Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json)
Hash identifier: 4uZcJ7qooh6yhmhoJcAk2Xblat6Ju2H+AQmHV9LvPz0=
Subject key identifier: EA:41:EC:0C:8D:AD:40:6A:7C:97:6E:22:DA:C6:6E:AF:D6:35:22:FE
Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Certificate serial: 019D996316AFA35CB548096862543D34BD1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 03:01:41 +0000
Manifest this update: Fri 17 Apr 2026 03:01:41 +0000
Manifest next update: Sat 18 Apr 2026 03:01:41 +0000
Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: EeGNVe5CQkM7JRRrE8dgi/SsdxDK7ST1+e8OlK7lh/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:16:af:a3:5c:b5:48:09:68:62:54:3d:34:bd:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Validity
Not Before: Apr 17 03:01:41 2026 GMT
Not After : Apr 18 03:01:41 2026 GMT
Subject: CN=ea41ec0c8dad406a7c976e22dac66eafd63522fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e9:9d:23:82:eb:8e:00:2c:33:50:5a:43:75:
b5:fe:c0:4f:56:e4:e7:7d:a7:9c:45:e8:81:be:72:
a3:a7:b4:68:27:02:dd:f3:ac:c7:a2:b4:b3:0b:03:
ec:f4:99:f2:4d:9e:fd:d8:3a:e1:0e:a2:28:53:18:
19:f3:e0:e7:d6:33:f1:e6:0b:f7:39:69:4b:ab:a9:
e7:dc:0b:45:a2:eb:9f:33:82:2b:cc:b3:ae:26:ab:
28:b8:4b:c0:9d:ed:33:5d:1a:b9:ae:a6:a0:c3:70:
a1:98:31:2d:87:30:ad:a4:a5:10:68:99:cd:b1:54:
ed:60:63:84:d0:a2:10:c3:a3:1a:c1:39:7d:6a:f0:
cf:b7:28:cb:64:62:a2:e8:69:ca:e3:a2:26:04:50:
b7:91:a5:e7:77:cc:6d:c1:35:03:91:30:dc:c3:e3:
75:d7:ed:1f:a1:30:1b:9b:a0:2d:88:33:4a:f1:ba:
3f:e2:78:4f:0f:ce:bd:b4:f8:8e:42:23:51:23:81:
0e:25:48:15:0c:48:d0:29:2c:8d:c9:05:ba:9f:ba:
58:ba:53:47:42:c8:b1:c1:a5:d0:57:25:93:1b:75:
df:db:a2:07:d9:be:19:d8:9a:c7:6d:e0:ad:a5:b9:
42:bb:c3:34:87:ae:eb:0f:07:59:ae:b3:2f:ec:c3:
cb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:41:EC:0C:8D:AD:40:6A:7C:97:6E:22:DA:C6:6E:AF:D6:35:22:FE
X509v3 Authority Key Identifier:
keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:99:91:ce:c7:96:b9:90:0c:38:fd:26:f9:ff:52:64:74:08:
78:f4:b1:e8:59:db:80:fe:34:c6:b4:10:58:80:7b:08:45:87:
11:b1:77:91:e9:3e:c2:aa:2a:40:3b:ea:32:97:0c:98:7b:a2:
ad:52:f1:a3:78:61:b1:af:8a:9b:b7:bb:b7:cb:57:a1:0b:d6:
35:61:be:32:63:fe:3f:69:20:5a:12:4e:88:3b:41:c6:fe:aa:
ba:88:f6:82:67:84:f7:e2:e0:3e:94:c5:42:21:04:d3:3b:0b:
74:d4:2f:f7:0e:cf:af:0f:9b:a4:95:1f:82:17:d4:bd:f6:34:
f6:b1:d5:f7:95:db:c6:ec:85:b7:89:4e:15:4c:05:b1:27:0c:
f1:ce:34:b1:98:4f:c9:56:5f:9e:14:12:63:ea:91:b1:82:53:
eb:18:3f:40:fe:5c:2d:88:b6:1b:a3:83:b6:da:84:4c:b0:c4:
5d:d7:b7:8a:c3:7c:b6:b6:01:a0:d7:c2:ba:59:ed:4f:4a:3c:
fd:a7:8b:1c:f2:52:f1:14:26:aa:63:a4:14:1e:bf:f8:e4:4d:
36:cf:f0:ab:f8:12:24:1c:42:61:e0:b1:39:8a:34:0e:bc:3b:
76:6d:b7:17:bb:d4:96:b4:27:a4:97:21:6d:26:72:87:fb:68:
83:7a:64:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:58:01 2026 by rpki-client