Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
File: hWL0qJNlk83sba1-Ls8beb9lwFo.mft (raw, json)
Hash identifier: wsMKBRqmSa/lF5AYY7n833qetiplzps0hVAuz0GB2js=
Subject key identifier: DE:E1:D0:0A:97:D3:2E:29:D4:EC:44:07:BD:31:FB:3A:59:35:81:C3
Authority key identifier: 85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
Certificate issuer: /CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Certificate serial: 019D9998F7130909F1652ED6F0306507CAF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
Manifest number: 17A4
Signing time: Fri 17 Apr 2026 04:00:31 +0000
Manifest this update: Fri 17 Apr 2026 04:00:31 +0000
Manifest next update: Sat 18 Apr 2026 04:00:31 +0000
Files and hashes: 1: EvjH0eB3lK8EGxr2MMZY47KwFJo.roa (hash: 3qzbTURdZCLde3ZZJmDOq+A/YFi0KzBJQ1AgqJiCMy0=)
2: hWL0qJNlk83sba1-Ls8beb9lwFo.crl (hash: HAnTB6wVmIJh59ax9Rj48u7nQ37e3OBqgEgSloqgApE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:f7:13:09:09:f1:65:2e:d6:f0:30:65:07:ca:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Validity
Not Before: Apr 17 04:00:31 2026 GMT
Not After : Apr 18 04:00:31 2026 GMT
Subject: CN=dee1d00a97d32e29d4ec4407bd31fb3a593581c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ef:09:a3:79:f7:cf:4b:88:1d:55:95:1c:39:
41:fe:e3:0c:10:39:67:36:9d:5c:95:af:85:b4:b0:
72:6c:1a:bc:9c:f8:9e:7c:b0:27:bc:71:3d:93:86:
a5:a0:0d:2d:0a:ac:d8:d6:27:fe:0a:6f:5e:39:56:
9b:51:cf:ba:33:28:00:c6:f2:a9:dd:85:13:ab:93:
6a:48:32:1c:91:10:f2:07:d3:4f:43:7e:7c:0f:be:
e9:33:36:1c:b9:cd:cc:ac:a4:51:e4:8a:fa:26:90:
d9:b8:e2:8a:9c:4b:30:ab:1a:c3:b9:14:fe:a3:75:
97:12:8d:ae:55:09:27:53:a1:b7:4d:46:b1:fc:49:
d3:29:81:b9:15:dc:ed:ca:4b:58:46:d3:a7:6a:9c:
1f:51:75:41:4e:c5:93:be:7e:ce:df:3c:3a:bd:66:
33:3a:1a:78:69:85:08:c2:c0:91:51:0d:98:9c:e4:
32:a3:e8:9f:22:27:0a:6d:22:54:8b:82:16:e8:3a:
59:07:c0:f3:d4:b3:1c:b0:51:b1:00:20:05:1b:02:
24:cc:d1:d4:11:2c:b6:4c:48:2e:c6:9a:6b:87:66:
66:19:8a:a7:b6:88:ef:26:f5:c9:3d:c1:87:69:5f:
89:de:49:11:08:e7:5a:6b:1a:e2:67:66:f4:db:d7:
bb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E1:D0:0A:97:D3:2E:29:D4:EC:44:07:BD:31:FB:3A:59:35:81:C3
X509v3 Authority Key Identifier:
keyid:85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:27:8d:80:55:d1:98:d3:f7:0d:5c:99:34:c8:e5:2e:75:75:
e4:9d:c8:22:a0:c6:97:dd:44:9a:ea:f4:8e:60:db:5c:92:f1:
73:a3:d8:15:aa:bc:5f:77:9a:bd:13:fa:5c:9f:14:1e:9f:f4:
b6:b2:e4:27:6c:9a:f4:51:76:44:c6:36:18:e7:2f:96:9f:e9:
35:22:16:11:ac:58:40:53:2c:3c:1e:97:88:35:69:e1:12:e7:
bf:66:19:60:92:4d:19:49:de:14:2f:64:1c:02:7b:60:42:10:
a3:dd:ab:25:40:03:35:4a:f3:87:03:ee:68:43:70:01:62:d1:
c8:78:7b:cd:10:0f:d3:61:8a:bc:d1:68:16:ef:7e:1d:79:86:
56:cb:4e:f6:06:06:2f:fc:09:5a:43:e6:4d:86:bd:84:cb:16:
98:a2:b6:89:6d:e8:2a:11:4f:d4:5b:28:3b:75:bc:fd:f4:83:
4f:38:bc:fb:30:d9:0e:df:d9:0e:4e:b7:2b:dc:b7:d8:f2:0e:
bf:c3:0b:50:76:68:bf:5a:e2:e1:30:5a:0b:78:86:d3:dd:42:
81:c2:6c:51:29:94:30:30:37:70:c9:cb:36:8e:a6:12:f3:68:
ab:47:4e:53:3d:72:3d:b0:1d:04:e8:21:51:e9:28:26:79:fc:
9b:be:42:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:49:23 2026 by rpki-client