Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: aDPKBepaCq9HuzAZSuuso4060qqDsDwZ/WlVD5f/xkU=
Subject key identifier: 41:93:DA:D5:88:3C:E8:0F:13:15:8B:BC:5D:52:A8:16:64:DE:50:AA
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019CC82BAC0871424452FED5DFF7FF448956
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0C16
Signing time: Sat 07 Mar 2026 12:00:31 +0000
Manifest this update: Sat 07 Mar 2026 12:00:31 +0000
Manifest next update: Sun 08 Mar 2026 12:00:31 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: wTxcYXD+oi8J/Il5/Vm6099SIOBAgjceeSesot0ZYX8=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c8:2b:ac:08:71:42:44:52:fe:d5:df:f7:ff:44:89:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Mar 7 12:00:31 2026 GMT
Not After : Mar 8 12:00:31 2026 GMT
Subject: CN=4193dad5883ce80f13158bbc5d52a81664de50aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:34:0e:12:d2:39:d4:d2:df:87:59:4d:0a:6e:
56:c6:8e:e3:b4:df:17:a6:d1:cc:46:89:d5:40:46:
df:bf:e7:a5:19:a0:af:b9:47:2e:eb:65:42:07:32:
96:9d:85:ee:86:ed:26:03:4c:a7:ea:c6:71:e2:73:
e9:1a:80:96:af:e1:c8:48:a4:91:17:73:28:83:2e:
1b:b6:67:36:78:c3:5a:27:98:79:aa:1a:f7:ee:2a:
41:8d:2a:e3:34:b7:b1:2c:05:10:00:b1:76:7a:a8:
85:71:25:82:14:bc:64:7c:3c:83:d1:b8:34:2a:4e:
3f:9a:dc:95:19:0d:1d:ba:b5:35:71:60:e0:6c:f1:
61:3f:7f:f3:5a:a9:2b:2d:7e:89:c6:f6:41:ad:71:
61:5b:e0:11:34:c7:22:bb:52:4d:78:93:11:45:f0:
a8:67:50:ab:b8:4b:4e:3d:04:5b:05:98:1b:44:6b:
cd:48:f7:e4:19:50:f3:c4:05:5a:37:47:8a:91:ca:
7f:52:d5:b0:af:42:a9:62:93:b9:2f:2d:65:84:c0:
b8:83:de:84:e5:95:e5:f3:18:0c:ab:49:b8:99:a4:
bd:c9:15:e7:48:99:ff:91:f6:7c:a3:86:e2:3c:6c:
63:06:1c:f9:58:a4:d0:a7:79:35:09:93:0a:df:a1:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:93:DA:D5:88:3C:E8:0F:13:15:8B:BC:5D:52:A8:16:64:DE:50:AA
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a2:88:7c:3c:18:46:fa:6a:40:f9:0e:55:f0:01:d1:ed:30:
e8:5b:b9:99:d4:33:1e:66:7c:5b:b4:bc:c3:7b:12:05:16:04:
b7:c9:45:86:6e:75:8d:31:5e:a4:57:bd:12:41:29:14:ee:90:
19:8e:3a:d1:1f:aa:90:5a:7e:88:40:a2:8e:8e:03:bb:f7:47:
9c:23:5c:4b:e5:70:a9:ec:6c:ef:0d:23:d2:61:5e:0c:a8:26:
2e:87:3f:30:94:98:41:30:28:45:ad:03:c2:b5:61:22:df:5b:
66:9b:bd:93:29:04:42:b3:8c:c6:0c:5b:d4:ee:4f:f7:8f:0b:
9c:9e:b2:21:2d:f2:55:88:4f:98:5b:3e:10:2e:52:5b:6f:f9:
d2:b9:a6:81:d0:e1:27:12:f1:2e:0a:61:b0:25:5a:5d:04:0c:
93:6c:8c:03:e0:a4:9b:89:5c:37:af:c2:9b:44:86:2a:15:90:
c3:6e:fb:4d:e3:a1:4a:d8:99:f1:a6:20:a6:54:a5:57:60:63:
29:fd:6a:d8:7c:ba:18:ed:a4:12:b5:04:f9:b3:2f:98:66:26:
4c:e4:9b:47:e4:88:ff:8b:0b:40:5a:1b:94:05:64:d4:f3:de:
fb:fc:55:77:6c:64:88:fe:59:7e:74:6d:40:ff:b7:c5:30:90:
42:4c:42:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 15:55:56 2026 by rpki-client