Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: qeclfGwC0tKW/5ZCQ2JIDGmOy9N9cI/6nQHHUnre7qk=
Subject key identifier: 31:35:B6:93:02:1D:BB:FC:EA:71:E3:A6:32:12:CA:86:BA:17:BF:45
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019E1FEC4DCB762D356FBE6BC9C4CC4EBE00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0CC8
Signing time: Wed 13 May 2026 06:00:40 +0000
Manifest this update: Wed 13 May 2026 06:00:40 +0000
Manifest next update: Thu 14 May 2026 06:00:40 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: XFLYNPDOFzeq0DCI/7aIOmQHV7SQBymeekT60FqqInI=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:4d:cb:76:2d:35:6f:be:6b:c9:c4:cc:4e:be:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: May 13 06:00:40 2026 GMT
Not After : May 14 06:00:40 2026 GMT
Subject: CN=3135b693021dbbfcea71e3a63212ca86ba17bf45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e3:9c:90:73:19:3c:7d:f8:b1:35:ba:4b:be:
9e:ad:1e:ab:cb:f7:e1:ad:01:db:1a:ab:ae:37:69:
a3:f8:7a:8d:f5:4c:80:56:6d:a7:d1:99:a2:95:14:
2b:8e:c6:9c:72:7e:73:9b:77:09:68:39:7e:da:b8:
e8:44:87:3c:24:56:fd:ee:1b:93:e9:49:fd:be:cd:
5c:dc:c3:20:2e:92:2a:b5:a6:ac:96:e1:50:5c:7a:
85:c5:0e:5a:c6:77:05:15:42:d6:88:27:32:dd:a9:
09:42:7c:d5:7a:ba:02:49:0d:b5:06:d3:0d:bb:f2:
2e:29:2a:af:a0:2e:4b:3b:fb:19:28:01:a1:a2:47:
bf:2c:f5:35:0d:64:5b:b3:0b:7f:0b:43:6d:e1:55:
d7:dd:61:81:a7:51:dd:7a:9d:83:07:b1:fe:63:ce:
cf:c2:03:4f:9f:56:f9:19:be:62:ea:9d:74:8e:08:
77:66:a8:83:b1:1d:af:0b:da:68:e0:94:53:c4:54:
2f:da:a6:70:b8:e5:d5:c6:87:3f:44:d7:59:66:74:
bb:0c:4f:fa:70:54:d3:e6:5b:fc:62:23:a8:44:e2:
83:4d:cd:49:96:f0:f9:20:43:a6:f8:9f:72:08:38:
15:f5:a5:79:4c:05:0b:67:91:95:c3:aa:89:ad:df:
b8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:35:B6:93:02:1D:BB:FC:EA:71:E3:A6:32:12:CA:86:BA:17:BF:45
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:1c:dd:aa:f3:ef:d5:ca:5c:81:2e:1f:ff:e0:6c:de:ac:75:
da:28:b2:84:b2:5e:3c:21:c0:ad:fa:9f:0f:95:da:45:e6:da:
c1:a7:a8:4b:6f:07:c6:eb:aa:a4:41:73:92:79:99:b2:95:3e:
27:d0:8b:17:0c:46:9f:4c:3d:a3:64:99:d9:25:71:1a:9a:ec:
25:d8:f4:fb:5a:aa:d6:2e:0f:f1:d2:54:ac:13:02:72:55:23:
2f:bc:26:99:42:6b:46:26:9c:1d:89:67:d4:f5:cc:06:81:0f:
d5:7d:b2:e4:25:a1:12:24:04:23:af:b5:b8:12:d1:a1:06:15:
10:f8:b9:c0:24:20:f5:af:cb:f6:73:53:00:92:f8:ee:86:3d:
13:8b:8e:40:c5:a5:36:05:05:63:e5:13:25:10:b2:11:12:0e:
29:72:fc:33:95:ae:c7:23:4c:5f:d8:c8:82:8f:ad:32:b8:c1:
18:57:6e:92:62:b5:f6:be:8c:ae:91:0b:5a:07:86:22:9a:b7:
df:f3:d6:eb:16:b4:da:2e:52:2f:72:f1:0c:f8:da:2a:68:d2:
63:95:10:99:5a:ac:b0:81:a2:2a:5f:a2:50:5c:81:10:35:82:
5b:66:15:58:e3:cf:42:07:08:0b:fb:c4:d6:80:fd:c5:df:de:
85:3a:37:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:05:07 2026 by rpki-client