Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: g1Qj/Hgrd1tIO4n4u/t6iMMqTrgtW2BN6yS8eOpOOPo=
Subject key identifier: D3:1B:35:87:ED:BE:F1:AF:F8:A9:90:F7:4B:98:D5:A9:4F:98:71:F5
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019DC14BB1FC62BC74FC46DB0B49DC7A5E9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0C97
Signing time: Fri 24 Apr 2026 21:00:56 +0000
Manifest this update: Fri 24 Apr 2026 21:00:56 +0000
Manifest next update: Sat 25 Apr 2026 21:00:56 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: utk4WdB3CPlDanr2/SfgXbkWoBcoCSVGnSpadNnEi5o=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c1:4b:b1:fc:62:bc:74:fc:46:db:0b:49:dc:7a:5e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Apr 24 21:00:56 2026 GMT
Not After : Apr 25 21:00:56 2026 GMT
Subject: CN=d31b3587edbef1aff8a990f74b98d5a94f9871f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bb:9a:a8:b2:34:7a:c5:54:87:fa:da:9a:7c:
93:6d:e4:64:91:80:ad:79:6a:d1:24:3f:a7:7e:7d:
29:e3:a8:c1:1e:c2:a6:aa:2d:d0:86:76:f0:f3:8c:
66:6f:3e:29:88:fe:91:1c:06:c9:15:e9:1d:c8:c7:
99:64:e4:d4:fc:96:7f:02:06:5f:be:19:03:fe:4c:
4b:89:65:fd:c2:e3:fe:08:04:48:11:0e:c1:e5:a2:
f7:8e:8f:f0:2c:8b:e4:76:b3:43:2f:32:8e:15:8d:
28:58:4b:15:aa:70:19:04:0a:d6:aa:c3:86:01:ad:
fb:c9:f8:df:87:fe:24:31:19:d2:54:c6:09:36:4d:
2c:7b:1c:9c:92:ce:b5:1f:e2:ed:01:89:65:2d:38:
9e:46:93:ff:0e:75:cb:0c:6d:ea:2b:b0:b7:0c:c0:
c7:f9:dc:d3:e9:b4:40:5a:f8:ef:b9:83:94:d3:3a:
13:6a:d4:f3:9f:51:5d:e2:08:76:37:fb:2f:2a:5b:
19:57:6b:3a:f6:ff:33:fe:f5:37:c8:24:f6:ee:0a:
e1:41:69:0d:d1:44:a0:87:44:63:9a:c7:17:0a:89:
52:30:e4:b7:37:83:db:91:f5:86:61:0f:b0:28:9c:
c6:11:8f:d7:e1:71:94:0b:cd:0f:c9:86:0d:95:ec:
a3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1B:35:87:ED:BE:F1:AF:F8:A9:90:F7:4B:98:D5:A9:4F:98:71:F5
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:24:7e:87:25:24:cf:6b:07:be:b6:78:73:ee:ab:4d:7a:5d:
55:e9:bd:1a:99:54:d9:dd:31:82:2e:f7:d1:09:d6:ab:5b:3d:
ee:a9:cc:ff:bb:bc:44:80:cd:b8:76:50:cd:93:c4:25:82:7d:
92:54:df:0e:95:92:90:34:49:cd:dd:a0:7f:65:49:06:a5:07:
a6:0d:c9:a1:39:19:c6:40:41:1e:2b:1e:37:09:04:48:d9:ca:
1b:e8:80:5e:e4:3d:0f:c1:ba:dc:1e:69:6a:a6:3f:bb:a0:2e:
5f:d1:18:45:8e:c3:c6:c3:68:96:d6:ac:38:6b:e3:c4:7a:7f:
36:77:b3:10:b9:a0:8a:24:58:cb:8b:aa:35:3c:f4:bf:50:f3:
86:bb:0e:1b:47:2d:89:c7:f2:57:15:6f:aa:da:a0:b7:e2:a6:
07:b2:0e:84:6f:a6:46:09:91:a0:2e:a2:5e:7e:52:f1:b1:17:
bf:bf:28:e4:da:0d:1a:33:22:3d:92:46:fa:71:e6:88:2a:0c:
c8:cc:41:08:88:b0:6d:76:13:b6:6a:b8:04:e0:fa:69:7f:97:
f2:47:83:ac:a1:5c:77:d6:1f:49:7b:9e:4e:f0:f1:63:4e:24:
f9:28:56:f1:fe:9e:ce:9f:37:4e:cd:df:46:39:ca:f6:c6:2c:
4b:d0:bb:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 25 02:04:23 2026 by rpki-client