Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: qxnmb2NEZtCBF5UjxFhs6V8qd7yh6mi4/nvJLkkKxGk=
Subject key identifier: 8F:C9:3A:72:DF:22:6C:D4:2D:A9:E6:51:A9:73:3A:12:83:59:03:DA
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019D25F219692A25492ED2A917E64778171E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 027A
Signing time: Wed 25 Mar 2026 17:01:56 +0000
Manifest this update: Wed 25 Mar 2026 17:01:56 +0000
Manifest next update: Thu 26 Mar 2026 17:01:56 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: FthWUlzQaG2kk6lo1M9MoPZ6SUdMQ9TcIXvFGwbS3go=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:19:69:2a:25:49:2e:d2:a9:17:e6:47:78:17:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Mar 25 17:01:56 2026 GMT
Not After : Mar 26 17:01:56 2026 GMT
Subject: CN=8fc93a72df226cd42da9e651a9733a12835903da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8d:f3:ce:02:d1:d8:0a:ea:0a:ac:59:38:9e:
28:c9:c9:53:66:cc:75:b7:5a:2d:42:0a:bf:34:31:
31:a2:7e:cf:a3:45:5d:1f:7a:5f:4a:47:c6:04:db:
53:16:2f:43:c5:f4:45:77:b8:7d:01:46:6b:05:81:
e8:f0:10:23:12:c7:0f:8c:d2:c0:b2:7e:80:c6:05:
21:5d:08:75:fa:a9:8c:52:df:57:1e:00:86:04:f8:
a1:72:06:c9:b9:73:11:7c:05:a7:98:37:7b:39:74:
49:15:f5:2f:16:c2:1d:84:6f:9f:39:32:09:65:8f:
7e:3e:fa:69:72:18:a3:cf:37:77:23:af:2c:57:a8:
ab:64:e0:ac:65:e3:9d:b5:29:8c:4c:71:43:d6:b7:
b3:ea:b8:76:29:23:7f:2d:13:da:e1:04:89:aa:61:
88:f0:07:82:b4:3d:42:cc:e6:87:ab:06:4a:4b:f6:
f8:79:44:fd:da:ae:34:53:a9:75:d3:8a:6c:2f:bb:
a3:3f:65:6c:a2:ad:38:0b:ac:f0:6e:2e:d4:36:c6:
9a:bd:36:15:53:0f:d2:f2:1b:f1:95:12:6c:06:9b:
55:31:4b:5a:87:b4:c6:19:1b:a8:0e:9e:74:31:a2:
12:4a:a4:70:b9:8f:b2:69:f6:6e:d7:41:d9:90:b0:
6b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C9:3A:72:DF:22:6C:D4:2D:A9:E6:51:A9:73:3A:12:83:59:03:DA
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d5:99:e9:55:c0:73:7f:87:ff:ca:1c:68:47:43:dc:3c:5e:
84:c6:df:16:30:bd:8a:7f:47:01:74:0b:b5:61:29:5e:7e:d6:
ec:e9:cf:85:47:1a:73:b4:a2:96:3d:08:23:cf:89:dd:9d:c1:
af:35:e6:06:0f:ef:84:7a:30:6b:b8:03:73:09:cf:c0:05:ea:
85:ea:47:bb:45:eb:6b:11:39:ca:44:86:f0:a7:c5:2b:01:8e:
69:4d:92:5b:e3:70:c6:be:bb:73:83:72:e8:35:55:dd:e9:ba:
06:f4:32:a3:ce:a0:92:f7:b4:49:38:05:a2:11:ad:4c:8d:ff:
f2:32:12:c2:27:bb:15:35:3c:14:2a:1c:27:63:e6:8f:ab:fa:
e0:fa:a5:cf:81:6d:9b:83:7b:31:1a:e2:65:e2:1f:2e:78:bb:
27:75:83:f9:ca:51:33:c0:9a:37:63:07:28:96:79:63:41:97:
e1:7a:3f:ae:48:c3:9c:d0:ab:d7:73:39:eb:0c:4c:72:75:f2:
5e:6a:af:d6:75:51:b5:c5:4b:7d:ca:d9:49:08:eb:e7:ec:21:
7d:90:44:79:4f:72:cd:dd:26:6f:69:0e:e6:db:6c:b0:76:00:
03:0f:51:db:03:a2:f9:a3:9e:18:6b:e1:3f:4c:5d:ae:4e:e0:
77:e7:e7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:30 2026 by rpki-client