Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: odOnOW6/fSEfouRyp41kksKx9Tt642Xg/EC51eOFvT0=
Subject key identifier: 52:3E:B7:84:21:EC:19:A9:B3:45:2F:BB:43:8C:D2:DF:9F:B3:AB:8B
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 019D296137C7DDC34F079F2EC12A5FA02FE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1892
Signing time: Thu 26 Mar 2026 09:02:10 +0000
Manifest this update: Thu 26 Mar 2026 09:02:10 +0000
Manifest next update: Fri 27 Mar 2026 09:02:10 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: Qoy5k6QIs8JWJa6jTHVnawy2IEPkCRZxdgi36/M5j4s=)
2: RoLgrjDxF4akRKaq8T1rSF19Kng.roa (hash: +7nyTK/C6dWtP3h0zQHeagqR3OkxYgHMPvGFJRKBnDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:37:c7:dd:c3:4f:07:9f:2e:c1:2a:5f:a0:2f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Mar 26 09:02:10 2026 GMT
Not After : Mar 27 09:02:10 2026 GMT
Subject: CN=523eb78421ec19a9b3452fbb438cd2df9fb3ab8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:df:02:67:43:39:cd:ab:b5:ff:45:c1:64:41:
e5:22:77:4b:76:a8:e9:af:c2:35:88:18:3f:6d:87:
ff:26:98:bc:25:75:d8:de:74:0a:85:1d:2c:6d:df:
99:1c:67:85:06:b6:7f:4c:a1:6e:d3:ed:e0:e2:22:
e6:cd:a7:c4:4a:46:a1:c7:3d:d8:99:07:9e:47:23:
81:1a:9a:56:46:2e:18:47:47:fb:63:75:04:e9:c6:
90:3f:a6:e5:f3:f2:7c:61:4d:47:ea:87:a4:2d:a1:
13:39:1f:c0:bf:f9:a1:ca:fa:75:04:cb:11:0b:22:
fc:c4:39:f2:cd:fd:46:0c:ba:be:94:f1:78:74:e5:
d3:1e:35:98:b1:bd:11:28:07:99:4f:57:0b:ed:6e:
2a:fa:2c:dd:fd:ed:fe:28:ee:cf:1e:ba:e2:0b:80:
fe:6b:f8:30:5c:38:37:eb:44:20:7b:e7:ba:16:2c:
f6:bb:3a:26:4c:6f:bd:b9:f7:62:35:e3:4a:ca:6d:
47:97:a8:cc:1e:35:8b:03:e4:39:2e:8d:02:3a:10:
21:02:1e:fe:6c:6f:0b:df:86:d5:63:53:14:e8:55:
d9:79:95:f0:34:b6:d2:ee:79:78:e2:11:5c:02:91:
fb:f5:48:f0:88:62:47:79:21:73:3b:b1:1d:79:4b:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3E:B7:84:21:EC:19:A9:B3:45:2F:BB:43:8C:D2:DF:9F:B3:AB:8B
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:87:03:33:55:ed:c3:b2:6f:5c:2e:a5:97:ec:42:9d:cc:db:
18:21:8e:4e:31:d2:8d:5f:fa:c2:3b:f0:a7:d2:74:34:b5:fb:
f5:1c:3b:ca:8c:dd:3a:0d:8b:16:e5:7d:0a:60:01:a2:91:8d:
0c:1d:f5:8c:0f:84:df:47:33:f4:3c:13:d4:35:6d:45:53:9d:
6b:af:2f:22:55:dd:5c:ff:3f:f2:94:7a:6c:af:3f:e5:37:c5:
f6:84:e7:64:23:0f:a2:49:6f:7e:8f:d0:8b:5e:ba:52:d4:20:
46:b4:45:73:85:92:bb:67:b5:6c:c1:42:44:07:55:cf:13:a6:
40:fa:07:3a:35:7a:49:dc:76:53:f7:2b:30:59:67:5e:b9:62:
68:e6:89:88:6c:0a:f4:3c:44:5d:e9:e1:5b:a3:17:ee:65:64:
34:61:4b:ea:fa:bd:c8:39:f8:c3:6a:15:e8:92:c1:ab:89:78:
a6:ee:dd:8c:e1:2e:b8:f2:7d:6c:dc:0d:93:e8:42:5a:92:24:
87:a0:c7:23:b3:9d:c7:bf:e1:c1:6e:cf:fd:16:55:be:e2:a5:
89:eb:fa:fa:27:d5:11:2c:f8:d5:8f:62:e1:e1:7c:7f:c6:46:
4d:11:65:f3:28:86:6e:7f:b6:30:23:ae:6c:6a:ec:01:42:3d:
cd:50:ca:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYTfH3cNPB58uwSpfoC/iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNWFhZjNkMDY4M2RjOGEwZDU4YzY0MzgyNmUxNjZkM2My
OGNjYTkwHhcNMjYwMzI2MDkwMjEwWhcNMjYwMzI3MDkwMjEwWjAzMTEwLwYDVQQD
Eyg1MjNlYjc4NDIxZWMxOWE5YjM0NTJmYmI0MzhjZDJkZjlmYjNhYjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo98CZ0M5zau1/0XBZEHlIndLdqjp
r8I1iBg/bYf/Jpi8JXXY3nQKhR0sbd+ZHGeFBrZ/TKFu0+3g4iLmzafESkahxz3Y
mQeeRyOBGppWRi4YR0f7Y3UE6caQP6bl8/J8YU1H6oekLaETOR/Av/mhyvp1BMsR
CyL8xDnyzf1GDLq+lPF4dOXTHjWYsb0RKAeZT1cL7W4q+izd/e3+KO7PHrriC4D+
a/gwXDg360Qge+e6Fiz2uzomTG+9ufdiNeNKym1Hl6jMHjWLA+Q5Lo0COhAhAh7+
bG8L34bVY1MU6FXZeZXwNLbS7nl44hFcApH79UjwiGJHeSFzO7EdeUtn+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFI+t4Qh7Bmps0Uvu0OM0t+fs6uLMB8GA1UdIwQY
MBaAFB5arz0Gg9yKDVjGQ4JuFm08KMypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMt
NGNkMzhiNzU4ZDVjLzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMtNGNkMzhiNzU4ZDVj
LzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO4cDM1Xt
w7JvXC6ll+xCnczbGCGOTjHSjV/6wjvwp9J0NLX79Rw7yozdOg2LFuV9CmABopGN
DB31jA+E30cz9DwT1DVtRVOda68vIlXdXP8/8pR6bK8/5TfF9oTnZCMPoklvfo/Q
i166UtQgRrRFc4WSu2e1bMFCRAdVzxOmQPoHOjV6Sdx2U/crMFlnXrliaOaJiGwK
9DxEXenhW6MX7mVkNGFL6vq9yDn4w2oV6JLBq4l4pu7djOEuuPJ9bNwNk+hCWpIk
h6DHI7Odx7/hwW7P/RZVvuKliev6+ifVESz41Y9i4eF8f8ZGTRFl8yiGbn+2MCOu
bGrsAUI9zVDKlA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:59:39 2026 by rpki-client