Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json)
Hash identifier: cYqGj4elJ0mmfQJFZ5JJio/oTh9OzTjDNekTpEZ3vqw=
Subject key identifier: 25:F9:7C:79:0D:70:B9:94:55:C8:BD:1B:12:80:3A:F9:A5:1B:D0:B2
Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Certificate serial: 019D9A3EA10402361839849578D1A7267D79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
Manifest number: 17B2
Signing time: Fri 17 Apr 2026 07:01:28 +0000
Manifest this update: Fri 17 Apr 2026 07:01:28 +0000
Manifest next update: Sat 18 Apr 2026 07:01:28 +0000
Files and hashes: 1: 1RxVOrGk4jkOiEPDxsyr57BZkQQ.roa (hash: 1SKwEfmuDzDxIUUcwYxOh0kRsnImtD8oh1B3n8zoe0Q=)
2: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: OfHlc6SPEePJga0Y5wcjL84+RvdbZCiT5UnUzRz+8hY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:a1:04:02:36:18:39:84:95:78:d1:a7:26:7d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Validity
Not Before: Apr 17 07:01:28 2026 GMT
Not After : Apr 18 07:01:28 2026 GMT
Subject: CN=25f97c790d70b99455c8bd1b12803af9a51bd0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:de:5f:d9:eb:41:08:fe:a1:c0:63:48:37:a2:
ae:3d:f6:4c:87:cc:75:78:82:0e:36:a2:66:82:50:
b5:b7:ea:31:66:33:07:70:6d:17:1d:d1:62:62:d2:
4e:ba:37:6c:39:d8:8b:0f:13:85:a5:13:96:bb:05:
bf:95:28:f2:c8:1f:af:e3:b1:10:27:97:88:d7:45:
6b:da:74:03:91:c3:32:6f:c8:6d:a3:c6:79:36:11:
d9:d9:1b:57:b2:2c:88:8b:2a:a5:91:b0:d4:1d:bb:
f9:a9:29:0d:99:bb:d9:0a:74:f2:72:da:9a:5d:82:
e0:7c:84:18:b6:76:c4:9b:86:c4:6a:a2:c2:0a:d6:
1e:06:ee:73:1f:02:0a:16:c2:89:7e:b8:1a:ff:a8:
11:b7:09:53:23:6a:84:5f:36:25:e5:6c:88:5d:9a:
a8:b3:be:ea:f0:00:ef:5c:30:05:06:d5:b7:9b:b7:
ef:a6:ad:87:70:38:99:c3:44:12:ac:0f:4e:ea:57:
1a:96:3c:1b:69:4d:5e:ea:91:04:78:ec:78:30:59:
50:53:e7:53:53:aa:a1:a5:08:b3:9d:3d:6c:eb:70:
c2:bd:80:fd:ac:47:90:1a:6f:f0:d5:b2:ce:41:5a:
90:e6:46:10:76:54:a9:2b:cd:5a:1f:42:6c:e0:fa:
3d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F9:7C:79:0D:70:B9:94:55:C8:BD:1B:12:80:3A:F9:A5:1B:D0:B2
X509v3 Authority Key Identifier:
keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:47:e0:e7:a9:16:2d:67:42:ac:23:a7:78:51:cc:72:8c:98:
ce:b3:57:16:ce:e1:f7:49:20:23:ce:d8:5f:c3:1b:f3:a1:86:
01:ba:92:f6:48:7a:e9:09:51:60:f5:82:b8:5c:03:6e:ff:ff:
94:a2:7d:3b:a8:87:84:1b:97:d8:4a:b5:d4:d6:61:a2:d0:a9:
f3:55:1c:44:3d:1f:c9:b3:83:46:0e:82:a4:28:b6:3c:f2:57:
f1:13:b1:07:1e:06:a8:30:10:a4:8c:ac:23:ce:d1:f9:41:18:
db:ee:50:3b:bf:e5:fb:ce:30:af:c7:00:34:c7:4e:06:00:25:
e8:05:e3:d2:ce:03:c9:80:73:5d:ce:84:f1:fe:ea:b2:67:87:
d6:54:f0:13:55:67:95:4a:18:9c:f3:89:c3:0c:45:09:2f:b0:
c1:69:e5:9a:68:fb:e0:a7:61:12:3f:a6:41:2b:4d:16:43:be:
9b:03:bf:f4:83:63:a3:34:0c:28:3b:c0:ca:14:0e:bb:ad:61:
2c:1e:c2:e9:1e:78:10:71:42:23:9f:a7:63:24:57:d0:4d:07:
4d:40:5c:29:67:4f:60:58:b9:54:ac:58:7a:ec:a0:92:7e:bd:
06:7f:0e:e0:e5:9d:02:38:63:f5:05:8c:e7:f9:b4:6f:14:91:
b1:3f:13:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:43:20 2026 by rpki-client