Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json)
Hash identifier: cs316n78QifI61/5C6vI8kocGBR/wJh3xl1+tjPT/Dw=
Subject key identifier: 75:2C:D1:32:47:25:60:E6:5A:14:11:A9:B0:F4:B1:B0:0A:37:E2:A6
Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Certificate serial: 019CAAC6B1A1DCE44CEF5D4ADDBE3A7AEC53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
Manifest number: 1736
Signing time: Sun 01 Mar 2026 19:01:14 +0000
Manifest this update: Sun 01 Mar 2026 19:01:14 +0000
Manifest next update: Mon 02 Mar 2026 19:01:14 +0000
Files and hashes: 1: 1RxVOrGk4jkOiEPDxsyr57BZkQQ.roa (hash: 1SKwEfmuDzDxIUUcwYxOh0kRsnImtD8oh1B3n8zoe0Q=)
2: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: BwYhXzCmZfQILerh+pe+Vb+LkigNV4crnji30Yrvyms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:b1:a1:dc:e4:4c:ef:5d:4a:dd:be:3a:7a:ec:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Validity
Not Before: Mar 1 19:01:14 2026 GMT
Not After : Mar 2 19:01:14 2026 GMT
Subject: CN=752cd132472560e65a1411a9b0f4b1b00a37e2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:35:84:ad:75:e3:7d:82:1f:50:12:e6:32:5f:
d8:95:4f:55:c6:34:0e:8c:d4:ea:cc:7a:7c:8a:80:
d5:58:6a:79:0f:a4:f7:cf:36:0e:9f:d8:59:da:c8:
1f:ae:c4:2b:47:8d:5d:c7:73:20:20:d1:a2:cf:21:
8b:17:1a:89:d6:fb:0b:b5:c8:79:bd:15:76:33:ee:
36:95:04:59:12:7f:6b:01:9f:00:69:d4:fa:0c:5f:
e7:29:31:e0:7f:d4:00:01:b0:02:3f:1c:50:e8:94:
2f:02:37:42:30:32:9e:fc:ce:d5:64:35:9f:eb:1b:
80:a7:e4:f5:8f:50:72:29:23:32:fe:1c:7e:f8:2f:
f6:9c:7f:f7:29:5e:04:10:1d:df:72:d7:82:18:26:
d4:01:18:f9:c6:f9:6b:24:82:c8:d3:7a:cc:93:62:
62:0b:0b:50:e7:d6:d0:41:fe:e4:c2:69:b4:03:d5:
50:93:4d:d7:c7:c2:48:26:4c:75:bb:de:08:a1:de:
51:72:2c:a6:f5:cf:e9:71:e5:3f:50:a4:83:e6:24:
b1:c4:75:fa:f9:e0:62:54:ad:f0:a5:b8:96:6c:40:
dc:5a:ca:5d:47:7e:fe:08:2d:7b:e9:6f:94:07:3f:
18:09:44:4e:72:62:c6:89:df:e9:24:87:c3:c8:93:
35:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2C:D1:32:47:25:60:E6:5A:14:11:A9:B0:F4:B1:B0:0A:37:E2:A6
X509v3 Authority Key Identifier:
keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:fe:4f:4e:ec:23:57:1d:0d:c9:3a:fa:fa:48:c0:b4:3b:ce:
0c:36:a2:f7:f8:fe:d4:b4:25:8b:d8:17:7f:1f:4b:78:f2:7d:
5b:aa:c0:00:d5:04:a9:90:1d:26:6e:0c:d1:bc:91:4e:92:cc:
64:6c:c2:f1:54:8e:fb:36:26:c5:a9:df:72:40:43:d0:52:67:
d0:8e:ef:b2:a0:4b:08:f0:1c:55:8b:03:ea:f5:f9:fd:b0:bc:
d5:a6:3e:c8:82:42:5a:b2:72:7a:6e:b4:5f:47:60:8e:cb:17:
30:ba:1d:c0:e7:65:c2:c0:02:0c:ab:6f:b7:6d:dd:5d:d0:c7:
ee:f4:2a:35:2c:ad:f3:8e:f9:ee:bb:78:18:ad:fb:e9:d7:d2:
14:76:84:79:a9:7d:d7:1f:44:02:eb:1e:4e:87:06:00:95:6a:
1a:55:d0:27:e4:49:22:71:c6:fb:db:39:49:6f:37:53:3f:7a:
b3:d9:41:f0:ca:cb:21:d1:38:58:08:a9:bd:26:c4:11:a1:59:
d6:5a:c5:1f:e0:20:60:cd:f6:8d:27:e1:23:a6:03:e7:c4:93:
05:39:6a:2c:5e:c7:11:0b:23:21:6d:8c:a7:20:15:7b:fd:79:
f8:e1:d1:e4:58:d3:58:f6:42:df:82:9c:ff:cd:ac:42:5b:79:
6b:05:cf:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:57:52 2026 by rpki-client