Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: SdRyO7wL5buzvi4pA7acBfrP8CJyoqkfkwic55Y7x7U=
Subject key identifier: B2:9D:85:44:0A:52:42:9E:9F:67:C0:58:C7:1E:B9:DE:E7:94:FE:48
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 019E2091F274E0CDEA51A2387C649D093C29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1913
Signing time: Wed 13 May 2026 09:01:36 +0000
Manifest this update: Wed 13 May 2026 09:01:36 +0000
Manifest next update: Thu 14 May 2026 09:01:36 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: AU8U4pyjOsDRTn3MjlT99YaFXBxzRzPmYeqTniWR6Pk=)
2: _q_z8zirRYlcSNgzBfa2UgwhBsY.roa (hash: 7FvPxMebM8XNvB7UURf/gtYPKGavYRcCA/s+tW3XysQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:f2:74:e0:cd:ea:51:a2:38:7c:64:9d:09:3c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: May 13 09:01:36 2026 GMT
Not After : May 14 09:01:36 2026 GMT
Subject: CN=b29d85440a52429e9f67c058c71eb9dee794fe48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6a:d0:bd:89:5c:f9:c5:ad:49:15:a8:dd:5e:
ac:b5:43:19:22:e3:fe:04:21:22:0c:56:47:72:b8:
65:38:23:f9:4b:36:50:5b:4f:f2:cd:7d:a6:b2:db:
26:93:d1:fc:cc:42:8a:75:12:20:84:d4:73:41:38:
c8:cf:99:d9:01:32:c0:0d:4a:56:cb:4a:f5:25:97:
04:9f:07:a1:4e:92:b9:ab:1f:83:e6:47:00:16:07:
04:26:3e:c7:5a:65:19:4e:ca:d1:3e:0a:33:fb:33:
8a:e7:aa:88:42:0b:cc:b0:34:73:91:12:2d:87:9c:
f5:ad:4c:8f:33:d1:50:ce:90:21:1f:b7:52:d5:de:
89:aa:ab:c8:e5:a7:bb:af:6e:3f:66:8d:e7:53:11:
94:e7:17:e3:d2:b8:dc:2e:08:7b:52:e3:82:cf:43:
01:ce:4e:a2:81:d8:52:3b:c4:e0:ed:d8:26:f2:e5:
ba:9d:07:58:21:a6:9b:43:a9:68:9f:87:01:39:c7:
a9:59:15:e7:46:cb:42:d5:70:79:ca:b0:21:9b:a2:
5a:96:18:78:eb:f2:8b:38:05:73:c5:04:8d:b5:4a:
f0:07:3c:6c:f9:a6:d6:7e:9c:70:f1:b3:98:ea:d4:
0f:e1:5a:98:c7:0a:86:57:2b:54:03:d0:7b:44:8d:
88:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9D:85:44:0A:52:42:9E:9F:67:C0:58:C7:1E:B9:DE:E7:94:FE:48
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e5:f4:b3:1a:4b:fb:37:93:0e:9a:75:ed:bf:d7:c8:5f:3e:
dd:b2:e8:63:b7:44:3a:f9:92:c4:22:73:a3:59:a0:97:3a:f0:
93:9c:6e:92:65:c8:47:b2:65:d6:5d:6f:95:f7:50:69:25:14:
5a:1b:c4:58:7a:ba:53:42:d6:28:8d:c7:e0:b5:5f:c3:53:9b:
81:dd:c2:59:45:5c:51:87:53:4e:bb:34:8c:a9:02:4c:d4:7b:
eb:a7:d5:59:1f:9d:30:02:cf:ff:4e:97:fc:07:f8:c0:0f:b2:
fe:2b:28:91:af:cb:89:48:a5:de:2f:bb:cf:0e:90:01:b1:97:
5e:91:3a:1c:bc:55:5e:4e:3a:97:ab:40:b6:bb:a2:f3:38:fb:
6f:70:a7:a8:99:38:c9:45:e7:41:ae:70:5a:e8:e8:66:ca:ba:
7e:9f:a4:ae:a8:c1:16:5d:eb:68:72:94:7c:43:91:86:ef:60:
bf:2a:0a:18:10:17:18:03:f9:98:be:80:c1:65:ac:70:95:ec:
29:5a:fe:be:05:b5:e2:86:e1:a1:12:c5:18:96:b7:ab:4f:58:
f8:54:f4:42:cf:6f:a2:63:e7:f6:3f:b4:bb:08:62:bb:d7:a7:
25:a3:2a:1a:b4:e0:20:35:d7:6a:c8:25:b8:11:b9:d8:3d:e0:
24:03:ab:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:59:49 2026 by rpki-client