Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
File: hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft (raw, json)
Hash identifier: v6xmA07XwHK2WGZ5y4bSZKsiXuhp8sMk9PZrPpIXR0I=
Subject key identifier: F1:01:D2:30:84:8C:7F:87:CB:FE:46:65:D3:B0:F5:44:F4:DE:57:04
Authority key identifier: 86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
Certificate issuer: /CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Certificate serial: 019D2703F62E02C54B4965B3ADB15E1F60F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
Manifest number: 0C76
Signing time: Wed 25 Mar 2026 22:01:04 +0000
Manifest this update: Wed 25 Mar 2026 22:01:04 +0000
Manifest next update: Thu 26 Mar 2026 22:01:04 +0000
Files and hashes: 1: hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl (hash: Lkvapy3vike7uv8qOytJqeIObMLnFkfQU1MW+XW5Dag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:f6:2e:02:c5:4b:49:65:b3:ad:b1:5e:1f:60:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Validity
Not Before: Mar 25 22:01:04 2026 GMT
Not After : Mar 26 22:01:04 2026 GMT
Subject: CN=f101d230848c7f87cbfe4665d3b0f544f4de5704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1a:e8:41:39:bd:87:8a:cf:c5:28:d8:a5:3b:
a6:0f:12:a0:fe:bb:85:ca:b5:b2:4d:ea:5f:c3:4d:
a6:ad:3c:c6:b8:76:d1:9c:ee:4d:90:17:12:3b:e8:
51:72:0a:80:80:39:4d:b1:99:42:1a:2b:21:b8:c5:
7b:f6:68:da:52:c7:49:b6:96:35:28:9c:04:54:83:
91:16:65:f1:46:e7:9c:6f:db:d5:e6:f4:d4:8a:68:
84:70:ea:40:80:f9:cc:8a:77:0d:2c:c0:91:b8:63:
08:46:3c:a6:60:de:e2:ac:8f:5f:42:64:b5:0b:2d:
c4:84:48:cf:9b:b0:bb:a4:9d:c9:13:45:a7:3e:e9:
86:4d:bd:7a:44:84:33:c4:95:8a:cb:ea:6a:0d:74:
89:ce:26:47:cf:b0:47:46:02:96:72:c6:cc:59:a4:
39:b4:ee:9c:31:06:8f:e0:06:02:6a:0b:51:33:82:
ff:f8:33:71:f1:0f:64:fe:c5:7f:7e:65:bf:9d:3b:
90:ed:54:f3:f3:23:ba:60:a5:c6:96:4f:d2:19:ed:
1b:8f:1a:bd:1d:38:e9:9f:75:4e:fc:b3:0d:e4:d8:
21:c2:4e:d9:e3:0a:56:0e:d1:bc:5e:da:a8:b0:3f:
9c:53:1b:ff:d4:2d:8e:9c:d8:dc:d7:16:f7:81:31:
a7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:01:D2:30:84:8C:7F:87:CB:FE:46:65:D3:B0:F5:44:F4:DE:57:04
X509v3 Authority Key Identifier:
keyid:86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:5b:e6:87:20:89:f3:d1:06:b7:65:55:e4:90:2c:1a:90:12:
b2:ea:de:5c:d6:57:3c:21:41:95:72:b7:0b:39:f0:99:fe:f1:
b3:81:24:c5:9a:c2:48:27:ec:c5:8a:c8:12:2b:8d:35:a8:5b:
4c:b7:dd:04:f1:41:ae:e7:dc:ca:c4:b9:74:57:94:fa:9d:b7:
f8:b4:50:41:2e:1d:0f:78:d0:4d:c3:99:07:3e:2d:da:0f:46:
eb:d5:0a:84:c6:ed:d6:09:ae:dc:e3:86:fb:82:6a:e8:b3:67:
a3:d3:20:f8:03:fa:23:2c:90:e0:6d:19:92:06:69:3d:7a:ea:
cc:d8:f2:af:45:50:ad:52:dc:34:1c:37:a7:10:d1:be:0f:58:
c2:1a:01:b2:cb:7f:52:17:a3:99:ab:4a:61:09:62:be:46:b2:
ac:1c:c2:55:b1:52:79:a1:3f:b4:d2:e5:49:a1:0c:dc:a1:72:
c1:be:20:b3:2e:ec:5a:0b:e9:c4:58:8d:ac:0e:9b:c2:65:59:
0e:4a:a5:25:71:a1:f5:a9:43:ef:69:67:be:d2:d0:7d:0d:17:
c3:17:17:d3:44:66:71:78:4c:c2:ad:a2:e2:98:66:f5:24:4e:
93:e4:be:3a:35:91:e8:74:b1:23:5f:61:fa:c8:93:33:6c:26:
44:7e:a9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:00:29 2026 by rpki-client