Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: MYwFcuNEkK4DsZzRJ+28yWD4FlA95gHjtp1O8tt94V0=
Subject key identifier: 16:4A:62:AE:02:A4:A0:32:E3:9D:9B:CF:28:E2:C7:A4:E2:9A:79:F3
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019D26CCDC491D00534BF5B338BC62C749F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0C47
Signing time: Wed 25 Mar 2026 21:00:53 +0000
Manifest this update: Wed 25 Mar 2026 21:00:53 +0000
Manifest next update: Thu 26 Mar 2026 21:00:53 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: h5T/XzYaB12UYdCoVaAEl8ddPLZxVnyItpznKYLKwvE=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:dc:49:1d:00:53:4b:f5:b3:38:bc:62:c7:49:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Mar 25 21:00:53 2026 GMT
Not After : Mar 26 21:00:53 2026 GMT
Subject: CN=164a62ae02a4a032e39d9bcf28e2c7a4e29a79f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:de:8c:b2:11:6c:17:33:97:c1:c6:c5:f7:1a:
47:50:b0:bf:13:b4:72:7e:43:7c:be:45:ae:48:35:
aa:fe:14:b9:2c:87:8d:61:f9:ac:a2:fa:64:e7:cf:
29:46:8e:7b:7f:bd:8f:85:ea:0b:5c:63:45:e8:2a:
27:cb:5c:78:95:ef:61:c7:f1:d5:68:34:6a:07:a5:
6b:46:ad:46:f3:ce:5a:e3:bd:94:58:80:d8:cc:33:
36:fb:d7:be:ab:38:81:3c:5c:2d:0d:29:2c:dd:0f:
e7:67:84:e9:f6:32:d0:13:ce:13:e0:2b:cd:59:43:
0d:7b:93:de:44:36:00:1e:01:d4:3a:73:4c:da:5a:
a2:06:20:52:36:3d:f5:06:8c:bc:81:85:3a:e3:96:
f1:a4:38:b8:a1:d6:79:bb:22:b8:2a:7f:fb:9d:84:
f8:56:20:72:d4:75:6a:ea:27:7f:d2:c9:12:17:0e:
c8:06:a0:e9:32:f8:a6:60:64:d0:78:86:4d:a6:2c:
6c:e4:47:78:f6:9c:2f:03:55:0a:79:bf:f3:2f:95:
69:e6:34:0e:ec:52:67:27:99:18:ec:c1:46:92:62:
37:6e:ed:88:ca:f8:13:3b:9d:75:fa:7c:e6:4f:42:
98:80:ca:bd:fb:f3:fd:48:6d:b1:be:18:e0:42:70:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4A:62:AE:02:A4:A0:32:E3:9D:9B:CF:28:E2:C7:A4:E2:9A:79:F3
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:78:58:5d:48:49:f7:c6:b1:7d:7d:88:f9:00:7e:d7:2c:80:
6f:68:4f:85:b1:c1:89:3b:7f:0e:ce:0f:83:a3:ea:9d:ef:7f:
54:db:11:b6:41:59:f9:65:b4:97:f7:4d:b9:a6:e9:72:7a:99:
44:c2:80:7a:80:ff:bb:b5:a8:85:30:c6:16:1e:cb:b3:29:16:
bd:e7:94:f0:96:6e:ab:84:37:a0:d3:d7:89:25:0e:19:48:30:
bf:10:c4:8a:52:2d:18:e9:89:7b:54:1d:f0:1e:ca:9d:de:11:
51:b3:83:6f:d5:08:0d:88:2d:09:1a:9c:71:fd:11:d9:8b:93:
32:41:eb:49:9a:25:d1:93:a9:31:ec:fc:f3:b8:15:96:f4:64:
f8:85:c7:52:d4:f7:a3:69:c2:e0:b5:18:58:b9:44:11:f1:b6:
09:13:2f:7b:bb:e4:b9:20:37:ec:03:d5:e3:d0:bc:06:7a:bd:
b0:fd:18:9e:ce:72:50:95:bc:2a:63:64:d5:f7:e8:8e:99:b7:
b9:e5:09:33:c6:da:bd:8a:d8:bb:82:4b:77:6e:89:d6:42:07:
c0:f0:48:c4:61:b7:2b:79:4a:69:c2:29:69:20:21:c4:7f:f2:
19:fa:fa:b5:f6:7a:45:0a:0b:ea:0e:d6:d3:8f:6e:63:65:fa:
01:3c:15:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:56 2026 by rpki-client