Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json)
Hash identifier: 3xlKomJuuk0bb9oZIgh7q7RE5Y/OAKowU2mdv+HePo8=
Subject key identifier: FF:E5:12:55:FF:FE:4D:94:42:F6:DA:BA:0F:0B:AA:C7:94:BF:7D:34
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 019E31178FC8A7BEDC1AFB237838BBE56ABF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
Manifest number: 15FC
Signing time: Sat 16 May 2026 14:01:28 +0000
Manifest this update: Sat 16 May 2026 14:01:28 +0000
Manifest next update: Sun 17 May 2026 14:01:28 +0000
Files and hashes: 1: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: V3I0l5MwB15CFd00XzQFzouxkw7avB9iwnJuNvi9Hr4=)
2: w5yC-7_BeEAUv5kdABElqtcahiw.roa (hash: MnBkOa0BegcXHiC5KD30/CFPwuYklVK8Uh3ekT7IGzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:8f:c8:a7:be:dc:1a:fb:23:78:38:bb:e5:6a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: May 16 14:01:28 2026 GMT
Not After : May 17 14:01:28 2026 GMT
Subject: CN=ffe51255fffe4d9442f6daba0f0baac794bf7d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:69:2e:b2:37:64:5a:67:b1:a7:26:f8:fb:58:
cc:8b:05:d0:a4:f3:61:c1:32:a9:3e:b6:67:aa:05:
0c:b3:25:ac:c3:c9:49:61:ea:12:64:73:dd:6a:fb:
e5:c7:07:65:ba:e1:4e:8c:b8:31:89:1f:21:f6:3d:
25:f7:44:65:28:75:18:a9:08:21:8f:c4:95:ce:7e:
96:7a:2c:4e:db:b1:b2:73:d4:0b:5a:cd:5c:73:d5:
0e:55:06:53:0f:11:c9:2e:69:e1:bb:a4:71:d9:e0:
01:11:6b:ca:30:7f:5f:bb:f6:91:2b:db:6f:af:45:
0b:de:de:8d:4f:5c:f2:cc:e0:49:ff:e7:65:60:42:
53:ec:fd:7a:ff:ec:b2:96:ab:3f:39:ef:86:53:60:
24:a1:94:04:26:d1:48:95:4d:4b:1b:99:b1:86:a7:
76:57:32:ee:60:2b:c8:2f:0f:80:68:7d:2f:ac:47:
1a:5d:66:a3:66:ad:d0:f4:18:18:4e:d3:31:51:8a:
06:a4:09:41:31:d8:91:06:1a:b9:af:19:d1:c4:54:
50:3c:b2:a2:10:a2:c9:82:38:2f:59:73:fa:5e:da:
6f:6e:a2:42:ba:bf:f8:71:00:4d:e4:3e:f4:41:02:
d0:1e:95:43:88:df:0e:b2:79:31:a5:93:e3:c4:a8:
4d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E5:12:55:FF:FE:4D:94:42:F6:DA:BA:0F:0B:AA:C7:94:BF:7D:34
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:ee:69:95:5d:8e:17:a8:5b:0c:6d:a8:08:55:73:ad:d4:ba:
0e:b0:f6:aa:3e:38:b8:25:09:be:4e:24:46:22:c1:99:b1:0c:
92:50:fa:db:5b:9a:10:d7:36:c4:80:ee:14:56:3b:a6:b1:43:
53:27:3d:55:48:ab:04:51:af:12:32:73:21:7f:e4:61:62:e9:
4a:dd:40:43:7a:9a:5b:0b:82:9c:47:af:c2:c5:e5:7a:00:15:
4e:2e:f6:12:f5:51:a9:a4:07:fd:09:7d:6c:82:5b:3d:47:69:
f1:8e:d1:cd:f6:f3:65:5e:61:a6:ab:f1:ca:f3:a0:39:e7:bb:
b5:df:da:c4:6d:8f:a3:44:d1:28:a9:d4:67:8e:12:1b:2d:9c:
ec:e4:6d:89:52:ab:60:2e:0c:52:cd:ec:3e:5d:01:ee:64:34:
a4:f3:bf:da:1f:0f:d7:24:26:cb:60:70:f9:ae:b6:ee:15:c0:
38:9f:28:bd:2f:6c:4c:3a:89:2f:ea:d1:23:46:74:6f:76:14:
22:3a:ba:96:c6:54:b1:59:68:80:ed:d4:0a:8d:08:61:16:30:
a7:98:a2:a8:85:c8:b5:57:88:22:a6:95:69:5c:a4:68:55:26:
98:29:7c:71:65:50:09:59:5c:c5:d8:5c:7e:f5:29:d4:2e:34:
2b:ec:af:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xF4/Ip77cGvsjeDi75Wq/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjJjMDg0OGQzMDU5ZTVhZTU1ZjY4YzA3MDc5Y2I5YTky
YzI3OWUwHhcNMjYwNTE2MTQwMTI4WhcNMjYwNTE3MTQwMTI4WjAzMTEwLwYDVQQD
EyhmZmU1MTI1NWZmZmU0ZDk0NDJmNmRhYmEwZjBiYWFjNzk0YmY3ZDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmkusjdkWmexpyb4+1jMiwXQpPNh
wTKpPrZnqgUMsyWsw8lJYeoSZHPdavvlxwdluuFOjLgxiR8h9j0l90RlKHUYqQgh
j8SVzn6WeixO27Gyc9QLWs1cc9UOVQZTDxHJLmnhu6Rx2eABEWvKMH9fu/aRK9tv
r0UL3t6NT1zyzOBJ/+dlYEJT7P16/+yylqs/Oe+GU2AkoZQEJtFIlU1LG5mxhqd2
VzLuYCvILw+AaH0vrEcaXWajZq3Q9BgYTtMxUYoGpAlBMdiRBhq5rxnRxFRQPLKi
EKLJgjgvWXP6XtpvbqJCur/4cQBN5D70QQLQHpVDiN8OsnkxpZPjxKhNDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP/lElX//k2UQvbaug8LqseUv300MB8GA1UdIwQY
MBaAFB8iwISNMFnlrlX2jAcHnLmpLCeeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlMQWhJMHdXZVd1VmZhTUJ3ZWN1YWtzSjU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9jMTA5MTEtNDAyMi00NmZiLTkyMTQt
N2M2ODU3NjQ4NjY2LzEvSHlMQWhJMHdXZVd1VmZhTUJ3ZWN1YWtzSjU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9jMTA5MTEtNDAyMi00NmZiLTkyMTQtN2M2ODU3NjQ4NjY2
LzEvSHlMQWhJMHdXZVd1VmZhTUJ3ZWN1YWtzSjU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj+5plV2O
F6hbDG2oCFVzrdS6DrD2qj44uCUJvk4kRiLBmbEMklD621uaENc2xIDuFFY7prFD
Uyc9VUirBFGvEjJzIX/kYWLpSt1AQ3qaWwuCnEevwsXlegAVTi72EvVRqaQH/Ql9
bIJbPUdp8Y7RzfbzZV5hpqvxyvOgOee7td/axG2Po0TRKKnUZ44SGy2c7ORtiVKr
YC4MUs3sPl0B7mQ0pPO/2h8P1yQmy2Bw+a627hXAOJ8ovS9sTDqJL+rRI0Z0b3YU
Ijq6lsZUsVlogO3UCo0IYRYwp5iiqIXItVeIIqaVaVykaFUmmCl8cWVQCVlcxdhc
fvUp1C40K+yv8A==
-----END CERTIFICATE-----
Generated at Sat May 16 22:02:28 2026 by rpki-client