Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: 69+ym3dHkbfOQn4kQWmV2zPIEGxrDifTJxFLbBdvKh8=
Subject key identifier: AD:CA:6F:F7:05:00:0D:D8:D7:EC:22:59:33:A3:D6:6E:0E:42:2B:08
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019E1D2312025743E4C7DAE6977629C6C5C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 02FA
Signing time: Tue 12 May 2026 17:01:38 +0000
Manifest this update: Tue 12 May 2026 17:01:38 +0000
Manifest next update: Wed 13 May 2026 17:01:38 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: TGUrpvTYoS4lTYZgI6zuH4ThOy6f9Ui87BHW0SnWD9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 17:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:12:02:57:43:e4:c7:da:e6:97:76:29:c6:c5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: May 12 17:01:38 2026 GMT
Not After : May 13 17:01:38 2026 GMT
Subject: CN=adca6ff705000dd8d7ec225933a3d66e0e422b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:04:cc:19:96:6d:0f:4b:50:06:db:fa:18:f3:
ca:fc:a2:2f:49:fd:19:4e:c1:f7:7f:ba:15:16:1a:
0c:69:81:86:d1:a0:79:d9:a3:54:b9:70:d9:e9:ed:
a8:7b:5c:d2:8d:b0:25:a5:d1:4b:41:aa:4b:40:c3:
06:f5:88:0c:a3:a1:08:05:93:5a:85:fd:e1:35:bd:
40:46:2d:c8:6c:70:41:87:7b:75:d9:96:a5:40:f7:
41:43:bb:44:ea:22:f9:35:f0:c9:9b:9a:c1:f5:59:
a6:ba:37:45:01:3c:50:6a:c8:10:e1:9c:b8:ed:fa:
a2:80:f7:6a:a9:40:72:07:22:11:30:6a:70:0e:00:
ec:83:ee:94:e3:9a:ad:96:89:6f:85:14:62:2e:ee:
7a:76:f0:58:5c:d5:0f:d7:75:f7:c5:e0:93:52:b5:
e0:d2:cb:8e:c7:7b:a9:f5:84:f2:c4:55:d3:00:eb:
20:8e:1b:ed:93:36:14:a3:67:e7:76:9c:3f:34:60:
5a:05:f9:ee:f2:d3:a4:b2:b1:6d:09:ce:ba:a0:3f:
22:aa:e7:4a:2c:f1:85:fb:aa:37:b6:8b:a1:4c:35:
51:0e:35:34:4c:7e:c9:e9:e3:d0:77:9e:b4:5a:fb:
e7:da:5f:d8:aa:b3:f3:09:0a:b1:c7:f8:2e:31:69:
82:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CA:6F:F7:05:00:0D:D8:D7:EC:22:59:33:A3:D6:6E:0E:42:2B:08
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:c3:a3:49:95:b0:14:a3:6a:2a:f9:cc:33:4f:4b:7a:c7:dd:
71:aa:f0:6b:25:c0:78:6b:65:f9:87:6e:0a:43:44:f2:60:38:
ab:1e:44:87:1e:be:81:b4:cf:8d:5b:08:41:88:ed:f6:8a:a0:
e2:c4:44:a6:9b:d7:4e:11:98:a0:2a:0f:07:c7:2a:c6:a4:d4:
43:da:a9:cf:3f:ed:dd:0a:54:d5:ad:91:cb:15:a7:7f:82:7e:
12:63:a4:d3:5f:37:e8:ac:d6:1a:d5:90:3e:5c:5e:15:11:57:
a3:05:05:c1:cb:da:fd:77:b9:6b:91:9e:70:32:74:4c:1f:b9:
9b:0c:a5:6d:dd:d8:d0:d5:56:3f:2d:95:2c:78:1e:04:d4:95:
ac:f6:fd:8f:2e:b5:3a:c5:36:7d:36:13:8d:17:2c:66:b3:ff:
73:60:58:b4:d4:85:b2:75:47:23:bc:de:d4:7e:ee:65:c5:ec:
9f:ec:59:a6:f2:f4:36:75:05:cc:d6:69:6e:1c:fd:31:54:c8:
e4:c5:43:a2:d5:55:66:ff:e3:8a:c7:0b:13:bf:ec:2e:06:9a:
b4:0f:a2:f8:1b:b5:d7:22:6d:4b:81:9a:9e:a8:41:9c:eb:89:
cf:c7:c3:3e:cb:7d:07:50:6e:cf:e9:50:fd:a1:e0:ed:2e:07:
db:07:58:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:17:38 2026 by rpki-client