Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: gMC2KOIQB7IvGNFaANMxQtSPkJHPO+k6pUoW2dTpS3Y=
Subject key identifier: A8:B2:65:F2:6D:B6:78:49:A8:0F:EB:EB:58:88:3A:B3:57:B2:68:96
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019CAC478D7016DCAF6D44C3293FC93C8AAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 023B
Signing time: Mon 02 Mar 2026 02:01:36 +0000
Manifest this update: Mon 02 Mar 2026 02:01:36 +0000
Manifest next update: Tue 03 Mar 2026 02:01:36 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: 9VnfBl+HjFywfhdlkm1xCYnNpwgH1Oyu8QiiM875S74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:8d:70:16:dc:af:6d:44:c3:29:3f:c9:3c:8a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Mar 2 02:01:36 2026 GMT
Not After : Mar 3 02:01:36 2026 GMT
Subject: CN=a8b265f26db67849a80febeb58883ab357b26896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ed:a1:50:c5:92:06:f8:72:d1:a1:5f:31:f8:
5c:45:8e:74:75:54:af:85:77:45:0a:22:f2:33:07:
51:37:3b:de:ae:a1:f5:9a:46:51:a5:75:84:c7:e6:
0e:22:74:88:d2:2f:9f:fa:35:01:e5:89:1e:be:c9:
d4:e5:50:01:30:36:9f:93:c1:34:93:0f:69:cd:81:
4d:97:85:da:af:42:f1:c6:1a:7e:81:ca:5e:f0:98:
82:28:1d:ec:e1:65:e8:54:a0:d4:11:2b:23:2b:00:
a6:27:3e:5a:90:0b:f1:53:89:fa:ac:6b:bb:c3:0c:
a5:be:ee:9f:a8:d8:1a:bc:e7:81:0a:ca:7f:3e:81:
cf:39:fd:bc:f8:1b:76:f3:5c:03:73:bc:e4:53:69:
58:e3:92:e0:ad:5c:a6:1d:37:f8:86:1c:64:6a:55:
02:e0:c4:d1:c5:cb:44:96:ec:e6:5a:2e:4a:92:13:
34:89:21:38:3a:66:75:71:41:b3:aa:2b:33:b8:9a:
e1:2d:30:fd:c5:47:04:55:1b:ea:63:1a:71:9c:24:
84:4e:03:70:a5:0f:3f:00:df:dd:aa:f1:09:78:f6:
5c:99:75:11:18:d9:a2:2b:c2:a2:ab:56:7b:68:f3:
f1:4b:45:60:f3:27:b6:16:3d:b1:20:06:4f:ac:08:
ea:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B2:65:F2:6D:B6:78:49:A8:0F:EB:EB:58:88:3A:B3:57:B2:68:96
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:59:a3:4e:d9:f7:2b:d1:f9:fb:c3:4c:63:80:7c:29:79:44:
f2:fd:e4:af:6d:cd:57:03:ed:c1:b8:ab:7b:2b:57:dc:b2:b0:
05:fb:20:50:55:3a:f2:65:af:5d:56:e0:76:86:9b:ff:df:9f:
ad:28:7e:25:9c:c9:2a:7f:0c:bb:2e:36:d3:7a:6a:5a:e7:f6:
51:8d:c4:3f:4b:c3:cb:97:5e:5f:8c:c0:97:73:74:81:24:3c:
e9:79:ba:ea:37:9f:3a:92:56:80:f1:ab:98:2b:0c:31:b1:9e:
12:65:68:9c:ff:a1:bc:55:12:d8:1c:76:00:39:c1:d0:80:aa:
b1:30:38:8b:a7:e0:5a:7d:36:98:dd:f8:23:b5:e5:5b:12:85:
b6:6a:5a:54:eb:d3:2e:34:2f:98:65:f8:3a:45:34:f0:da:8b:
52:4f:3d:95:b5:2c:bf:f8:19:b7:52:6c:ea:d3:40:88:ad:9b:
5b:6c:fb:cc:8f:bb:f9:d7:d7:76:fc:76:36:68:83:cb:b1:5e:
e2:15:d3:4a:0b:a8:c0:5c:64:46:dd:ed:35:93:b6:29:69:68:
08:40:93:ab:6c:6b:69:1e:26:d1:23:04:7e:fd:a4:37:7a:b3:
22:aa:4a:49:ee:eb:2d:b3:e2:77:12:08:fb:79:c6:36:1a:33:
25:24:e0:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:07 2026 by rpki-client