Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
File: hGlcglEp42VKUIs7xSn-Ols4ObE.mft (raw, json)
Hash identifier: csOevk6+qB4zLAlzScBwu10hrwpZ6JjKCFMwA4fS0fo=
Subject key identifier: 39:3F:64:18:E6:CB:71:6B:94:D3:DC:8D:EE:7F:E2:31:E1:69:D8:CF
Authority key identifier: 84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
Certificate issuer: /CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Certificate serial: 019E1F10CD10008D5D4EACA45DDE2408C7B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
Manifest number: 1458
Signing time: Wed 13 May 2026 02:00:55 +0000
Manifest this update: Wed 13 May 2026 02:00:55 +0000
Manifest next update: Thu 14 May 2026 02:00:55 +0000
Files and hashes: 1: WJgbjZB87tJLoahMumVDjucLblI.roa (hash: YviU04V4NEhTzYiRRcQuelFb9gp3nZ2OardyM6DZLlI=)
2: hGlcglEp42VKUIs7xSn-Ols4ObE.crl (hash: mCogB8xcBkdHBFIlz1PwZtIuYxrYsRDHtriYAkJ4FWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:cd:10:00:8d:5d:4e:ac:a4:5d:de:24:08:c7:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Validity
Not Before: May 13 02:00:55 2026 GMT
Not After : May 14 02:00:55 2026 GMT
Subject: CN=393f6418e6cb716b94d3dc8dee7fe231e169d8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:56:ae:9d:b7:66:5c:90:ab:66:36:ca:6a:
96:5e:3b:d7:77:24:b6:45:a9:f4:4b:a4:79:29:78:
34:ff:f0:08:39:7e:53:45:48:a8:ca:9f:e5:b3:50:
92:82:e7:e2:af:40:0d:46:54:01:aa:89:0e:a6:3c:
13:71:a9:74:81:20:23:5b:8d:3e:3d:d6:26:8f:a1:
fd:d3:0f:32:cd:03:56:0c:c1:1f:9c:d2:47:8e:fc:
af:54:48:98:f1:0d:2e:85:88:ed:59:80:c2:60:13:
08:2d:4d:47:3d:e1:c2:ea:ad:57:bb:0d:00:cc:3c:
49:cb:e8:75:08:10:dc:88:22:ba:03:1c:29:38:41:
ce:89:0d:94:df:ba:2c:a6:e9:88:f8:b6:19:4a:e7:
56:f9:27:51:09:d9:8f:c8:f8:07:82:33:66:2c:4c:
e6:9a:ff:ce:94:d9:49:94:73:b5:c1:6e:44:73:37:
f4:22:94:c8:dd:4e:62:a5:91:ee:0d:3f:5c:22:b2:
51:4b:5e:1b:39:70:d0:ac:e9:8c:d0:d6:08:7a:57:
09:0d:0b:5c:8a:c3:40:a1:1b:0b:da:6b:d3:0e:cb:
3e:d9:11:85:68:50:4e:7e:fd:65:23:f7:72:e7:16:
72:ec:85:fe:bf:a9:3d:c4:28:f3:d8:09:05:5e:94:
bc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3F:64:18:E6:CB:71:6B:94:D3:DC:8D:EE:7F:E2:31:E1:69:D8:CF
X509v3 Authority Key Identifier:
keyid:84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:38:49:51:66:24:32:7d:7f:18:4f:a1:7d:c0:79:ac:fa:9f:
99:f1:1b:7d:1d:e1:56:e3:b1:5c:62:ac:ef:03:f5:35:1e:8a:
ac:21:b3:1a:73:69:81:34:54:60:f6:3e:08:0f:47:89:46:96:
63:16:e6:a6:39:a1:9d:6f:b1:4d:8c:61:23:39:89:aa:4d:37:
0e:29:ab:5e:07:11:7a:87:15:4e:b9:ab:3c:76:79:f5:1a:0f:
e3:02:f1:f4:ea:a8:90:63:5a:3b:49:c0:9f:2a:74:1a:24:9b:
2e:bd:8e:cb:21:cb:01:75:5d:2e:25:6b:45:3f:0b:b2:cc:00:
13:9c:d7:2b:02:7e:be:fd:1e:ef:b6:bd:67:6f:02:1a:ac:a2:
b7:33:5f:98:16:23:11:0d:9b:07:de:6f:65:d0:ba:47:87:7b:
35:38:98:68:58:0a:4e:c3:75:95:78:34:54:c7:52:27:d1:43:
a3:e9:a8:1d:4c:dc:e4:f5:7c:3a:31:36:bb:97:d2:0e:08:b7:
6f:20:cb:a5:b2:9b:6b:92:9a:50:7d:78:6b:8f:89:08:bf:ec:
c1:35:2a:c1:13:75:96:86:a4:21:72:e1:67:2a:90:ea:73:91:
ee:65:aa:79:48:b8:5b:74:9b:23:3a:9c:36:27:c8:4b:da:97:
fc:33:f8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:47:51 2026 by rpki-client