Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: EtYEDQqilB6phoM+I+m+H5bbu0qNyB/aY6AaYvy1vFY=
Subject key identifier: 9A:07:C9:30:AF:18:4C:84:8B:77:9B:75:5C:CF:A9:02:F8:03:EA:51
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019D9BBF47228B9D0062DBF35A7B865E5434
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 02B7
Signing time: Fri 17 Apr 2026 14:01:37 +0000
Manifest this update: Fri 17 Apr 2026 14:01:37 +0000
Manifest next update: Sat 18 Apr 2026 14:01:37 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: UzbBIKU0t84zn5gYlTKwS9/HgRc13fhYalFHPmCCwzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:bf:47:22:8b:9d:00:62:db:f3:5a:7b:86:5e:54:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Apr 17 14:01:37 2026 GMT
Not After : Apr 18 14:01:37 2026 GMT
Subject: CN=9a07c930af184c848b779b755ccfa902f803ea51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:e0:e7:40:89:f3:8d:f2:d0:72:ba:92:16:
62:0f:44:a7:db:3d:fe:bb:4b:4f:ab:00:91:9e:69:
37:84:72:cc:7d:9e:eb:49:42:e7:d0:77:e5:a6:6e:
d4:6f:f7:a7:96:51:14:99:77:ba:58:62:34:32:53:
20:66:2c:ee:45:e8:82:c6:dc:87:55:c3:86:6e:8f:
8b:b2:d0:d3:50:a0:07:b2:6b:0f:4c:3c:b1:cc:c3:
9b:3a:15:4b:f5:52:7b:d3:c1:df:43:da:02:d9:aa:
06:f6:d9:8a:42:45:0a:08:e3:48:76:e7:fe:48:88:
30:fe:ee:2c:a6:36:19:f5:e1:c9:c1:c7:d2:c9:b9:
a2:d7:bd:56:49:24:cf:1c:8f:25:89:28:e4:44:54:
be:62:89:30:a7:11:f7:b3:a9:fc:d7:6c:ee:ef:7f:
22:5d:47:45:85:cc:d4:e3:78:29:64:d4:a7:73:74:
48:cd:7a:ff:62:6d:20:8c:40:4d:f5:fe:1c:2a:a9:
1e:55:78:16:20:4e:d5:82:42:db:f5:7a:7d:36:d6:
e0:e9:fe:1f:e9:9d:fa:a5:47:02:5d:0f:77:24:42:
36:69:a4:d1:e4:99:e6:15:15:98:a9:6a:7d:d4:d8:
38:39:1c:f8:92:a3:87:b2:24:96:93:15:a9:61:d5:
23:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:07:C9:30:AF:18:4C:84:8B:77:9B:75:5C:CF:A9:02:F8:03:EA:51
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:1b:f0:66:7e:34:16:a5:2f:fc:50:6b:c1:1c:8b:3f:2c:f0:
03:05:36:78:32:ff:d1:78:c6:0a:95:2b:52:bc:0e:8f:47:db:
25:c0:aa:64:1b:e1:01:a2:51:f4:d9:b6:47:67:a7:37:0c:3e:
21:19:9e:55:f1:9a:93:83:8f:18:d3:69:61:07:56:71:89:02:
1e:6e:96:b8:b8:83:74:58:30:d0:c6:66:84:85:95:e4:e3:f3:
e1:12:85:7a:ab:88:4f:6a:94:14:75:dc:2c:73:49:2f:01:c7:
a5:31:80:bc:87:dd:4d:f4:f0:1a:9d:19:ef:e1:30:b9:d9:41:
0e:05:99:63:fa:f1:ec:9c:6d:08:6f:2a:2f:f3:8e:19:9c:72:
21:5b:2d:97:42:48:45:db:4b:7b:f3:f9:cc:0b:e7:30:d5:e4:
2a:0d:07:19:a4:8b:04:d9:79:00:20:30:bc:a8:43:f1:21:ba:
23:df:94:c7:91:01:38:24:25:06:e8:28:e3:c6:d3:34:18:54:
1d:8b:cb:49:40:79:be:e3:8b:78:a6:e3:aa:20:41:77:ff:5f:
88:90:15:d7:48:6b:c7:cd:44:9b:11:33:53:9e:40:3a:9b:78:
72:a6:25:2d:4f:de:5a:dd:79:c8:ce:0a:bc:36:b2:75:00:d2:
78:28:52:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:15:53 2026 by rpki-client