1:c9:3a:8f:36:64:
42:c3:3c:f0:68:ab:4a:81:9a:27:ff:0b:11:bf:f7:a9:87:b6:
dc:aa:28:ad:46:af:5c:6d:3e:5f:66:f0:d3:d8:89:15:cf:af:
a4:67:42:5e:ff:db:06:d5:c7:26:49:a8:d4:5b:76:d7:c4:fa:
b2:ee:77:33:88:28:25:db:1d:48:62:74:9d:cd:bc:cf:0a:e9:
04:cc:1c:be:5c:94:6e:21:3c:17:f5:93:6e:8f:ff:6e:09:19:
62:c2:a9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:50:10 2026 by rpki-client