Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: hI+Yn6nJvnr3L7ugUu6tcoxIWzXjCv+IKIi4zWYNUBc=
Subject key identifier: CB:F0:81:71:2C:B7:62:F7:7F:8C:5C:6A:D1:45:F1:93:1A:90:05:B8
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 019EB5E9D76E540CBC6450B707183FD3445A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1961
Signing time: Thu 11 Jun 2026 09:01:01 +0000
Manifest this update: Thu 11 Jun 2026 09:01:01 +0000
Manifest next update: Fri 12 Jun 2026 09:01:01 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: QA1Bwd8+f5SOl5dV2Dc43Z7kDzd61/SyhHvUO0Y8wDs=)
2: ewpu37-_zVa2ciUPDCprYExVMeE.roa (hash: J4xvO1VX5LQIo6ESckSvrBALshEalA/u4gMAKH5WVJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:d7:6e:54:0c:bc:64:50:b7:07:18:3f:d3:44:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Jun 11 09:01:01 2026 GMT
Not After : Jun 12 09:01:01 2026 GMT
Subject: CN=cbf081712cb762f77f8c5c6ad145f1931a9005b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8e:d0:24:a9:77:60:cc:16:86:ce:f2:23:c7:
c2:7d:87:8f:21:62:d5:ae:64:5c:06:8a:32:13:73:
a4:4b:e2:fb:bb:79:f0:ca:4b:ef:86:dc:c3:b0:53:
a0:a9:4e:c3:c1:21:47:7d:ca:6e:1a:61:1f:27:64:
53:4c:22:e2:f7:be:11:59:fe:cf:64:56:34:c0:5b:
da:d7:8c:c2:dd:36:a4:30:33:b7:45:6a:30:8e:0b:
15:ee:5b:5a:13:2a:55:ef:5d:a8:d7:1a:d6:2c:cb:
6d:17:8e:95:af:bb:38:a2:5e:94:24:5c:ff:56:39:
50:c4:c4:1d:d1:e0:17:8d:fe:fb:a2:32:db:ac:d1:
ee:14:dc:4f:cb:9d:44:ff:b2:b8:10:3b:df:b6:b1:
8e:c2:4b:ba:06:b7:bc:60:96:a3:ed:2d:d4:6a:12:
63:41:5c:b0:dc:08:bc:04:e8:76:6c:7d:47:1a:45:
39:ad:e3:e7:26:17:de:c6:75:72:6a:e5:44:39:2c:
56:39:3a:06:8e:36:41:cd:15:0f:f4:cf:27:9f:2c:
94:b1:f6:4e:7f:67:7d:12:95:02:b6:0a:84:d7:9e:
67:bb:22:43:c6:12:06:61:7a:33:42:eb:35:fd:30:
a3:cb:ed:2a:5d:0b:13:7c:e3:5f:7c:6b:84:84:a2:
8d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F0:81:71:2C:B7:62:F7:7F:8C:5C:6A:D1:45:F1:93:1A:90:05:B8
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d1:4c:84:c7:67:5e:f0:93:85:db:f5:ad:ce:22:20:75:bb:
04:11:6b:45:35:66:bd:79:65:fb:f7:4c:99:5e:95:4c:86:f1:
4d:c6:6b:9a:7f:63:64:db:e1:1f:53:65:39:46:f7:73:6e:46:
9b:5e:12:34:69:89:e7:e1:89:c7:b1:b0:bf:80:a0:7e:b5:15:
cf:67:64:50:ee:31:1b:db:2d:e6:50:11:19:5a:0d:da:41:ff:
ed:9f:d2:51:67:82:f3:cd:85:a3:2b:23:73:ab:27:ae:97:18:
2b:d4:45:0a:8a:10:c5:01:bf:a3:47:1c:96:58:1a:5f:11:67:
32:a3:5a:61:05:7a:3d:c0:2d:90:94:fd:d8:78:ba:0d:26:6b:
5a:74:e9:cf:30:ff:c6:0c:60:9f:1d:fb:4d:84:98:41:6e:f3:
d5:01:64:6e:5d:ee:b4:0f:a8:9d:93:cb:f4:20:8d:5e:fc:bd:
4e:ad:cd:b6:aa:86:33:d6:2d:ca:ca:9d:55:43:dc:9e:7e:5c:
8c:3e:b6:7a:41:8f:47:2e:f5:71:93:0a:3d:7b:3f:6f:44:3f:
e2:a8:ec:9f:56:33:09:bb:b1:df:41:9d:b9:d3:7c:41:32:e5:
d8:6f:db:d3:13:a4:1b:5a:1f:51:50:5d:d5:98:a2:66:59:1b:
67:ad:e5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:32:31 2026 by rpki-client